Authentication issue with Admin & Front

@muhammadjaved A user is a user. Once authenticated, you should check they’re permissions to see if they can access the admin panel etc.

The Laravel documentation has a section on authorization: https://laravel.com/docs/master/authorization.

You could add middleware that you apply to your admin routes to check if your user is an administrator, and then policies to check the user’s permissions for each part of your admin panel.

Hello, @martinbean, Basically, I don't need users to log in to the admin panel.

I need separate authentication for administrators.

@muhammadjaved Why? An administrator is just a user with privileges. There’s no need to create a separate user model, controllers, views, auth guard etc.

What happens if you then need to add a third user type, say a moderator? Are you then going to create a third user model, controllers etc?

@martinbean you mean you can the users which get register from Frontend/Home we should also mix them with administrators sorry I couldn't understand

you can use 2 different guards with 2 different models if you want

in your config/auth.php

'guards' => [
    'web' => [
        'driver' => 'session',
        'provider' => 'users',
    ],
    'admin' => [
        'driver' => 'session',
        'provider' => 'admins',
    ],
],

'providers' => [
    'users' => [
        'driver' => 'eloquent',
        'model' => App\User::class,
    ],
    'admins' => [
        'driver' => 'eloquent',
        'model' => App\Admin::class,
    ],
]

then just provide the right guard as suffix to your middlewares:

$this->middleware('auth:admin');

Auth::guard('admin')->check()

// and so on

You have to tweak the Login Controller for the Backend to use the right guard, but that is totally doable :)

Thank you @Helmchen I will have a look into it.