[2fc88ec] | 1 | <?php
|
---|
| 2 |
|
---|
| 3 | return [
|
---|
| 4 |
|
---|
| 5 | /*
|
---|
| 6 | |--------------------------------------------------------------------------
|
---|
| 7 | | Stateful Domains
|
---|
| 8 | |--------------------------------------------------------------------------
|
---|
| 9 | |
|
---|
| 10 | | Requests from the following domains / hosts will receive stateful API
|
---|
| 11 | | authentication cookies. Typically, these should include your local
|
---|
| 12 | | and production domains which access your API via a frontend SPA.
|
---|
| 13 | |
|
---|
| 14 | */
|
---|
| 15 |
|
---|
| 16 | 'stateful' => explode(',', env('SANCTUM_STATEFUL_DOMAINS', sprintf(
|
---|
| 17 | '%s%s',
|
---|
| 18 | 'localhost,localhost:3000,127.0.0.1,127.0.0.1:8000,::1',
|
---|
| 19 | env('APP_URL') ? ','.parse_url(env('APP_URL'), PHP_URL_HOST) : ''
|
---|
| 20 | ))),
|
---|
| 21 |
|
---|
| 22 | /*
|
---|
| 23 | |--------------------------------------------------------------------------
|
---|
| 24 | | Expiration Minutes
|
---|
| 25 | |--------------------------------------------------------------------------
|
---|
| 26 | |
|
---|
| 27 | | This value controls the number of minutes until an issued token will be
|
---|
| 28 | | considered expired. If this value is null, personal access tokens do
|
---|
| 29 | | not expire. This won't tweak the lifetime of first-party sessions.
|
---|
| 30 | |
|
---|
| 31 | */
|
---|
| 32 |
|
---|
| 33 | 'expiration' => null,
|
---|
| 34 |
|
---|
| 35 | /*
|
---|
| 36 | |--------------------------------------------------------------------------
|
---|
| 37 | | Sanctum Middleware
|
---|
| 38 | |--------------------------------------------------------------------------
|
---|
| 39 | |
|
---|
| 40 | | When authenticating your first-party SPA with Sanctum you may need to
|
---|
| 41 | | customize some of the middleware Sanctum uses while processing the
|
---|
| 42 | | request. You may change the middleware listed below as required.
|
---|
| 43 | |
|
---|
| 44 | */
|
---|
| 45 |
|
---|
| 46 | 'middleware' => [
|
---|
| 47 | 'verify_csrf_token' => App\Http\Middleware\VerifyCsrfToken::class,
|
---|
| 48 | 'encrypt_cookies' => App\Http\Middleware\EncryptCookies::class,
|
---|
| 49 | ],
|
---|
| 50 |
|
---|
| 51 | ];
|
---|