Open
Description
Trying to Refresh a token returns "Invalid token":
Fixed when I remove the refresh rout from the api.auth middleware group:
$api->group([
'middleware' => 'api.auth',
], function ($api) {
$api->get('/', [
'uses' => 'App\Http\Controllers\APIController@getIndex',
'as' => 'api.index'
]);
$api->get('/auth/user', [
'uses' => 'App\Http\Controllers\Auth\AuthController@getUser',
'as' => 'api.auth.user'
]);
$api->patch('/auth/refresh', [
'uses' => 'App\Http\Controllers\Auth\AuthController@patchRefresh',
'as' => 'api.auth.refresh'
]); // REMOVED THIS FROM THE GROUP AND LEFT IT UNPROTECTED, OR ELSE TOKEN WOULD NOT BE REFRESHED
$api->delete('/auth/invalidate', [
'uses' => 'App\Http\Controllers\Auth\AuthController@deleteInvalidate',
'as' => 'api.auth.invalidate'
]);
});
Metadata
Metadata
Assignees
Labels
No labels