0

I have recently developed a password grant API to be used by my client application. It is successfully generating access tokens for users after the client has been authorized.

The problem I'm facing now is how to pass the access token back from client application to Laravel with each request? (as done by Headers in passport) I have gone through the laravel API Authentication by passport documentation.

What I'm trying to do

I have already tested the work flow of the API on postman. It was working fine. But now I'm trying to hard code everything. SO now I'm trying to fetch posts for the users who are having the access tokens.

api.php (Routes file)

Route::post('login', 'API\UserController@userSignIn')->name('login');

Route::middleware('auth:api')->get('/posts', function() {
$accessToken = Cookie::get('accessToken');

$client = new \GuzzleHttp\Client;
  $response = $client->request('GET', 'http://tcc.devp/api/posts', [
    'headers' => [
      'Accept' => 'application/json',
      'Authorization' => 'Bearer '.$accessToken,
    ],
  ]);
  return $accessToken;
})->name('posts');

API/UserController.php

public function userSignIn(Request $request){
  if(Auth::attempt(['email' => $request['email'], 'password' => $request['password']])){

    $http = new \GuzzleHttp\Client;

    $response = $http->post('http://tcc.devp/oauth/token', [
        'form_params' => [
        'grant_type' => 'password',
        'client_id' => 'client_id',
        'client_secret' => 'client_secret',
        'username' => $request['email'],
        'password' => $request['password'],
        'scope' => '*'
        ],
    ]);
    $response_array = json_decode((string) $response->getBody()->getContents(), true);

    $accessToken = $response_array['access_token'];
    $refreshToken = $response_array['refresh_token'];

    Cookie::queue('accessToken', $accessToken, 60);
    Cookie::queue('refreshToken', $refreshToken, 60);

    // return redirect()->route('posts');
    }
    else{
        return response()->json(['error'=>'Unauthorised'], 401);
    }
}

While doing so, I'm getting this error MethodNotAllowedHttpException. I got to know that it is because I'm redirecting my post request to some other page in the controller. network tab is showing 302 status.

I have two questions to ask you-

  1. How can I get rid of MethodNotAllowedHttpException error?
  2. Is my way of passing the access token to the request correct? If not how can I do that? I have found no resources on the internet to guide me in this direction
Improve this question
4
  • What route is returning MethodNotAllowedHttpException Commented Aug 4, 2018 at 21:00
  • POST route @TarekAdam Commented Aug 5, 2018 at 1:14
  • Possible duplicate of MethodNotAllowedException Laravel Password Grant API Commented Aug 5, 2018 at 2:27
  • That's also posted by me as I was not getting attention on this post. @HieuLe Commented Aug 5, 2018 at 2:34
Related questions
0
method not allowed using guzzle
0
Consuming API with Laravel Passport
4
Guzzle returns 500 error
Load 7 more related questions Show fewer related questions

0

Reset to default

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.