├── .gitignore ├── README.md ├── backend ├── .editorconfig ├── .env.example ├── .gitattributes ├── .gitignore ├── README.md ├── app │ ├── Console │ │ └── Kernel.php │ ├── Exceptions │ │ └── Handler.php │ ├── Http │ │ ├── Controllers │ │ │ ├── Auth │ │ │ │ ├── AuthenticatedSessionController.php │ │ │ │ ├── EmailVerificationNotificationController.php │ │ │ │ ├── NewPasswordController.php │ │ │ │ ├── PasswordResetLinkController.php │ │ │ │ ├── RegisteredUserController.php │ │ │ │ └── VerifyEmailController.php │ │ │ └── Controller.php │ │ ├── Kernel.php │ │ ├── Middleware │ │ │ ├── Authenticate.php │ │ │ ├── EncryptCookies.php │ │ │ ├── EnsureEmailIsVerified.php │ │ │ ├── PreventRequestsDuringMaintenance.php │ │ │ ├── RedirectIfAuthenticated.php │ │ │ ├── TrimStrings.php │ │ │ ├── TrustHosts.php │ │ │ ├── TrustProxies.php │ │ │ ├── ValidateSignature.php │ │ │ └── VerifyCsrfToken.php │ │ └── Requests │ │ │ └── Auth │ │ │ └── LoginRequest.php │ ├── Models │ │ └── User.php │ └── Providers │ │ ├── AppServiceProvider.php │ │ ├── AuthServiceProvider.php │ │ ├── BroadcastServiceProvider.php │ │ ├── EventServiceProvider.php │ │ └── RouteServiceProvider.php ├── artisan ├── bootstrap │ ├── app.php │ └── cache │ │ └── .gitignore ├── composer.json ├── composer.lock ├── config │ ├── app.php │ ├── auth.php │ ├── broadcasting.php │ ├── cache.php │ ├── cors.php │ ├── database.php │ ├── filesystems.php │ ├── hashing.php │ ├── logging.php │ ├── mail.php │ ├── queue.php │ ├── sanctum.php │ ├── services.php │ ├── session.php │ └── view.php ├── database │ ├── .gitignore │ ├── factories │ │ └── UserFactory.php │ ├── migrations │ │ ├── 2014_10_12_000000_create_users_table.php │ │ ├── 2014_10_12_100000_create_password_reset_tokens_table.php │ │ ├── 2019_08_19_000000_create_failed_jobs_table.php │ │ └── 2019_12_14_000001_create_personal_access_tokens_table.php │ └── seeders │ │ └── DatabaseSeeder.php ├── phpunit.xml ├── public │ ├── .htaccess │ ├── favicon.ico │ ├── index.php │ └── robots.txt ├── resources │ └── views │ │ └── .gitkeep ├── routes │ ├── api.php │ ├── auth.php │ ├── channels.php │ ├── console.php │ └── web.php ├── storage │ ├── app │ │ ├── .gitignore │ │ └── public │ │ │ └── .gitignore │ ├── framework │ │ ├── .gitignore │ │ ├── cache │ │ │ ├── .gitignore │ │ │ └── data │ │ │ │ └── .gitignore │ │ ├── sessions │ │ │ └── .gitignore │ │ ├── testing │ │ │ └── .gitignore │ │ └── views │ │ │ └── .gitignore │ └── logs │ │ └── .gitignore └── tests │ ├── CreatesApplication.php │ ├── Feature │ ├── Auth │ │ ├── AuthenticationTest.php │ │ ├── EmailVerificationTest.php │ │ ├── PasswordResetTest.php │ │ └── RegistrationTest.php │ └── ExampleTest.php │ ├── TestCase.php │ └── Unit │ └── ExampleTest.php └── frontend ├── .env.development ├── .env.example ├── .env.production ├── .eslintrc.cjs ├── .gitignore ├── README.md ├── index.html ├── package.json ├── postcss.config.js ├── public ├── _redirects └── vite.svg ├── src ├── App.tsx ├── assets │ └── index.css ├── components │ ├── ErrorBoundary.tsx │ ├── errors │ │ └── Generic.tsx │ ├── layout │ │ ├── AuthLayout.tsx │ │ └── GuestLayout.tsx │ └── ui │ │ ├── Navbar.tsx │ │ └── Spinner.tsx ├── context │ └── AuthContext.tsx ├── hooks │ └── useAuthContext.tsx ├── lib │ └── axios.tsx ├── main.tsx ├── pages │ ├── ForgotPassword.tsx │ ├── Home.tsx │ ├── Login.tsx │ ├── QuickStart.tsx │ ├── Register.tsx │ └── ResetPassword.tsx └── vite-env.d.ts ├── tailwind.config.ts ├── tsconfig.json ├── tsconfig.node.json ├── vite.config.ts └── yarn.lock /.gitignore: -------------------------------------------------------------------------------- 1 | # Node.js / React / Vite 2 | node_modules/ 3 | /dist/ 4 | .cache/ 5 | yarn-error.log 6 | 7 | # Build output 8 | /build/ 9 | 10 | # Vite 11 | .vite/ 12 | 13 | # TypeScript 14 | *.tsbuildinfo 15 | 16 | # Laravel 17 | /vendor/ 18 | /public/storage/ 19 | /public/hot/ 20 | /storage/*.key 21 | /.env 22 | /.env.backup 23 | /.env.