Merge pull request #373 from vidhyut-pandya/use_passport_for_api

Use passport for API

Author: viralsolani

README.md

@@ -107,8 +107,9 @@ You can now access the server at http://localhost:8000
     npm run development
     php artisan storage:link
     php artisan key:generate
-    php artisan jwt:secret
     php artisan vendor:publish --tag=lfm_public
+    php artisan migrate
+    php artisan passport:install
 
 ## Please note
 

app/Exceptions/Handler.php

@@ -90,11 +90,6 @@ public function render($request, Exception $exception)
                 switch (get_class($exception->getPrevious())) {
                     case \App\Exceptions\Handler::class:
                         return $this->setStatusCode($exception->getStatusCode())->respondWithError('Token has not been provided.');
-                    case \Tymon\JWTAuth\Exceptions\TokenExpiredException::class:
-                        return $this->setStatusCode($exception->getStatusCode())->respondWithError('Token has expired.');
-                    case \Tymon\JWTAuth\Exceptions\TokenInvalidException::class:
-                    case \Tymon\JWTAuth\Exceptions\TokenBlacklistedException::class:
-                        return $this->setStatusCode($exception->getStatusCode())->respondWithError('Token is invalid.');
                 }
             }
         }

app/Http/Controllers/Api/V1/AuthController.php

@@ -2,10 +2,8 @@
 
 namespace App\Http\Controllers\Api\V1;
 
-use App\Models\Access\User\User;
 use Illuminate\Http\Request;
 use Illuminate\Support\Facades\Auth;
-use Tymon\JWTAuth\Exceptions\JWTException;
 use Validator;
 
 class AuthController extends APIController
@@ -31,14 +29,26 @@ public function login(Request $request)
         $credentials = $request->only(['email', 'password']);
 
         try {
-            if (!$token = auth('api')->attempt($credentials)) {
+            if (!Auth::attempt($credentials)) {
                 return $this->throwValidation(trans('api.messages.login.failed'));
             }
-        } catch (JWTException $e) {
+
+            $user = $request->user();
+
+            $passportToken = $user->createToken('API Access Token');
+
+            // Save generated token
+            $passportToken->token->save();
+
+            $token = $passportToken->accessToken;
+        } catch (\Exception $e) {
             return $this->respondInternalError($e->getMessage());
         }
 
-        return $token;
+        return $this->respond([
+            'message'   => trans('api.messages.login.success'),
+            'token'     => $token,
+        ]);
     }
 
     /**
@@ -56,95 +66,16 @@ public function me()
      *
      * @return \Illuminate\Http\JsonResponse
      */
-    public function logout()
-    {
-        $this->guard()->logout();
-
-        return response()->json(['message' => 'Successfully logged out']);
-    }
-
-    /**
-     * Refresh a token.
-     *
-     * @return \Illuminate\Http\JsonResponse
-     */
-    public function refresh()
+    public function logout(Request $request)
     {
-        return $this->respondWithToken($this->guard()->refresh());
-    }
-
-    /**
-     * Get the token array structure.
-     *
-     * @param string $token
-     *
-     * @return \Illuminate\Http\JsonResponse
-     */
-    protected function respondWithToken($token)
-    {
-        return $token;
+        try {
+            $request->user()->token()->revoke();
+        } catch (\Exception $e) {
+            return $this->respondInternalError($e->getMessage());
+        }
 
