Laravel 10 Create Multiple Authentication in Laravel

Lecture 05

Laravel 10 Create Multiple Authentication in Laravel

Laravel indeed offers default authentication features such as login, registration, and password reset, and it even includes two-factor authentication with the Fortify package. However, it does not natively support multiple authentications. If you require multi-authentication in your Laravel application, you will need to implement it from the ground up.

In this Laravel 8/9/10 multi-auth tutorial, I will guide you through the process of creating multiple authentication methods in your Laravel application from scratch. This means that if you need to implement multi-authentication, you can do so without any concerns by following the steps I've outlined here.

While it's possible to create multiple authentications in Laravel using guards, this tutorial will take a different approach. We will use middleware to manage multi-authentication within the same user table, accommodating various roles. This method allows you to achieve multiple authentication scenarios without relying on distinct guards. Please refer to the preview of the Laravel multi-auth tutorial for more details.

Login as an admin - Step 1: Install Laravel

First of all, we need to get a fresh Laravel 9 version application using the bellow command, So open your terminal OR command prompt and run the bellow command to start laravel 9 multi auth create multiple authentication in laravel.

composer create-project laravel/laravel my-laravel-taleemApp

Step 2: Connect Database

Once you've completed the installation of your Laravel application and successfully configured the database settings, the next step is to navigate to the ".env" file. Within this file, you will need to make the necessary adjustments to the database name, username, and password to ensure they match your specific database setup.

.env

DB_CONNECTION=mysql
DB_HOST=127.0.0.1
DB_PORT=3306
DB_DATABASE=Enter_Your_Database_Name
DB_USERNAME=Enter_Your_Database_Username
DB_PASSWORD=Enter_Your_Database_Password

Step 3: Create Migration and Database Model

In this step, we need to add a new row "is_admin" in users table and model. then we need to run a migration. so let's change that on both files.

database/migrations/create_users_table.php

<?php
   
use Illuminate\Database\Migrations\Migration;
use Illuminate\Database\Schema\Blueprint;
use Illuminate\Support\Facades\Schema;
   
class CreateUsersTable extends Migration
{
    /**
     * Run the migrations.
     *
     * @return void
     */
    public function up()
    {
        Schema::create('users', function (Blueprint $table) {
            $table->id();
            $table->string('name');
            $table->string('email');
            $table->timestamp('email_verified_at')->nullable();
            $table->boolean('is_admin')->nullable();
            $table->string('password');
            $table->rememberToken();
            $table->timestamps();
        });
    }
  
    /**
     * Reverse the migrations.
     *
     * @return void
     */
    public function down()
    {
        Schema::dropIfExists('users');
    }
}

Update model as project requirement

Now update the user model by replacing it with the below code

app/Models/User.php

<?php
  
namespace App\Models;
  
use Illuminate\Contracts\Auth\MustVerifyEmail;
use Illuminate\Database\Eloquent\Factories\HasFactory;
use Illuminate\Foundation\Auth\User as Authenticatable;
use Illuminate\Notifications\Notifiable;
  
class User extends Authenticatable
{
    use HasFactory, Notifiable;
  
    /**
     * The attributes that are mass assignable.
     *
     * @var array
     */
    protected $fillable = [
        'name', 'email', 'password', 'is_admin'
    ];
  
    /**
     * The attributes that should be hidden for arrays.
     *
     * @var array
     */
    protected $hidden = [
        'password', 'remember_token',
    ];
  
    /**
     * The attributes that should be cast to native types.
     *
     * @var array
     */
    protected $casts = [
        'email_verified_at' => 'datetime',
    ];
}

Step 5: Create Auth Scaffold

Here, we will use laravel ui package and create auth scaffold with the bootstrap framework. let's follow bellow command

composer require laravel/ui

php artisan ui bootstrap --auth

Step 5: Create Middleware

In this step, we need to create admin middleware that will allow only admin access users to that routes. so let's create an admin user with the following steps in your app.

php artisan make:middleware IsAdmin

Create Route in Laravel

Here, we need to add one more route for the admin user home page so let's add that route in the web.php file.

routes/web.php

<?php
 
use Illuminate\Support\Facades\Route;
use App\Http\Controllers\HomeController;
/*
|--------------------------------------------------------------------------
| Web Routes
|--------------------------------------------------------------------------
|
| Here is where you can register web routes for your application. These
| routes are loaded by the RouteServiceProvider within a group which
| contains the "web" middleware group. Now create something great!
|
*/
Route::get('admin/home', [HomeController::class, 'adminHome'])->name('admin.home')->middleware('is_admin');

Create Controller in Laravel

Here, we need to add the adminHome() method for the admin route in HomeController. so let's add like as below.

app/Http/Controllers/HomeController.php

<?php  
namespace App\Http\Controllers; 
use Illuminate\Http\Request;
   
class HomeController extends Controller
{
    /**
     * Create a new controller instance.
     *
     * @return void
     */
    public function __construct()
    {
        $this->middleware('auth');
    }
  
    /**
     * Show the application dashboard.
     *
     * @return \Illuminate\Contracts\Support\Renderable
     */
    public function index()
    {
        return view('home');
    } 
    /**
     * Show the application dashboard.
     *
     * @return \Illuminate\Contracts\Support\Renderable
     */
    public function adminHome()
    {
        return view('adminHome');
    }   
}

Create Blade file in Laravel 9.x/10.x

In this step, we need to create a new blade file for admin and update for user blade file. so let's change it.

resources/views/home.blade.php

@extends('layouts.app')
   
@section('content')
<div class="container">
    <div class="row justify-content-center">
        <div class="col-md-8">
            <div class="card">
                <div class="card-header">Dashboard</div>
                <div class="card-body">
                    You are normal user.
                </div>
            </div>
        </div>
    </div>
</div>
@endsection

Admin Blade code

Now create an admin home blade file and update it.

resources/views/adminHome.blade.php

@extends('layouts.app')
   
@section('content')
<div class="container">
    <div class="row justify-content-center">
        <div class="col-md-8">
            <div class="card">
                <div class="card-header">Dashboard</div>
                <div class="card-body">
                    You are Admin.
                </div>
            </div>
        </div>
    </div>
</div>
@endsection

Create LoginController

In this step, we will change on LoginController, when the user will login then we redirect according to user access. if a normal user then we will redirect to the home route and if admin user then we redirect to the admin route. so let's change.

app/Http/Controllers/Auth/LoginController.php

<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use Illuminate\Foundation\Auth\AuthenticatesUsers;
use Illuminate\Http\Request;
class LoginController extends Controller
{
    use AuthenticatesUsers;
  
    /**
     * Where to redirect users after login.
     *
     * @var string
     */
    protected $redirectTo = '/home';
   
    /**
     * Create a new controller instance.
     *
     * @return void
     */
    public function __construct()
    {
        $this->middleware('guest')->except('logout');
    }
   
    public function login(Request $request)
    {   
        $input = $request->all();
   
        $this->validate($request, [
            'email' => 'required|email',
            'password' => 'required',
        ]);
   
        if(auth()->attempt(array('email' => $input['email'], 'password' => $input['password'])))
        {
            if (auth()->user()->is_admin == 1) {
                return redirect()->route('admin.home');
            }else{
                return redirect()->route('home');
            }
        }else{
            return redirect()->route('login')
                ->with('error','Email-Address And Password Are Wrong.');
        }
          
    }
}

Finally run the server

Now you can test our application by visiting the below URL.

http://127.0.0.1:8000/

php artisan serve

Lecture 05