* 24 | /.idea 25 | Homestead.json 26 | Homestead.yaml 27 | 28 | # Testing files 29 | /phpunit.xml 30 | /tests/ 31 | 32 | # Composer 33 | /composer.phar 34 | /vendor/ 35 | 36 | # IDE 37 | /.idea/ 38 | /.vscode/ 39 | 40 | # Miscellaneous 41 | .DS_Store 42 | .env.local 43 | .env.development.local 44 | .env.test.local 45 | .env.production.local 46 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Laravel Breeze API + React 2 | 3 | This repository is a web application built using Vite, React, TypeScript, Tailwind CSS, and React Router. 4 | 5 | Screenshot 6 | 7 | # Getting Started 8 | 9 | To get started with the project, follow these steps: 10 | 11 | 1. Clone the repository: `git clone git@github.com:justnixx/laravel-breeze-api-react.git` 12 | 2. Install the necessary dependencies for both frontend and backend. 13 | 14 | # Description 15 | 16 | The repository is structured into two main directories: 17 | 18 | 1. **Backend**: This directory contains the code for the backend of the application. It provides the necessary APIs and handles server-side logic using Laravel Breeze. 19 | 20 | 2. **Frontend**: This directory contains the code for the frontend of the application. It connects to the Laravel Breeze API backend and handles the user interface using React, TypeScript, Tailwind CSS, and React Router. 21 | 22 | Please refer to the respective directories for detailed instructions and additional information on each component. 23 | 24 | # Features 25 | 26 | - Vite: The frontend uses Vite as the build tool, providing fast and efficient development experience. 27 | - React: The frontend is built using React, a popular JavaScript library for building user interfaces. 28 | - TypeScript: The project utilizes TypeScript, a typed superset of JavaScript, for enhanced developer productivity and code quality. 29 | - Tailwind CSS: The frontend styling is done using Tailwind CSS, a utility-first CSS framework. 30 | - React Router: The frontend uses React Router for declarative routing, enabling navigation and multiple views in the application. 31 | - Laravel Breeze: The backend API is built using Laravel Breeze, a lightweight authentication scaffold for Laravel applications. 32 | 33 | # Demo 34 | 35 | 👉 [https://breeze.nixx.dev/login](https://breeze.nixx.dev/login) 36 | -------------------------------------------------------------------------------- /backend/.editorconfig: -------------------------------------------------------------------------------- 1 | root = true 2 | 3 | [*] 4 | charset = utf-8 5 | end_of_line = lf 6 | indent_size = 4 7 | indent_style = space 8 | insert_final_newline = true 9 | trim_trailing_whitespace = true 10 | 11 | [*.md] 12 | trim_trailing_whitespace = false 13 | 14 | [*.{yml,yaml}] 15 | indent_size = 2 16 | 17 | [docker-compose.yml] 18 | indent_size = 4 19 | -------------------------------------------------------------------------------- /backend/.env.example: -------------------------------------------------------------------------------- 1 | APP_NAME=Laravel 2 | APP_ENV=local 3 | APP_KEY= 4 | APP_DEBUG=true 5 | APP_URL=http://localhost:8000 6 | FRONTEND_URL=http://localhost:3000 7 | 8 | LOG_CHANNEL=stack 9 | LOG_DEPRECATIONS_CHANNEL=null 10 | LOG_LEVEL=debug 11 | 12 | DB_CONNECTION=mysql 13 | DB_HOST=127.0.0.1 14 | DB_PORT=3306 15 | DB_DATABASE=backend 16 | DB_USERNAME=root 17 | DB_PASSWORD= 18 | 19 | BROADCAST_DRIVER=log 20 | CACHE_DRIVER=file 21 | FILESYSTEM_DISK=local 22 | QUEUE_CONNECTION=sync 23 | SESSION_DRIVER=file 24 | SESSION_LIFETIME=120 25 | 26 | MEMCACHED_HOST=127.0.0.1 27 | 28 | REDIS_HOST=127.0.0.1 29 | REDIS_PASSWORD=null 30 | REDIS_PORT=6379 31 | 32 | MAIL_MAILER=smtp 33 | MAIL_HOST=mailpit 34 | MAIL_PORT=1025 35 | MAIL_USERNAME=null 36 | MAIL_PASSWORD=null 37 | MAIL_ENCRYPTION=null 38 | MAIL_FROM_ADDRESS="hello@example.com" 39 | MAIL_FROM_NAME="${APP_NAME}" 40 | 41 | AWS_ACCESS_KEY_ID= 42 | AWS_SECRET_ACCESS_KEY= 43 | AWS_DEFAULT_REGION=us-east-1 44 | AWS_BUCKET= 45 | AWS_USE_PATH_STYLE_ENDPOINT=false 46 | 47 | PUSHER_APP_ID= 48 | PUSHER_APP_KEY= 49 | PUSHER_APP_SECRET= 50 | PUSHER_HOST= 51 | PUSHER_PORT=443 52 | PUSHER_SCHEME=https 53 | PUSHER_APP_CLUSTER=mt1 54 | 55 | VITE_PUSHER_APP_KEY="${PUSHER_APP_KEY}" 56 | VITE_PUSHER_HOST="${PUSHER_HOST}" 57 | VITE_PUSHER_PORT="${PUSHER_PORT}" 58 | VITE_PUSHER_SCHEME="${PUSHER_SCHEME}" 59 | VITE_PUSHER_APP_CLUSTER="${PUSHER_APP_CLUSTER}" 60 | -------------------------------------------------------------------------------- /backend/.gitattributes: -------------------------------------------------------------------------------- 1 | * text=auto eol=lf 2 | 3 | *.blade.php diff=html 4 | *.css diff=css 5 | *.html diff=html 6 | *.md diff=markdown 7 | *.php diff=php 8 | 9 | /.github export-ignore 10 | CHANGELOG.md export-ignore 11 | .styleci.yml export-ignore 12 | -------------------------------------------------------------------------------- /backend/.gitignore: -------------------------------------------------------------------------------- 1 | /.phpunit.cache 2 | /node_modules 3 | /public/build 4 | /public/hot 5 | /public/storage 6 | /storage/*.key 7 | /vendor 8 | .env 9 | .env.backup 10 | .env.production 11 | .phpunit.result.cache 12 | Homestead.json 13 | Homestead.yaml 14 | auth.json 15 | npm-debug.log 16 | yarn-error.log 17 | /.fleet 18 | /.idea 19 | /.vscode 20 | -------------------------------------------------------------------------------- /backend/README.md: -------------------------------------------------------------------------------- 1 | # Laravel Breeze API 2 | 3 | # Installation 4 | 5 | To begin, run the following command to install the project dependencies: 6 | 7 | `composer install` 8 | 9 | # Edit .env 10 | 11 | Next, open the .env file and add your database credentials. If necessary, you can also change the application URL in this file. 12 | 13 | # Run Migrations 14 | 15 | To create the required database tables, run the migration command: 16 | 17 | `php artisan migrate` 18 | 19 | # Start the Local Server 20 | 21 | Finally, start the local server using the following command: 22 | 23 | `php artisan serve` 24 | 25 | Now you should be able to access the Laravel Breeze API project locally. 26 | -------------------------------------------------------------------------------- /backend/app/Console/Kernel.php: -------------------------------------------------------------------------------- 1 | command('inspire')->hourly(); 16 | } 17 | 18 | /** 19 | * Register the commands for the application. 20 | */ 21 | protected function commands(): void 22 | { 23 | $this->load(__DIR__.'/Commands'); 24 | 25 | require base_path('routes/console.php'); 26 | } 27 | } 28 | -------------------------------------------------------------------------------- /backend/app/Exceptions/Handler.php: -------------------------------------------------------------------------------- 1 | 14 | */ 15 | protected $dontFlash = [ 16 | 'current_password', 17 | 'password', 18 | 'password_confirmation', 19 | ]; 20 | 21 | /** 22 | * Register the exception handling callbacks for the application. 23 | */ 24 | public function register(): void 25 | { 26 | $this->reportable(function (Throwable $e) { 27 | // 28 | }); 29 | } 30 | } 31 | -------------------------------------------------------------------------------- /backend/app/Http/Controllers/Auth/AuthenticatedSessionController.php: -------------------------------------------------------------------------------- 1 | authenticate(); 19 | 20 | $request->session()->regenerate(); 21 | 22 | return response()->noContent(); 23 | } 24 | 25 | /** 26 | * Destroy an authenticated session. 