Laravel API Token Guard

dev-master 2018-04-16 03:44 UTC

This package is not auto-updated.

Last update: 2022-08-06 15:19:55 UTC


Extends default Laravel token guard to retrieve users from cookies and consume your own API from your JavaScript application.


To get started, you should add the gtk/laravel-token-guard Composer dependency to your project:

composer require gtk/laravel-token-guard

Once Laravel Token Guard is installed, you should register the Gtk\LaravelTokenGuard\ServiceProvider service provider. Typically, this will be done automatically via Laravel's automatic service provider registration.

Getting Started

Typically, if you want to consume your API from your JavaScript application, you would need to manually send an access token to the application and pass it with each request to your application. However, Laravel Token Guard includes a middleware that can handle this for you like the way Laravel Passport do. All you need to do is add the CreateFreshApiToken middleware to your web middleware group:

'web' => [
    // Other middleware...

This middleware will attach a api_token cookie to your outgoing responses. This cookie contains a token will use to authenticate API requests from your JavaScript application like the default Laravel Token Guard. Now, you may make requests to your application's API without explicitly passing an access token:

    .then(response => {


Laravel Token Guard is open-sourced software licensed under the MIT license.