m1guelpf / laravel-web3-login
Allow your users to login with their Ethereum wallets
Fund package maintenance!
m1guelpf
Installs: 556
Dependents: 0
Suggesters: 0
Security: 0
Stars: 104
Watchers: 6
Forks: 24
Open Issues: 0
Requires
- php: ^8.0
- illuminate/auth: ^8.0|^9.0
- illuminate/config: ^8.0|^9.0
- illuminate/contracts: ^8.0|^9.0
- illuminate/database: ^8.0|^9.0
- illuminate/http: ^8.0|^9.0
- illuminate/support: ^8.0|^9.0
- illuminate/validation: ^8.0|^9.0
- kornrunner/keccak: ^1.1
- simplito/elliptic-php: ^1.0
README
Allow your users to link their Ethereum wallet to their account to skip entering their login credentials.
Installation
You can install the package via composer:
composer require m1guelpf/laravel-web3-login
Usage
This package takes care of everything you need on the backend. While there are many different ways of asking the user to sign a message with their wallet, we'll be using web3modal
and ethers
to maximize the support for wallet providers.
To get started, you need to have the user register a new credential. You can do so by presenting them with a modal when they login, or by adding the option to their settings page.
import axios from "axios"; import { ethers } from "ethers"; import Web3Modal from "web3modal"; const web3Modal = new Web3Modal({ cacheProvider: true, providerOptions: {}, // add additional providers here, like WalletConnect, Coinbase Wallet, etc. }); const onClick = async () => { const message = await axios.get("/_web3/signature").then((res) => res.data); const provider = await web3Modal.connect(); provider.on("accountsChanged", () => web3Modal.clearCachedProvider()); const web3 = new ethers.providers.Web3Provider(provider); axios.post("/_web3/link", { address: await web3.getSigner().getAddress(), signature: await web3.getSigner().signMessage(message), }); };
Then, on the login page, you can provide an option to log in with their wallet.
import axios from "axios"; import { ethers } from "ethers"; import Web3Modal from "web3modal"; const web3Modal = new Web3Modal({ cacheProvider: true, providerOptions: {}, // add additional providers here, like WalletConnect, Coinbase Wallet, etc. }); const onClick = async () => { const message = await axios.get("/_web3/signature").then((res) => res.data); const provider = await web3Modal.connect(); provider.on("accountsChanged", () => web3Modal.clearCachedProvider()); const web3 = new ethers.providers.Web3Provider(provider); axios.post("/_web3/login", { address: await web3.getSigner().getAddress(), signature: await web3.getSigner().signMessage(message), }); };
Configs
If you want to change the message that is sent to the user, you can publish the config file and change it.
php artisan vendor:publish --provider="M1guelpf\Web3Login\Web3LoginServiceProvider" --tag="config"
This command will publish a config file to config/web3.php
with the following options:
[ // Message that is returned to the user in the /_web3/signature route 'message' => "Hey! Sign this message to prove you have access to this wallet. This won't cost you anything.\n\nSecurity code (you can ignore this): :nonce:", // Routes created by this package 'routes' => ['login', 'register', 'link', 'signature'], ]
For example, if you want to disable user registration through this package, you can remove register
from routes
config.
Contributing
Please see CONTRIBUTING for details.
Security Vulnerabilities
Please review our security policy on how to report security vulnerabilities.
Credits
License
The MIT License (MIT). Please see License File for more information.