1 | <?php
|
---|
2 |
|
---|
3 | return [
|
---|
4 |
|
---|
5 | /*
|
---|
6 | |--------------------------------------------------------------------------
|
---|
7 | | Authentication Defaults
|
---|
8 | |--------------------------------------------------------------------------
|
---|
9 | |
|
---|
10 | | This option controls the default authentication "guard" and password
|
---|
11 | | reset options for your application. You may change these defaults
|
---|
12 | | as required, but they're a perfect start for most applications.
|
---|
13 | |
|
---|
14 | */
|
---|
15 |
|
---|
16 | 'defaults' => [
|
---|
17 | 'guard' => 'web',
|
---|
18 | 'passwords' => 'users',
|
---|
19 | ],
|
---|
20 |
|
---|
21 | /*
|
---|
22 | |--------------------------------------------------------------------------
|
---|
23 | | Authentication Guards
|
---|
24 | |--------------------------------------------------------------------------
|
---|
25 | |
|
---|
26 | | Next, you may define every authentication guard for your application.
|
---|
27 | | Of course, a great default configuration has been defined for you
|
---|
28 | | here which uses session storage and the Eloquent user provider.
|
---|
29 | |
|
---|
30 | | All authentication drivers have a user provider. This defines how the
|
---|
31 | | users are actually retrieved out of your database or other storage
|
---|
32 | | mechanisms used by this application to persist your user's data.
|
---|
33 | |
|
---|
34 | | Supported: "session"
|
---|
35 | |
|
---|
36 | */
|
---|
37 |
|
---|
38 | 'guards' => [
|
---|
39 | 'web' => [
|
---|
40 | 'driver' => 'session',
|
---|
41 | 'provider' => 'users',
|
---|
42 | ],
|
---|
43 |
|
---|
44 | 'api' => [
|
---|
45 | 'driver' => 'token',
|
---|
46 | 'provider' => 'users',
|
---|
47 | 'hash' => false,
|
---|
48 | ],
|
---|
49 | ],
|
---|
50 |
|
---|
51 | /*
|
---|
52 | |--------------------------------------------------------------------------
|
---|
53 | | User Providers
|
---|
54 | |--------------------------------------------------------------------------
|
---|
55 | |
|
---|
56 | | All authentication drivers have a user provider. This defines how the
|
---|
57 | | users are actually retrieved out of your database or other storage
|
---|
58 | | mechanisms used by this application to persist your user's data.
|
---|
59 | |
|
---|
60 | | If you have multiple user tables or models you may configure multiple
|
---|
61 | | sources which represent each model / table. These sources may then
|
---|
62 | | be assigned to any extra authentication guards you have defined.
|
---|
63 | |
|
---|
64 | | Supported: "database", "eloquent"
|
---|
65 | |
|
---|
66 | */
|
---|
67 |
|
---|
68 | 'providers' => [
|
---|
69 | 'users' => [
|
---|
70 | 'driver' => 'eloquent',
|
---|
71 | 'model' => App\Models\User::class,
|
---|
72 | ],
|
---|
73 |
|
---|
74 | // 'users' => [
|
---|
75 | // 'driver' => 'database',
|
---|
76 | // 'table' => 'users',
|
---|
77 | // ],
|
---|
78 | ],
|
---|
79 |
|
---|
80 | /*
|
---|
81 | |--------------------------------------------------------------------------
|
---|
82 | | Resetting Passwords
|
---|
83 | |--------------------------------------------------------------------------
|
---|
84 | |
|
---|
85 | | You may specify multiple password reset configurations if you have more
|
---|
86 | | than one user table or model in the application and you want to have
|
---|
87 | | separate password reset settings based on the specific user types.
|
---|
88 | |
|
---|
89 | | The expire time is the number of minutes that the reset token should be
|
---|
90 | | considered valid. This security feature keeps tokens short-lived so
|
---|
91 | | they have less time to be guessed. You may change this as needed.
|
---|
92 | |
|
---|
93 | */
|
---|
94 |
|
---|
95 | 'passwords' => [
|
---|
96 | 'users' => [
|
---|
97 | 'provider' => 'users',
|
---|
98 | 'table' => 'password_resets',
|
---|
99 | 'expire' => 60,
|
---|
100 | 'throttle' => 60,
|
---|
101 | ],
|
---|
102 | ],
|
---|
103 |
|
---|
104 | /*
|
---|
105 | |--------------------------------------------------------------------------
|
---|
106 | | Password Confirmation Timeout
|
---|
107 | |--------------------------------------------------------------------------
|
---|
108 | |
|
---|
109 | | Here you may define the amount of seconds before a password confirmation
|
---|
110 | | times out and the user is prompted to re-enter their password via the
|
---|
111 | | confirmation screen. By default, the timeout lasts for three hours.
|
---|
112 | |
|
---|
113 | */
|
---|
114 |
|
---|
115 | 'password_timeout' => 10800,
|
---|
116 |
|
---|
117 | ];
|
---|