Authentication in Vue using Laravel Sanctum 

If you'd like to see the full source code behind this video, you can check it out on my GitHub here: github.com/aschmelyun/video-auth-vue-laravel-sanctum

One of the fullest 23 mins of my life, thank you for making such a clear and concise video. (Well, it's 23 mins but actually I watched, applied and worked on this video and subject all day.)

Your tutorials are well explained. Please make a series of this Laravel Vue + Sanctum

Man!!! The video quality is A+

Thank you very much for a beautiful short and detailed tutorial.

This was a perfectly made tutorial! Do you plan to make more Vue and Laravel tutorials?

Great tutorial. The description is clear and to the point. Would you mind to make full new video for laravel 8 vue3 + sanctum rest api full stack? Thanks in advance.

Thanks, great overview!

Thanks man youre channel best for anyone whos learning laravel.If you also will show auth laravel sanctum with react that's will be great.And try to show every example using react because developers usually use react.

Awesome as always.... Thank you

Really clear and amazing video. Thank you!

I was wondering if Sanctum can be used for a Multi guard set up such as Admin, Customer and Vendor type of setup

Great video... would you make a video on how to deploy this into a live server ? I dont seem to be able to find one ... thanks

Why do we do GET /sanctum/csrf-cookie if we already have XSRF-TOKEN in our cookies?

Hi Andrew, what are your IDE's theme and font settings? and which IDE are you using?

Hi, Thanks for this video! I need to make a PUT api Route to modify the product in the cart. Can I just write the route in api.php or I need Laravel Sanctum?

Is it possible to use the Laravel ui auth forms and laravel sanctum or do you have to write your own login form?

Awesome video thank you

What are the code extensions and configurations you are using?

Would you please make a video about protecting the routes with the sanctum, and how to refresh or expire the token.

what font family you are using in your editor?

Thank you about this video. How i can check if user authenticated ?

in which folder is the admin panel created? in client project or inside laravel project?

I don't get it. As already someone mentioned, the XSRF-Token already exists without /sanctum/csrf-cookie, wo why do we call that? And it says, that after a successful login I can call any other api routes, yes, of course, couse there is no auth:sanctum middleware in your secrets api call, so i can call that through postman too.

i'm having problems with laravel santum its very slow in response when i use sails in docker ? any idea how to fix this ?

I was building on valet and failed to pick up domain config, but otherwise a great tutorial in both content and delivery.

is this one the same as laravel breeze that comes with vue? and maybe add vite ?

It would be amazing if you could make an updated version of this ..

Hi, isn't your "api/secrets" api path been expose to frontend. Where anyone can use postman to call the "api/secrets" without authenticate?

Andrew how do we logout with this cookie stuff?

If I try to retrieve the user secrets I get the error that there is no User on the request. I dont know why he is telling me im not logged in after entering the right credentials. What could be the problem?

Thank you

Hi, Andrew, awesome video. Regarding the last example, I assume it's easier and more robust to use the auth:sanctum (instead of the default auth:api) middleware on protected routes? This way it'll throw a 401 (unauthenicated) and for some routes 403 (unauthorized) error which is clearer than "general" 500 (internal server error). Of course, the biggest plus you get is that you can set this middleware on your controller's constructor/chain it in the routes file instead of performing the checks for each controller's method. Am I right to point this out? Another comment: is there something that can be done to handle redirection of your Vue frontend in the same way Laravel does it out of the box for back-end served apps? I'm specifically thinking (but you might add something as well) about RedirectIfAuthenticated middleware which prevents signed-in users from reaching e.g. Login/Register pages. How can this be tackled for your Vue front end app? Thanks again for this great tutorial, I subscribed and hope to see more cool videos from you. Keep up!

Does this work for laravel 8?

lets say im at dashboard , and im making axios call to get user which is protected with auth:sanctum middleware , do i have to send the token manually through my axios call or it will work just fine

Did you know what vscode extension to install to make showing the identifier, like that 'table' and 'column' in migration file? thanks!

Since this relies on cookies for security, how does mobile app integration work using same API?

I'm sorry for being lost, but what password are you using to log in to your dummy users (it's hashed in the DB, of course).

Why is this much better option then tymon/jwt-auth? Is it more secure? Or does sanctum solve some problems that are in tymon/jwt-auth? Or is it just easier to setup?

How can i get auth user in public api using scantum

Hi, great tutorial but I've got problem with login in. When I do axios.post on route /login I've got error: errors: {email: ["These credentials do not match our records."]} message: "The given data was invalid." I've checked up several times and inputed data is correct.

Thanks for the course, hoping to understand Sanctum more... @5:25 In Tinker when I run: App\User::with('secrets')->get(); I get the following error: PHP Error: Call to a member function addEagerConstraints() on null in /Users/[username]/Sites/sanctum/vendor/laravel/framework/src/Illuminate/Database/Eloquent/Builder.php on line 578 Can you help?

My problem with this that my api is not protected from third party if I call myApp/public/api/secrets page. So that would be a security issue. How would you do that? Eg. in postman you aren't able to access the api only if I provide you an access bearer token. One little addition, when you make a video, please keep bottom 3% free from content, I can't see your terminal commands of the youtube progress bar correctly when pausing the video. Thank you.

what is it dcr?

Hi i have vue login page. and i just want to implement sanctum on may login. it should i need secret or not ?

I'm having a problem at 20:20. When i go into 'localhost:8000/api/secrets' it says that i'm "trying to get property 'secrets' of non-object". When I try only to return $request->user() it shows nothing. I'm using Laravel 8

Thanks.

which code editor do you use? And if it is vscode which extensions do you have?

Which IDE are you using??🤔 Is that php Strom??

I have problem in using laravel8

Hello there! I try this with Laravel 8, and I'm blocked by this error: "localhost:8000/login 404 (Not Found)" What could be the problem?

what happens when you accidentally refresh the page?

How do i check in each component if the user is authenticated??

Can please add on how to refresh the token.

Can you do full tutorial please

I've thinking about Sanctum and.. if you use just a simple authorization system, why do you even need Sanctum? Can't you just authorize normaly vie axios request? Sanctum may be useful only issuing API tokens which you do not do in the video.

work with token match easy and better if need full cross domain

Can't see the commands

if you want to make requests for api routes from a web page SESSION_DRIVER=cookie SESSION_DOMAIN=localhost SANCTUM_STATEFUL_DOMAINS=localhost:8000

13:30 , you could've used `form-group` class

13:55

Русскоговорящим ку У кого его метод не работает пишите: App\Models\User::factory()->create();

Тода Андрей

artisan make:controller SicretController - makes a new blank class with the name SicretController, it is so useful, i do not even know how i would live without this help, lmao, every day i get more and more disappointed about this framework, also you tutorial is not relevant alredy for the 8th version. f**k do these guys have anything permanent?

OMG I almost run go back to ExpressJS! You saved me a lot of trouble. Now I can access the AUTH User using $request-user()->id.