smskin/myhouse-identity-service-client

Guards for auth by identity service

Maintainers

Details

github.com/smskin/myhouse-identity-service-client

Homepage

Source

Issues

Installs: 1 028

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 2

Forks: 0

Open Issues: 0

1.0.18 2023-07-11 15:45 UTC

Requires

MIT 55b684ed452fee0d7576a79bde7abaa409df95bb

  • SMSkin <serg.woop@msoinvest.com>

authlaravelguardidentity-service

This package is auto-updated.

Last update: 2024-11-11 18:55:00 UTC

README

This library based on https://github.com/smskin/laravel-identity-service-client library.

Identity service is a service that allows you to organize authorization in a laravel application through a common remote server. This allows you to organize a multi-service architecture with end-to-end authorization.

Identity service library consists of 2 parts:

Installation

  1. Run composer require smskin/myhouse-identity-service-client
  2. Run php artisan vendor:publish --tag=identity-service-client
  3. Configure identity service client with identity-service-client.php in config folder and environments
  4. Change create user table migration file
  5. Run php artisan migrate

Migrations

User will be creating automatically if user open site with correct jwt. You must change users table for support nullable fields.

I usually remove all columns except id and dates because they are not needed (authorization happens through a remote server). For example:

Schema::create('users', function (Blueprint $table) {
    $table->id();
    $table->string('name');
    $table->timestamps();
});

Environments

  1. IDENTITY_SERVICE_CLIENT_HOST - public address of identity service (https://github.com/smskin/laravel-idenity-service)
  2. IDENTITY_SERVICE_CLIENT_DEBUG - debug mode of auth gates

Configuration

You can configure library with identity-service-client.php file.

  • classes
    • models
      • user - Class of User model. You can override it with your user model class. You must implement HasIdentity contract and implement IdentityTrait trait

Example of Users model:

<?php

namespace App\Models;

use Illuminate\Contracts\Auth\MustVerifyEmail;
use Illuminate\Database\Eloquent\Factories\HasFactory;
use Illuminate\Foundation\Auth\User as Authenticatable;
use Illuminate\Notifications\Notifiable;
use Laravel\Sanctum\HasApiTokens;
use SMSkin\IdentityServiceClient\Models\Contracts\HasIdentity;
use SMSkin\IdentityServiceClient\Models\Traits\IdentityTrait;

class User extends Authenticatable implements HasIdentity
{
    use HasApiTokens, HasFactory, Notifiable;
    use IdentityTrait;

    /**
     * The attributes that are mass assignable.
     *
     * @var array<int, string>
     */
    protected $fillable = [
        'identity_uuid',
        'name',
    ];
}

Using

This library register 2 guards:

  • identity-service-client-jwt
  • identity-service-client-session

You can use it with auth middleware (for example: auth:identity-service-client-jwt) or bind it's to already exists guards by auth.php config file.

For example:

...
'guards' => [
    'web' => [
        'driver' => 'identity-service-client-session',
        'provider' => 'users',
    ],
    'api' => [
        'driver' => 'identity-service-client-jwt',
        'provider' => 'users',
    ],
],
...