jalallinux / laravel-shield
A HTTP basic auth middleware for Laravel
Fund package maintenance!
jalallinux
Installs: 1 821
Dependents: 0
Suggesters: 0
Security: 0
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 1
Requires
- php: ^8.0|^8.1|^8.2
- laravel/framework: ^7.0|^8.0|^9.0|^10.0
Requires (Dev)
- pestphp/pest: ^1.20
- spatie/ray: ^1.28
README
A HTTP basic auth middleware for Laravel.
// Use on your routes. Route::get('/', ['middleware' => 'shield'], function () { // Your protected page. }); // Use it within your controller constructor. $this->middleware('shield'); // Use specific user credentials. $this->middleware('shield:jalallinux');
Installation
Require this package, with Composer, in the root directory of your project.
composer require jalallinux/laravel-shield
Add the middleware to the $routeMiddleware
array in your Kernel.php
file.
'shield' => \JalalLinuX\Shield\ShieldMiddleware::class,
Configuration
Laravel Shield requires configuration. To get started, you'll need to publish all vendor assets:
php artisan vendor:publish --provider JalalLinuX\\Shield\\ShieldServiceProvider
This will create a config/shield.php
file in your app that you can modify to set your configuration. Also, make sure you check for changes to the original config file in this package between releases.
HTTP Basic Auth Credentials
The user credentials which are used when logging in with HTTP basic authentication.
Usage
To protect your routes with the shield you can add it to the routes file.
Route::get('/', ['middleware' => 'shield'], function () { // Your protected page. });
You can also add the shield middleware to your controllers constructor.
$this->middleware('shield');
The middleware accepts one optional parameter to specify which user credentials to compared with.
$this->middleware('shield:jalallinux');
To add a new user, you probably want to use hashed credentials. Hashed credentials can be generated with the password_hash()
function in the terminal:
php -r "echo password_hash('my-secret-passphrase', PASSWORD_DEFAULT);"
Then copy and paste the hashed credentials to the .env
environment file.
SHIELD_USER=your-hashed-user SHIELD_PASSWORD=your-hashed-password