27 | */ 28 | public function destroy(Request $request): Response 29 | { 30 | Auth::guard('web')->logout(); 31 | 32 | $request->session()->invalidate(); 33 | 34 | $request->session()->regenerateToken(); 35 | 36 | return response()->noContent(); 37 | } 38 | } 39 | -------------------------------------------------------------------------------- /backend/app/Http/Controllers/Auth/EmailVerificationNotificationController.php: -------------------------------------------------------------------------------- 1 | user()->hasVerifiedEmail()) { 19 | return redirect()->intended(RouteServiceProvider::HOME); 20 | } 21 | 22 | $request->user()->sendEmailVerificationNotification(); 23 | 24 | return response()->json(['status' => 'verification-link-sent']); 25 | } 26 | } 27 | -------------------------------------------------------------------------------- /backend/app/Http/Controllers/Auth/NewPasswordController.php: -------------------------------------------------------------------------------- 1 | validate([ 25 | 'token' => ['required'], 26 | 'email' => ['required', 'email'], 27 | 'password' => ['required', 'confirmed', Rules\Password::defaults()], 28 | ]); 29 | 30 | // Here we will attempt to reset the user's password. If it is successful we 31 | // will update the password on an actual user model and persist it to the 32 | // database. Otherwise we will parse the error and return the response. 33 | $status = Password::reset( 34 | $request->only('email', 'password', 'password_confirmation', 'token'), 35 | function ($user) use ($request) { 36 | $user->forceFill([ 37 | 'password' => Hash::make($request->password), 38 | 'remember_token' => Str::random(60), 39 | ])->save(); 40 | 41 | event(new PasswordReset($user)); 42 | } 43 | ); 44 | 45 | if ($status != Password::PASSWORD_RESET) { 46 | throw ValidationException::withMessages([ 47 | 'email' => [__($status)], 48 | ]); 49 | } 50 | 51 | return response()->json(['status' => __($status)]); 52 | } 53 | } 54 | -------------------------------------------------------------------------------- /backend/app/Http/Controllers/Auth/PasswordResetLinkController.php: -------------------------------------------------------------------------------- 1 | validate([ 21 | 'email' => ['required', 'email'], 22 | ]); 23 | 24 | // We will send the password reset link to this user. Once we have attempted 25 | // to send the link, we will examine the response then see the message we 26 | // need to show to the user. Finally, we'll send out a proper response. 27 | $status = Password::sendResetLink( 28 | $request->only('email') 29 | ); 30 | 31 | if ($status != Password::RESET_LINK_SENT) { 32 | throw ValidationException::withMessages([ 33 | 'email' => [__($status)], 34 | ]); 35 | } 36 | 37 | return response()->json(['status' => __($status)]); 38 | } 39 | } 40 | -------------------------------------------------------------------------------- /backend/app/Http/Controllers/Auth/RegisteredUserController.php: -------------------------------------------------------------------------------- 1 | validate([ 24 | 'name' => ['required', 'string', 'max:255'], 25 | 'email' => ['required', 'string', 'email', 'max:255', 'unique:'.User::class], 26 | 'password' => ['required', 'confirmed', Rules\Password::defaults()], 27 | ]); 28 | 29 | $user = User::create([ 30 | 'name' => $request->name, 31 | 'email' => $request->email, 32 | 'password' => Hash::make($request->password), 33 | ]); 34 | 35 | event(new Registered($user)); 36 | 37 | Auth::login($user); 38 | 39 | return response()->noContent(); 40 | } 41 | } 42 | -------------------------------------------------------------------------------- /backend/app/Http/Controllers/Auth/VerifyEmailController.php: -------------------------------------------------------------------------------- 1 | user()->hasVerifiedEmail()) { 19 | return redirect()->intended( 20 | config('app.frontend_url').RouteServiceProvider::HOME.'?verified=1' 21 | ); 22 | } 23 | 24 | if ($request->user()->markEmailAsVerified()) { 25 | event(new Verified($request->user())); 26 | } 27 | 28 | return redirect()->intended( 29 | config('app.frontend_url').RouteServiceProvider::HOME.'