Authentication guards help control who can access parts of your Laravel app. They check if a user is logged in and allowed to see certain pages.
// Define guard in config/auth.php 'guards' => [ 'web' => [ 'driver' => 'session', 'provider' => 'users', ], 'api' => [ 'driver' => 'token', 'provider' => 'users', 'hash' => false, ], ], // Use guard in routes or controllers Route::middleware('auth:web')->group(function () { // Protected routes for web guard }); // Check guard in code if (Auth::guard('api')->check()) { // User is authenticated with api guard }
Guards define how users are authenticated for each request.
Each guard uses a driver like 'session' or 'token' and a user provider.
// Using default web guard if (Auth::check()) { // User is logged in }
// Using api guard if (Auth::guard('api')->check()) { // User is logged in via API token }
// Protect routes with guard middleware Route::middleware('auth:admin')->group(function () { // Routes only accessible by admin guard });
This route checks if the user is logged in with the 'web' guard. If yes, it shows a welcome message. If not, it redirects to login.
<?php use Illuminate\Support\Facades\Auth; use Illuminate\Support\Facades\Route; // In routes/web.php Route::get('/dashboard', function () { if (Auth::guard('web')->check()) { return 'Welcome to your dashboard!'; } return redirect('/login'); });
Always define guards in config/auth.php before using them.
Use middleware auth:guardname to protect routes easily.
Guards can use different drivers like session, token, or custom drivers.
Authentication guards control how users log in and access your app.
Use guards to protect routes and check user login status.
Define guards in config and use them with middleware or code checks.