Tenant auth is a laravel package that validate JWT token and its claim properties and set into request header
For each microservice development, you need to follow instruction below to ensure the application is standardize.
Install from composer
composer require devianl2/tenant-authRun the following command for public key config
php artisan vendor:publish --provider="Tenant\Auth\TenantAuthProvider"To use this package, make sure any API request does have Authorization header and Web request does have Authorization key in cookie
Go to App\Http\Middleware\Kernel and add the following syntax
protected $middleware = [
// \App\Http\Middleware\TrustHosts::class,
\App\Http\Middleware\TrustProxies::class,
...
**\Tenant\Auth\Middleware\TenantAuthMiddleware::class**
];If you are using in $routeMiddleware and define the middleware group by your own, you may do the following action:
Go to App\Http\Kernel to add your own route middleware like following:
protected $routeMiddleware = [
.....
'tenant-auth' => \Tenant\Auth\Middleware\TenantAuthMiddleware::class
];Go to App\Http\Middleware\EncryptCookies and add Authorization into except array because Laravel Cookie has encrpytion for all values by default but the Authorization token encrpytion is not needed in this case since it was generated by gateway.
protected $except = [
'Authorization'
];Go to App\Http\Middleware\Kernel and add the following syntax
protected $middleware = [
// \App\Http\Middleware\TrustHosts::class,
\App\Http\Middleware\TrustProxies::class,
...
**\Tenant\Auth\Middleware\TenantAuthMiddleware::class**
];This package will automatic extract the following information if JWT token is valid:
- x-user-uuid (Current user's uuid)
- x-tenant-uuid (Current user's tenant id)
- x-tenant-url (Current user's tenant url)
- x-scopes (Current user's permissions / json encoded)
- x-roles (Current user's roles. E.g: admin/users. / Json encoded)
- x-modules (Module that user could access / json encoded)
You may use $request to extract the information in controller E.g $request->header('x-user-uuid');