invoiceninja/app/Http/Middleware/TokenAuth.php

<?php

namespace App\Http\Middleware;

use App\Models\CompanyToken;
use App\Models\User;
use Closure;

class TokenAuth
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle($request, Closure $next)
    {

        if( $request->header('X-API-TOKEN') && ($user = CompanyToken::whereRaw("BINARY `token`= ?",[$request->header('X-API-TOKEN')])->first()->user ) ) 
        {
            
            auth()->login($user);
        
        }
        else {

            return response()->json(json_encode(['message' => 'Invalid token'], JSON_PRETTY_PRINT) ,403);
        }

        return $next($request);
    }
}
Setting up for tests 2019-03-26 15:46:08 +11:00			`<?php`

			`namespace App\Http\Middleware;`

			`use App\Models\CompanyToken;`
			`use App\Models\User;`
			`use Closure;`

			`class TokenAuth`
			`{`
			`/**`
			`* Handle an incoming request.`
			`*`
			`* @param \Illuminate\Http\Request $request`
			`* @param \Closure $next`
			`* @return mixed`
			`*/`
			`public function handle($request, Closure $next)`
			`{`

Test for API 2019-03-27 15:50:13 +11:00			if( $request->header('X-API-TOKEN') && ($user = CompanyToken::whereRaw("BINARY `token`= ?",[$request->header('X-API-TOKEN')])->first()->user ) )
			`{`
move away from session variables 2019-03-27 20:38:28 +11:00
Setting up for tests 2019-03-26 15:46:08 +11:00			`auth()->login($user);`

			`}`
			`else {`

Working on API Login Authentication 2019-04-18 16:11:37 +10:00			`return response()->json(json_encode(['message' => 'Invalid token'], JSON_PRETTY_PRINT) ,403);`
Setting up for tests 2019-03-26 15:46:08 +11:00			`}`

			`return $next($request);`
			`}`
			`}`