?verified=1' 30 | ); 31 | } 32 | } 33 | -------------------------------------------------------------------------------- /backend/app/Http/Controllers/Controller.php: -------------------------------------------------------------------------------- 1 | 15 | */ 16 | protected $middleware = [ 17 | // \App\Http\Middleware\TrustHosts::class, 18 | \App\Http\Middleware\TrustProxies::class, 19 | \Illuminate\Http\Middleware\HandleCors::class, 20 | \App\Http\Middleware\PreventRequestsDuringMaintenance::class, 21 | \Illuminate\Foundation\Http\Middleware\ValidatePostSize::class, 22 | \App\Http\Middleware\TrimStrings::class, 23 | \Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class, 24 | ]; 25 | 26 | /** 27 | * The application's route middleware groups. 28 | * 29 | * @var array> 30 | */ 31 | protected $middlewareGroups = [ 32 | 'web' => [ 33 | \App\Http\Middleware\EncryptCookies::class, 34 | \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class, 35 | \Illuminate\Session\Middleware\StartSession::class, 36 | \Illuminate\View\Middleware\ShareErrorsFromSession::class, 37 | \App\Http\Middleware\VerifyCsrfToken::class, 38 | \Illuminate\Routing\Middleware\SubstituteBindings::class, 39 | ], 40 | 41 | 'api' => [ 42 | \Laravel\Sanctum\Http\Middleware\EnsureFrontendRequestsAreStateful::class, 43 | \Illuminate\Routing\Middleware\ThrottleRequests::class.':api', 44 | \Illuminate\Routing\Middleware\SubstituteBindings::class, 45 | ], 46 | ]; 47 | 48 | /** 49 | * The application's middleware aliases. 50 | * 51 | * Aliases may be used instead of class names to conveniently assign middleware to routes and groups. 52 | * 53 | * @var array 54 | */ 55 | protected $middlewareAliases = [ 56 | 'auth' => \App\Http\Middleware\Authenticate::class, 57 | 'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class, 58 | 'auth.session' => \Illuminate\Session\Middleware\AuthenticateSession::class, 59 | 'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class, 60 | 'can' => \Illuminate\Auth\Middleware\Authorize::class, 61 | 'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class, 62 | 'password.confirm' => \Illuminate\Auth\Middleware\RequirePassword::class, 63 | 'precognitive' => \Illuminate\Foundation\Http\Middleware\HandlePrecognitiveRequests::class, 64 | 'signed' => \App\Http\Middleware\ValidateSignature::class, 65 | 'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class, 66 | 'verified' => \App\Http\Middleware\EnsureEmailIsVerified::class, 67 | ]; 68 | } 69 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/Authenticate.php: -------------------------------------------------------------------------------- 1 | expectsJson() ? null : route('login'); 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/EncryptCookies.php: -------------------------------------------------------------------------------- 1 | 13 | */ 14 | protected $except = [ 15 | // 16 | ]; 17 | } 18 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/EnsureEmailIsVerified.php: -------------------------------------------------------------------------------- 1 | user() || 20 | ($request->user() instanceof MustVerifyEmail && 21 | ! $request->user()->hasVerifiedEmail())) { 22 | return response()->json(['message' => 'Your email address is not verified.'], 409); 23 | } 24 | 25 | return $next($request); 26 | } 27 | } 28 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/PreventRequestsDuringMaintenance.php: -------------------------------------------------------------------------------- 1 | 13 | */ 14 | protected $except = [ 15 | // 16 | ]; 17 | } 18 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/RedirectIfAuthenticated.php: -------------------------------------------------------------------------------- 1 | check()) { 24 | return redirect(RouteServiceProvider::HOME); 25 | } 26 | } 27 | 28 | return $next($request); 29 | } 30 | } 31 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/TrimStrings.php: -------------------------------------------------------------------------------- 1 | 13 | */ 14 | protected $except = [ 15 | 'current_password', 16 | 'password', 17 | 'password_confirmation', 18 | ]; 19 | } 20 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/TrustHosts.php: -------------------------------------------------------------------------------- 1 | 13 | */ 14 | public function hosts(): array 15 | { 16 | return [ 17 | $this->allSubdomainsOfApplicationUrl(), 18 | ]; 19 | } 20 | } 21 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/TrustProxies.php: -------------------------------------------------------------------------------- 1 | |string|null 14 | */ 15 | protected $proxies; 16 | 17 | /** 18 | * The headers that should be used to detect proxies. 