How to forget specific session when user's login with authentication from Jetstream

Hello everyone, I have a question about how to forget a specific session when user's login. So where's default controller that managed for user login. For example I want remove this session after user's login

Session::forget('coupon_applied')

And thank you so much for all 🙏

MohamedTammam

4 years ago

Level 51

Under the hood Jetstream using Fortify.

You can customize the authentication method in JetstreamServiceProvider

/**
 * Bootstrap any application services.
 *
 * @return void
 */
public function boot()
{
    // ...

    Fortify::authenticateUsing(function (Request $request) {
        $user = User::where('email', $request->email)->first();

        if ($user &&
            Hash::check($request->password, $user->password)) {
			Session::forget('coupon_applied');
            return $user;
        }
    });
}

https://jetstream.laravel.com/2.x/features/authentication.html#customizing-user-authentication

Niush

4 years ago

Best Answer

Level 50

Alternatively, instead of using authenticateUsing (which does not handle throttle, 2fa etc.) you can customize Fortify login pipeline as below:

https://jetstream.laravel.com/2.x/features/authentication.html#customizing-the-authentication-pipeline

// JetstreamServiceProvider.php
use App\Actions\DoSomeThingMore;
use Illuminate\Http\Request;
use Laravel\Fortify\Actions\AttemptToAuthenticate;
use Laravel\Fortify\Actions\EnsureLoginIsNotThrottled;
use Laravel\Fortify\Actions\PrepareAuthenticatedSession;
use Laravel\Fortify\Actions\RedirectIfTwoFactorAuthenticatable;
use Laravel\Fortify\Fortify;

// ...

public function boot()
{
  // ...

  Fortify::authenticateThrough(function (Request $request) {
      return array_filter([
          config('fortify.limiters.login') ? null : EnsureLoginIsNotThrottled::class,
          RedirectIfTwoFactorAuthenticatable::class,
          AttemptToAuthenticate::class,
          PrepareAuthenticatedSession::class,
          DoSomeThingMore::class
      ]);
  });
}

And, the DoSomeThingMore class could have something like this:

<?php

namespace App\Actions;

use Illuminate\Http\Request;
use Illuminate\Support\Facades\Log;

class DoSomeThingMore
{
    /**
     * Do Something Here the incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  callable  $next
     * @return callable $next
     */
    public function __invoke(Request $request, $next)
    {
        $request->session()->forget('coupon_applied');
        Log::info(auth()->user());
        return $next($request);
    }
}

1 like

adnanerlansyah403

4 years ago

Level 1

@Niush how about to add more authentication. so for example i have admin authentication.

Niush

4 years ago

Level 50

@adnanerlansyah403 - For simple Role Based authentication refer this: https://martinbean.dev/blog/2021/07/29/simple-role-based-authentication-laravel/

Or for advanced role and permission management you can use this package: https://spatie.be/docs/laravel-permission/v5/introduction

Please or to participate in this conversation.