Sanctum SPA Authentication: Log Out Other Devices #40830

jove0610 · 2022-02-06T14:53:13Z

jove0610
Feb 6, 2022

It doesn't look like this feature isn't available on Sanctum SPA Authentication, the one I saw in docs
Auth::logoutOtherDevices($currentPassword);
needs to uncomment the AuthenticateSession middleware in web:

'web' => [
    // ...
    \Illuminate\Session\Middleware\AuthenticateSession::class,
    // ...
],

So I googled how to implement the same thing in Sanctum SPA Authentication and found this youtube video. The instruction is pretty simple:

Create your own middleware (ex. AuthenticateSessionSPA) .
Copy everything in the AuthenticateSession and paste it in your new middleware.
Create a private variable which is equal to sanctum (ex. private $driver = 'sanctum').
Replace all
$this->auth->getDefaultDriver()
with
$this->driver

And just like that I can not use Auth::logoutOtherDevices($password) in my app. The thing is this is not intended feature of laravel spa sanctum so even though it works, I'm not confident if it's safe. I mean, it is pretty simple, right? So maybe there's e a reason why the laravel devs did not implement that? Maybe it has some bugs and security risk?

jove0610 · 2022-04-28T03:04:36Z

jove0610
Apr 28, 2022
Author

EDIT: changed the category from Q&A to Ideas

0 replies

htv-quanth · 2024-12-18T07:31:56Z

htv-quanth
Dec 18, 2024

Has the problem been solved?

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Sanctum SPA Authentication: Log Out Other Devices #40830

Uh oh!

{{title}}

Uh oh!

Replies: 2 comments

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Sanctum SPA Authentication: Log Out Other Devices #40830

Uh oh!

jove0610 Feb 6, 2022

Replies: 2 comments

Uh oh!

jove0610 Apr 28, 2022 Author

Uh oh!

htv-quanth Dec 18, 2024

jove0610
Feb 6, 2022

jove0610
Apr 28, 2022
Author

htv-quanth
Dec 18, 2024