Why should Client Creadentials be associated with a user in Laravel Passport?
I was gonna comment but I don't have enough reputation yet =p
You could give the command a name parameter that won't require any user input. As far as how you would get that client secret over to your client without manual intervention is where the real wizardry would come in.
php artisan passport:client --personal --name={someName}That command would still give you:
Personal access client created successfully.
Client ID: 1
Client Secret: LbjQNxK5SQZ3pPrEBUwbkE8vaRkg8jh25Qh43HYy
as expected.
I assume you want to use machine-to-machine authentication (no user interactions)
I would recommend to read through the docs a couple of times to get the hang of it.
I do not believe there is an specific way to create an only client credentials client, What i do is to create an personal client then change the field for personal client in the database personal_access_client 1 => 0
You could use the personal client option, as seen from the --help option
Usage:
passport:client [options]
Options:
--personal Create a personal access token client
--password Create a password grant client
--name[=NAME] The name of the client
-h, --help Display this help message
...
php artisan passport:client --personal
output
Personal access client created successfully.
Client ID: 1
Client Secret: LbjQNxK5SQZ3pPrEBUwbkE8vaRkg8jh25Qh43HYy
You would need to use another middleware other then the default one because there is no user present when using this method
- Define client credentials alias middleware in kernel
- Add middleware to route
- Send request
Define client credentials middleware to the http kernel
Class \App\Http\Kernel:
protected $routeMiddleware = [
'auth' => \Illuminate\Auth\Middleware\Authenticate::class,
'client_credentials' => \Laravel\Passport\Http\Middleware\CheckClientCredentials::class,
//ommited
];
Define middleware on route
Route::get('/test', 'ApiTestController@test')->middleware('client_credentials');
Class \App\Http\Controllers\ApiTestController:
public function test() {
return response()->json(['data' => 'hey'] );
}
From php artisan route:list
GET|HEAD | api/test | App\Http\Controllers\ApiTestController@test | api,client_credentials |
Send request
Following the specified request in the documentation on client-credentials-grant-tokens
I use Postman for simplicity, easily send test request with Postman (www.getpostman.com)
Set authorization to OAuth 2.0, image: Postman authentication
Set access token URL, client id, client secret and grant type to 'Client Credentials', image: Postman OAuth Fields
Postman creates an token and appends it to URL or Header, in this case header
Accept:application/json
Authorization:Bearer eyJ0eXAiOi...KCjK0
Response:
{
"data": "hey"
}
These answers are a little old.
You can certainly add client credentials.
php artisan passport:client --client
protected $signature = 'passport:client
{--personal : Create a personal access token client}
{--password : Create a password grant client}
{--client : Create a client credentials grant client}
{--name= : The name of the client}
{--provider= : The name of the user provider}
{--redirect_uri= : The URI to redirect to after authorization }
{--user_id= : The user ID the client should be assigned to }
{--public : Create a public client (Auth code grant type only) }';