19 | * 20 | * @var int 21 | */ 22 | protected $headers = 23 | Request::HEADER_X_FORWARDED_FOR | 24 | Request::HEADER_X_FORWARDED_HOST | 25 | Request::HEADER_X_FORWARDED_PORT | 26 | Request::HEADER_X_FORWARDED_PROTO | 27 | Request::HEADER_X_FORWARDED_AWS_ELB; 28 | } 29 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/ValidateSignature.php: -------------------------------------------------------------------------------- 1 | 13 | */ 14 | protected $except = [ 15 | // 'fbclid', 16 | // 'utm_campaign', 17 | // 'utm_content', 18 | // 'utm_medium', 19 | // 'utm_source', 20 | // 'utm_term', 21 | ]; 22 | } 23 | -------------------------------------------------------------------------------- /backend/app/Http/Middleware/VerifyCsrfToken.php: -------------------------------------------------------------------------------- 1 | 13 | */ 14 | protected $except = [ 15 | // 16 | ]; 17 | } 18 | -------------------------------------------------------------------------------- /backend/app/Http/Requests/Auth/LoginRequest.php: -------------------------------------------------------------------------------- 1 | 26 | */ 27 | public function rules(): array 28 | { 29 | return [ 30 | 'email' => ['required', 'string', 'email'], 31 | 'password' => ['required', 'string'], 32 | ]; 33 | } 34 | 35 | /** 36 | * Attempt to authenticate the request's credentials. 37 | * 38 | * @throws \Illuminate\Validation\ValidationException 39 | */ 40 | public function authenticate(): void 41 | { 42 | $this->ensureIsNotRateLimited(); 43 | 44 | if (! Auth::attempt($this->only('email', 'password'), $this->boolean('remember'))) { 45 | RateLimiter::hit($this->throttleKey()); 46 | 47 | throw ValidationException::withMessages([ 48 | 'email' => __('auth.failed'), 49 | ]); 50 | } 51 | 52 | RateLimiter::clear($this->throttleKey()); 53 | } 54 | 55 | /** 56 | * Ensure the login request is not rate limited. 57 | * 58 | * @throws \Illuminate\Validation\ValidationException 59 | */ 60 | public function ensureIsNotRateLimited(): void 61 | { 62 | if (! RateLimiter::tooManyAttempts($this->throttleKey(), 5)) { 63 | return; 64 | } 65 | 66 | event(new Lockout($this)); 67 | 68 | $seconds = RateLimiter::availableIn($this->throttleKey()); 69 | 70 | throw ValidationException::withMessages([ 71 | 'email' => trans('auth.throttle', [ 72 | 'seconds' => $seconds, 73 | 'minutes' => ceil($seconds / 60), 74 | ]), 75 | ]); 76 | } 77 | 78 | /** 79 | * Get the rate limiting throttle key for the request. 80 | */ 81 | public function throttleKey(): string 82 | { 83 | return Str::transliterate(Str::lower($this->input('email')).'|'.$this->ip()); 84 | } 85 | } 86 | -------------------------------------------------------------------------------- /backend/app/Models/User.php: -------------------------------------------------------------------------------- 1 | 19 | */ 20 | protected $fillable = [ 21 | 'name', 22 | 'email', 23 | 'password', 24 | ]; 25 | 26 | /** 27 | * The attributes that should be hidden for serialization. 28 | * 29 | * @var array 30 | */ 31 | protected $hidden = [ 32 | 'password', 33 | 'remember_token', 34 | ]; 35 | 36 | /** 37 | * The attributes that should be cast. 38 | * 39 | * @var array 40 | */ 41 | protected $casts = [ 42 | 'email_verified_at' => 'datetime', 43 | 'password' => 'hashed', 44 | ]; 45 | } 46 | -------------------------------------------------------------------------------- /backend/app/Providers/AppServiceProvider.php: -------------------------------------------------------------------------------- 1 | 14 | */ 15 | protected $policies = [ 16 | // 'App\Models\Model' => 'App\Policies\ModelPolicy', 17 | ]; 18 | 19 | /** 20 | * Register any authentication / authorization services. 