Use Session instead of api_token

Hello,

I have a website where you login and sometimes I use apis to pass data to the frontend. I have it working with api_tokens(no refresh for now on the token) but I want to use sessions instead as the session is passed in the header when the request happens.

Solutions:

Not use the api for these requests, but I plan in the future to maybe have a SPA
Modify the way api works to also validate the session, anyone knows what I need to modify?
Move the api in the web part of the app.

Any ideas on what would be the best solution, 1 seems the simplest one

Thank you

bugsysha

5 years ago

Level 61

https://laravel.com/docs/7.x/sanctum

cipa

5 years ago

Level 1

Thank you, I could not find this in the Ecosystem tab on laravel's website but I heard of it and thought it might be an OATH solution.

bugsysha

5 years ago

Level 61

I think that it is better to use Official Packages section in documentation for that purpose.

Please or to participate in this conversation.