Support the ongoing development of Laravel.io →
mukeshp004
posted 9 years ago
Authentication Security
Last updated 2 years ago.
0
marcod
replied 9 years ago
Solution

The curl parameter "--user" just passes basic auth info in the HTTP request. You can easily use the BasicAuth middleware => http://laravel.com/docs/5.0/authentication#http-basic-authentication

However I don't think this is the best approach. If you have several servers/services doing requests on your Laravel instance, you should at least use a seperate user for each one. Otherwise if one of your passwords get compromised you have to change credentials on all servers.

A better solution in my opinion would be to use an access (or authentication) token based mechansim or even better certificates (if there are critical data involved). But that really depends on what kind of data you process.

0
mukeshp004
replied 9 years ago

Thanks Marcod

http://laravel.com/docs/5.0/authentication

i had added below line in htaccess as mention in above url

RewriteCond %{HTTP:Authorization} ^(.+)$
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]

i remove this line and working properly usig auth.basic as middleware

0

Sign in to participate in this thread!

Eventy

Your banner here too?

mukeshp004 mukeshp004 Joined 23 Jun 2014

Moderators

We'd like to thank these amazing companies for supporting us

Eventy
Fathom
Forge
Envoyer
Beyond Code
BairesDev
Dotcom-monitor
N-iX

Your logo here?

Laravel.io

The Laravel portal for problem solving, knowledge sharing and community building.

Laravel.io

Forum Articles Pastebin

Socials

X (Twitter) GitHub

The community

Laravel Laravel Laravel News Laravel News
Laracasts Laracasts Laravel Podcast Laravel Podcast
© 2024 Laravel.io - All rights reserved.
Terms of service Privacy policy Advertise