kronthto / laravel-oauth2-login Goto Github PK

Is Laravel 11 support on the road?

Hey @kronthto,

Thanks for making this awesome package!

I wanted to ask how do I get the currently logged in user. I followed the README instructions and do have the OAuth flow working and everything is being stored in the session as expected, but it's not clear to me how to get the currently logged in user.

Auth::user() returns null, how am I supposed to get the user?

Hi, great package and it saves me a lot of time. 👍🏼

May I know is there any elegant way to logout user?

Hello,

The package works well, however, if I want to check if the user is connected on a route that doesn't use the middleware, how would I do it ?
I've seen that to check if the user is connected, you pass the owner resources as an attribute to the request, could it be possible to check for the session all the time instead ?

The current CheckOAuth2 checks the auth, and redirect the User to the OAuth-Authorize-URL if invalid/not logged in.

It is currently not possible to just "check", inject the attributes if logged in, or null/false if not. A usecase would be to display a Login/Logout button, but not force-login the user.

• Add an alternative middleware that instead of returning a redirect just calls $next without setting "loggedIn"
• Do this via config / middleware-param switch?
• It should work with Auth::check

Does this work with Laravel 5.8?

Hey,

So it'd be really cool if I could have the same kind of object returned from Auth::user() also inherit from Eloquent\Model (to be able to have a hasMany relation for example).

What's clean way to have my wrapper inherit from Eloquent\Model?

I can't do that at the moment because AuthFromRequest currently does

$wrapperClass = config('oauth2login.authWrapper');
return new $wrapperClass($resourceOwner);

and this conflicts with the constructor signature of Model because it takes in an array rather than a ResourceOwnerInterface.

I'd like to be able to simply do Auth::user()->some_has_many_relation for example.

How do you suggest I accomplish this?

The simplest (and very hacky) way I found is to inherit from Model and make a constructor that takes a single parameter, if that parameter is an array (in which case my instance is initialized through Eloquent) simply call the parent constructor with it, if it gets a ResourceOwnerInterface (which I don't use that much because I actually use a JWT access token that has everything I need) instead then it's been initialized from laravel-oauth2-login. This method is quite brittle and I'd prefer to find a cleaner way.

I apologize again if I'm flooding you with questions, still finding my way through Laravel after years of not using it.

I suggest to insert this line

Do we need to pass access token manually in headers when we are accessing protected routes from javascript/AJAX?

Example with axios:

axios.defaults.headers.common = {
    'Authorization': 'Bearer ' + Laravel.apiToken,
};

Is this the correct way to do this?