summaryrefslogtreecommitdiff
path: root/Year_3/TSDWL/LARAVEL/iBook/config/sanctum.php
diff options
context:
space:
mode:
authorSanto Cariotti <santo@dcariotti.me>2022-01-24 19:34:26 +0100
committerSanto Cariotti <santo@dcariotti.me>2022-01-24 19:34:26 +0100
commit710f54c0156c5fa081bc6af1a68e7cb44723939b (patch)
tree056a85c362b7b9c5439506a76e0802e57342cc10 /Year_3/TSDWL/LARAVEL/iBook/config/sanctum.php
parentb69d50c415ef1571bd42bb3eb1a1b3b38eab43dd (diff)
add example in laravel
Diffstat (limited to 'Year_3/TSDWL/LARAVEL/iBook/config/sanctum.php')
-rw-r--r--Year_3/TSDWL/LARAVEL/iBook/config/sanctum.php65
1 files changed, 65 insertions, 0 deletions
diff --git a/Year_3/TSDWL/LARAVEL/iBook/config/sanctum.php b/Year_3/TSDWL/LARAVEL/iBook/config/sanctum.php
new file mode 100644
index 0000000..9281c92
--- /dev/null
+++ b/Year_3/TSDWL/LARAVEL/iBook/config/sanctum.php
@@ -0,0 +1,65 @@
+<?php
+
+return [
+
+ /*
+ |--------------------------------------------------------------------------
+ | Stateful Domains
+ |--------------------------------------------------------------------------
+ |
+ | Requests from the following domains / hosts will receive stateful API
+ | authentication cookies. Typically, these should include your local
+ | and production domains which access your API via a frontend SPA.
+ |
+ */
+
+ 'stateful' => explode(',', env('SANCTUM_STATEFUL_DOMAINS', sprintf(
+ '%s%s',
+ 'localhost,localhost:3000,127.0.0.1,127.0.0.1:8000,::1',
+ env('APP_URL') ? ','.parse_url(env('APP_URL'), PHP_URL_HOST) : ''
+ ))),
+
+ /*
+ |--------------------------------------------------------------------------
+ | Sanctum Guards
+ |--------------------------------------------------------------------------
+ |
+ | This array contains the authentication guards that will be checked when
+ | Sanctum is trying to authenticate a request. If none of these guards
+ | are able to authenticate the request, Sanctum will use the bearer
+ | token that's present on an incoming request for authentication.
+ |
+ */
+
+ 'guard' => ['web'],
+
+ /*
+ |--------------------------------------------------------------------------
+ | Expiration Minutes
+ |--------------------------------------------------------------------------
+ |
+ | This value controls the number of minutes until an issued token will be
+ | considered expired. If this value is null, personal access tokens do
+ | not expire. This won't tweak the lifetime of first-party sessions.
+ |
+ */
+
+ 'expiration' => null,
+
+ /*
+ |--------------------------------------------------------------------------
+ | Sanctum Middleware
+ |--------------------------------------------------------------------------
+ |
+ | When authenticating your first-party SPA with Sanctum you may need to
+ | customize some of the middleware Sanctum uses while processing the
+ | request. You may change the middleware listed below as required.
+ |
+ */
+
+ 'middleware' => [
+ 'verify_csrf_token' => App\Http\Middleware\VerifyCsrfToken::class,
+ 'encrypt_cookies' => App\Http\Middleware\EncryptCookies::class,
+ ],
+
+];