21 | */ 22 | public function boot(): void 23 | { 24 | $this->registerPolicies(); 25 | 26 | ResetPassword::createUrlUsing(function (object $notifiable, string $token) { 27 | return config('app.frontend_url')."/password-reset/$token?email={$notifiable->getEmailForPasswordReset()}"; 28 | }); 29 | 30 | // 31 | } 32 | } 33 | -------------------------------------------------------------------------------- /backend/app/Providers/BroadcastServiceProvider.php: -------------------------------------------------------------------------------- 1 | > 16 | */ 17 | protected $listen = [ 18 | Registered::class => [ 19 | SendEmailVerificationNotification::class, 20 | ], 21 | ]; 22 | 23 | /** 24 | * Register any events for your application. 25 | */ 26 | public function boot(): void 27 | { 28 | // 29 | } 30 | 31 | /** 32 | * Determine if events and listeners should be automatically discovered. 33 | */ 34 | public function shouldDiscoverEvents(): bool 35 | { 36 | return false; 37 | } 38 | } 39 | -------------------------------------------------------------------------------- /backend/app/Providers/RouteServiceProvider.php: -------------------------------------------------------------------------------- 1 | by($request->user()?->id ?: $request->ip()); 29 | }); 30 | 31 | $this->routes(function () { 32 | Route::middleware('api') 33 | ->prefix('api') 34 | ->group(base_path('routes/api.php')); 35 | 36 | Route::middleware('web') 37 | ->group(base_path('routes/web.php')); 38 | }); 39 | } 40 | } 41 | -------------------------------------------------------------------------------- /backend/artisan: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env php 2 | make(Illuminate\Contracts\Console\Kernel::class); 34 | 35 | $status = $kernel->handle( 36 | $input = new Symfony\Component\Console\Input\ArgvInput, 37 | new Symfony\Component\Console\Output\ConsoleOutput 38 | ); 39 | 40 | /* 41 | |-------------------------------------------------------------------------- 42 | | Shutdown The Application 43 | |-------------------------------------------------------------------------- 44 | | 45 | | Once Artisan has finished running, we will fire off the shutdown events 46 | | so that any final work may be done by the application before we shut 47 | | down the process. This is the last thing to happen to the request. 48 | | 49 | */ 50 | 51 | $kernel->terminate($input, $status); 52 | 53 | exit($status); 54 | -------------------------------------------------------------------------------- /backend/bootstrap/app.php: -------------------------------------------------------------------------------- 1 | singleton( 30 | Illuminate\Contracts\Http\Kernel::class, 31 | App\Http\Kernel::class 32 | ); 33 | 34 | $app->singleton( 35 | Illuminate\Contracts\Console\Kernel::class, 36 | App\Console\Kernel::class 37 | ); 38 | 39 | $app->singleton( 40 | Illuminate\Contracts\Debug\ExceptionHandler::class, 41 | App\Exceptions\Handler::class 42 | ); 43 | 44 | /* 45 | |-------------------------------------------------------------------------- 46 | | Return The Application 47 | |-------------------------------------------------------------------------- 48 | | 49 | | This script returns the application instance. The instance is given to 50 | | the calling script so we can separate the building of the instances 51 | | from the actual running of the application and sending responses. 52 | | 53 | */ 54 | 55 | return $app; 56 | -------------------------------------------------------------------------------- /backend/bootstrap/cache/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | -------------------------------------------------------------------------------- /backend/composer.