I am making a Laravel application which will be issuing bearer token using Laravel Passport. So the idea is that a client who wants to use our system will come and register and create the Client_Secret and the Client_ID, then upon creating these oath clients credentials the client will then take these credentials and integrate them in his application. Now here is the problem, upon the client integrating the Client_ID and the Client_Secret in his application I want him to use those credentials to request the authorization code on the Laravel system and make the bearer token (using his own app), now according to Laravel documentation on Laravel passport it says that the Oath API for making the authorization code and the bearer token is guarded by the web and Auth middleware; therefore, it may only be called from your own application. It is not able to be called from an external source. Does that mean that there is no way of allowing external users to access the oath routes of passports using their external applications? or is it ok to allow them make the bearer token on the Laravel system and taking that token to integrate them in their own app?
Allowing unauthenticated Users to Access Oath routes in Laravel Passport
158 Views Asked by Chanda chewe At
1
There are 1 best solutions below
Related Questions in PHP
- How to add the dynamic new rows from my registration form in my database?
- Issue in payment form gateway
- How to create a facet for WP gridbuilder that displays both parent and child custom fields?
- Function in anonymous Laravel Blade component
- How to change woocomerce or full wordpress currency with value from USD to AUD
- General questions about creating a custom theme Moodle CMS
- How to add logging to an abstract class in php
- error 500 on IIS FastCGI but no clue despite multiple error loggings activated
- Composer installation fails and reverts ./composer.json and ./composer.lock to original content
- How to isolate PHP apps from each other on a local machine(Windows or Linux)?
- Laravel: Using belongsToMany relationship with MongoDB
- window.location.href redirects but is causing problems on the webpage
- Key provided is shorter than 256 bits, only 64 bits provided
- Laravel's whereBetween method not working with two timestamps
- Implementing UUID as primary key in Laravel intermediate table
Related Questions in LARAVEL
- Function in anonymous Laravel Blade component
- Composer installation fails and reverts ./composer.json and ./composer.lock to original content
- Laravel: Using belongsToMany relationship with MongoDB
- Laravel's whereBetween method not working with two timestamps
- Implementing UUID as primary key in Laravel intermediate table
- Resolving ElephantIO ServerConnectionFailureException: Error establishing connection to server
- Undefined function getAdminPanelUrlPrefix()'error in Laravel SaaS project after installing chatmessenger
- PHP Laravel SQLServer could not find driver
- Laravel installation via Composer results in connection timeout error
- Is there a way of showing content in a Statamic antlers template if a user is authenticated?
- Livewire component JS script Uncaught SyntaxError: Unexpected token
- is there a solution to run cron job command in cpanel only from my cPanel host?
- Prevent a webpage from navigating away
- Deploy Flutter and Laravel php mobile app on the host server
- Please how I fetch user account balance, withdrawals, Loans and Transactions to display in the dashboard?
Related Questions in LARAVEL-8
- Laravel: Show products of all subcategories
- Livewire events not working in Laravel Modular project
- How to properly set timestamp field seeder for a postgreSql database in Laravel 10.47?
- Php 8.3 No active Transaction in Laravel 8
- Encountering 403 Forbidden Error When Fetching Image in API via URL in Laravel App - How to Resolve?
- PHPMailer SMTP Error: Could not connect to SMTP host / using smtp.gmail.com server
- Can anyone provide petfinder client_id?
- How to safely migrate hashed(bcrypt) passwords during a PHP Laravel system upgrade; from Laravel 8 to 10?
- Laravel gmail smtp not sending email on live server
- Order By Clause Overridden in Laravel Union Query Construction
- Laravel 8 session token lost after redirect to external URL
- Troubleshooting incorrect content on mobile redirect
- login and registration page not jump to the dashboard after registration and login proces
- Troubleshooting VAT calculation issue
- when i'm install laravel by composer have an warning
Related Questions in LARAVEL-PASSPORT
- How would single sign-on work for my multi-tenant application?
- How to test the token revocation for Laravel Passport with PestPHP?
- Laravel Passport gives me "Invalid key supplied"
- What is the purpose of Laravel passports .env variable PASSPORT_PERSONAL_ACCESS_CLIENT_SECRET?
- How to securely migrate MD5 hashed passwords to bcrypt on user's first login with Laravel Passport?
- Laravel/Lumen Cashier-Paddle Authentication Header mixing up with Passport Authentication Header
- laravel passport - issue token return whether new user was created
- Laravel Passport cannot assign client because field 'id' doesn't have a default value
- PostMan Unauthorized 401
- Laravel Passport's OAuthServerException does not bubbles up to Handler.php. League's OAuthServerException bubbles up instead
- Correct way to handle email/password sign up, in addition to using Laravel Socialite for OAuth?
- Laravel Session Timeout on Login
- Laravel app: importing live database locally causes failure in when trying to login user accounts
- Phpunit Tests on Laravel Passport (Lumen) failing for an API service
- Laravel docker for api
Related Questions in LARAVEL-JWT
- JWT authentication with Laravel & Vuejs
- How to call me function in laravel based jwt , Its giving 401 error when hit from my react application?
- Laravel jwt returns 500, on unauthorized
- use laravel jwt authentication only for api without affecting web
- Allowing unauthenticated Users to Access Oath routes in Laravel Passport
- Laravel Policy Always returns 403 unauthorized
- laravel get sender http host with JWTAuth
- Laravel: JWT based authorization, Working in Postman but NOT in Browser
- API JWT guard and web session guard in Laravel
- Laravel Jwt auth attempts returns false always
- Laravel API response Unauthenticated even when Authentication is passed
- Laravel :How to authenticated user login with mobile number only and create jwt token for auth data
- How to enable both api and web guard in laravel
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
the idea of this token from passport is to protect routes
when you can't use api request if the token in header not accept with you server
but when the token is accept with your server you can use it the api request from anywhere the simple example postman