-        return response()->json([
-            'access_token' => $token,
-            // 'token_type' => 'bearer',
-            // 'expires_in' => $this->guard()->factory()->getTTL() * 60
+        return $this->respond([
+            'message'   => trans('api.messages.logout.success'),
         ]);
     }
-
-    /**
-     * Get the guard to be used during authentication.
-     *
-     * @return \Illuminate\Contracts\Auth\Guard
-     */
-    public function guard()
-    {
-        return Auth::guard('api');
-    }
-
-    /*
-     * Log the user out (Invalidate the token).
-     *
-     * @return \Illuminate\Http\JsonResponse
-     */
-    // public function logout()
-    // {
-    //     try {
-    //         $token = JWTAuth::getToken();
-
-    //         if ($token) {
-    //             JWTAuth::invalidate($token);
-    //         }
-    //     } catch (JWTException $e) {
-    //         return $this->respondInternalError($e->getMessage());
-    //     }
-
-    //     return $this->respond([
-    //         'message' => trans('api.messages.logout.success'),
-    //     ]);
-    // }
-
-    /*
-     * Refresh a token.
-     *
-     * @return \Illuminate\Http\JsonResponse
-     */
-    // public function refresh()
-    // {
-    //     $token = JWTAuth::getToken();
-
-    //     if (!$token) {
-    //         $this->respondUnauthorized(trans('api.messages.refresh.token.not_provided'));
-    //     }
-
-    //     try {
-    //         $refreshedToken = JWTAuth::refresh($token);
-    //     } catch (JWTException $e) {
-    //         return $this->respondInternalError($e->getMessage());
-    //     }
-
-    //     return $this->respond([
-    //         'status' => trans('api.messages.refresh.status'),
-    //         'token' => $refreshedToken,
-    //     ]);
-    // }
 }

app/Http/Controllers/Api/V1/RegisterController.php

@@ -2,11 +2,9 @@
 
 namespace App\Http\Controllers\Api\V1;
 
-use App\Models\User\User;
 use App\Repositories\Frontend\Access\User\UserRepository;
 use Config;
 use Illuminate\Http\Request;
-use JWTAuth;
 use Validator;
 
 class RegisterController extends APIController
@@ -53,7 +51,12 @@ public function register(Request $request)
             ]);
         }
 
-        $token = JWTAuth::fromUser($user);
+        $passportToken = $user->createToken('API Access Token');
+
+        // Save generated token
+        $passportToken->token->save();
+
+        $token = $passportToken->accessToken;
 
         return $this->respondCreated([
             'message'   => trans('api.messages.registeration.success'),

app/Http/Kernel.php

@@ -3,8 +3,6 @@
 namespace App\Http;
 
 use Illuminate\Foundation\Http\Kernel as HttpKernel;
-use Tymon\JWTAuth\Middleware\GetUserFromToken;
-use Tymon\JWTAuth\Middleware\RefreshToken;
 
 /**
  * Class Kernel.
@@ -76,7 +74,5 @@ class Kernel extends HttpKernel
          */
         'access.routeNeedsRole'       => \App\Http\Middleware\RouteNeedsRole::class,
         'access.routeNeedsPermission' => \App\Http\Middleware\RouteNeedsPermission::class,
-        'jwt.auth'                    => GetUserFromToken::class,
-        'jwt.refresh'                 => RefreshToken::class,
     ];
 }

app/Models/Access/User/User.php

@@ -10,20 +10,21 @@
 use Illuminate\Database\Eloquent\SoftDeletes;
 use Illuminate\Foundation\Auth\User as Authenticatable;
 use Illuminate\Notifications\Notifiable;
-use Tymon\JWTAuth\Contracts\JWTSubject;
+use Laravel\Passport\HasApiTokens;
 
 /**
  * Class User.
  */
-class User extends Authenticatable implements JWTSubject
+class User extends Authenticatable
 {
     use UserScope,
         UserAccess,
         Notifiable,
         SoftDeletes,
         UserAttribute,
         UserRelationship,
-        UserSendPasswordReset;
+        UserSendPasswordReset,
+        HasApiTokens;
     /**
      * The database table used by the model.
      *

app/Providers/AuthServiceProvider.php

@@ -3,6 +3,7 @@
 namespace App\Providers;
 
 use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider;
+use Laravel\Passport\Passport;
 
 /**
  * Class AuthServiceProvider.
@@ -27,6 +28,6 @@ public function boot()
     {
         $this->registerPolicies();
 
-        //
+        Passport::routes();
     }
 }

composer.json

@@ -20,11 +20,11 @@
         "fideloper/proxy": "^4.0",
         "hieu-le/active": "^3.5",
         "laravel/framework": "5.8.*",
+        "laravel/passport": "^7.2",
         "laravel/socialite": "^3.0",
         "laravel/tinker": "~1.0",
         "laravelcollective/html": "^5.4.0",
         "spatie/laravel-cors": "^1.2",
-        "tymon/jwt-auth": "2.0.x-dev",
         "unisharp/laravel-filemanager": "~1.8",
         "yajra/laravel-datatables-oracle": "~9.0"
     },