laravel-modules: Middleware auth:sanctum not working in Module route

I installed ‘Laravel/sanctum’ through composer and published the vendor and migrated migrations and used Laravel\Sanctum\HasApiTokens on Entitites/User. There is an api route file on user module and ‘auth:sanctum’ middleware is used on ‘/api/me’ route. It should send Unauthenticated JSON response when there is no token, but when i hit this api without token, its showing login page even if i had used Accept: application/json as header.

Also im not able to hit this api even if i have sent the current token.

This is my api route file:

Route::post('/login', 'AuthController@login')->name('api.login'); Route::group(['middleware' => ['auth:sanctum']], function () { Route::get('/me', 'AuthController@getLoggedUser')->name('api.me'); }); 2021-02-01 15_07_14

This is the response i’m getting when I hit on postman. Response Image

Is there something I need to do to be able to use the middleware in the module?

About this issue

  • Original URL
  • State: closed
  • Created 3 years ago
  • Reactions: 1
  • Comments: 19

Most upvoted comments

Faced with the same problem. After some investigation it seems the problem happens there: https://github.com/laravel/sanctum/commit/f5695aecc547138c76bc66aaede73ba549dabdc5

During the refactoring they forgot to include default guard definition.

Just add this at the end of config/sanctum.php for api guard:

'guard' => 'api'

+5
rw4lll on Apr 12, 2021

Am new to laravel and I had the same problem, but I solved it by changing the gurds in the file config/auth.php to `

'guards' => [
    'web' => [
        'driver' => 'session',
        'provider' => 'users',
    ],

    'api' => [
        'driver' => 'token',
        'provider' => 'users',
    ],
],`

And changed the routes/api.php groups to `

Route::group([‘middleware’ => ‘auth:api’], function () { Route::get(‘articles’, [MyController::class, ‘index’]); });

`

GOOD LUCK

+2
wagaana on Jan 27, 2022

i faced the same Issue but i solved it by Add to headers Accept with value application/json

that’s the best solution i found maybe others have another solution.

Screen Shot 2021-08-12 at 2 41 37 PM
+2
KamalEssam on Aug 12, 2021

I think your AuthController contains a __construct() method, that was the case for me, I removed it and the middleware got applied on the request, I think that the reason is the __construct() method clears the middlewares array, so make sure you don’t have one on your controller. Hope it works for you!

+1
hbakouane on Nov 14, 2023

then you must have include to $middleware list line below on Kernel.php \App\Http\Middleware\XAuthorizationHeader::class,

+1
amaraa019 on Sep 7, 2022

In my case cpanel apache denied Authorization header even i configured on htaccess file. So i created XauthorizationHeader middleware then my problem solved…

+1
amaraa019 on Sep 7, 2022
Read more comments on GitHub
← laravel-modules: Laravel 7 - ModuleNotFoundException
laravel-modules: [Module] Service provider not found on production server →