Be part of JetBrains PHPverse 2026 on June 9 – a free online event bringing PHP devs worldwide together.
https://i.stack.imgur.com/b2nlM.png Clients: I plan to develop Web Apps in React/Angular with Apollo Client, desktop application with Java and native Android/IOS application I want to find a way following good practices to understand and implement the flow described above. I use laravel as backend server and Lighthouse as GraphQL server, i have read a little about OAuth2, the documentation of Passport and Sanctum and JWT, i have some ideas on how to do it but I am not very clear and I do not know if they are good ideas. So far i have user authentication with Passport
Very easy, For authentification use Sanctum(more simple) or Passport.
For Authorization, for my case I use https://spatie.be/docs/laravel-permission/v4/introduction, once the use login you can return list of permission of that user, and in front end you just make tests
Thanks for your contribution but I think you did not understand the flow well or you did not read correctly, the last thing I said was that I already have authentication with Passport but I need to implement the authorization of the clients (Frontend Angular / React, mobile and desktop application) and no of authenticated users
Please or to participate in this conversation.