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "laravel/laravel", 3 | "type": "project", 4 | "description": "The skeleton application for the Laravel framework.", 5 | "keywords": ["laravel", "framework"], 6 | "license": "MIT", 7 | "require": { 8 | "php": "^8.1", 9 | "guzzlehttp/guzzle": "^7.2", 10 | "laravel/framework": "^10.10", 11 | "laravel/sanctum": "^3.2", 12 | "laravel/tinker": "^2.8" 13 | }, 14 | "require-dev": { 15 | "fakerphp/faker": "^1.9.1", 16 | "laravel/breeze": "^1.21", 17 | "laravel/pint": "^1.0", 18 | "laravel/sail": "^1.18", 19 | "mockery/mockery": "^1.4.4", 20 | "nunomaduro/collision": "^7.0", 21 | "phpunit/phpunit": "^10.1", 22 | "spatie/laravel-ignition": "^2.0" 23 | }, 24 | "autoload": { 25 | "psr-4": { 26 | "App\\": "app/", 27 | "Database\\Factories\\": "database/factories/", 28 | "Database\\Seeders\\": "database/seeders/" 29 | } 30 | }, 31 | "autoload-dev": { 32 | "psr-4": { 33 | "Tests\\": "tests/" 34 | } 35 | }, 36 | "scripts": { 37 | "post-autoload-dump": [ 38 | "Illuminate\\Foundation\\ComposerScripts::postAutoloadDump", 39 | "@php artisan package:discover --ansi" 40 | ], 41 | "post-update-cmd": [ 42 | "@php artisan vendor:publish --tag=laravel-assets --ansi --force" 43 | ], 44 | "post-root-package-install": [ 45 | "@php -r \"file_exists('.env') || copy('.env.example', '.env');\"" 46 | ], 47 | "post-create-project-cmd": [ 48 | "@php artisan key:generate --ansi" 49 | ] 50 | }, 51 | "extra": { 52 | "laravel": { 53 | "dont-discover": [] 54 | } 55 | }, 56 | "config": { 57 | "optimize-autoloader": true, 58 | "preferred-install": "dist", 59 | "sort-packages": true, 60 | "allow-plugins": { 61 | "pestphp/pest-plugin": true, 62 | "php-http/discovery": true 63 | } 64 | }, 65 | "minimum-stability": "stable", 66 | "prefer-stable": true 67 | } 68 | -------------------------------------------------------------------------------- /backend/config/app.php: -------------------------------------------------------------------------------- 1 | env('APP_NAME', 'Laravel'), 20 | 21 | /* 22 | |-------------------------------------------------------------------------- 23 | | Application Environment 24 | |-------------------------------------------------------------------------- 25 | | 26 | | This value determines the "environment" your application is currently 27 | | running in. This may determine how you prefer to configure various 28 | | services the application utilizes. Set this in your ".env" file. 29 | | 30 | */ 31 | 32 | 'env' => env('APP_ENV', 'production'), 33 | 34 | /* 35 | |-------------------------------------------------------------------------- 36 | | Application Debug Mode 37 | |-------------------------------------------------------------------------- 38 | | 39 | | When your application is in debug mode, detailed error messages with 40 | | stack traces will be shown on every error that occurs within your 41 | | application. If disabled, a simple generic error page is shown. 42 | | 43 | */ 44 | 45 | 'debug' => (bool) env('APP_DEBUG', false), 46 | 47 | /* 48 | |-------------------------------------------------------------------------- 49 | | Application URL 50 | |-------------------------------------------------------------------------- 51 | | 52 | | This URL is used by the console to properly generate URLs when using 53 | | the Artisan command line tool. You should set this to the root of 54 | | your application so that it is used when running Artisan tasks. 55 | | 56 | */ 57 | 58 | 'url' => env('APP_URL', 'http://localhost'), 59 | 60 | 'frontend_url' => env('FRONTEND_URL', 'http://localhost:3000'), 61 | 62 | 'asset_url' => env('ASSET_URL'), 63 | 64 | /* 65 | |-------------------------------------------------------------------------- 66 | | Application Timezone 67 | |-------------------------------------------------------------------------- 68 | | 69 | | Here you may specify the default timezone for your application, which 70 | | will be used by the PHP date and date-time functions. We have gone 71 | | ahead and set this to a sensible default for you out of the box. 72 | | 73 | */ 74 | 75 | 'timezone' => 'UTC', 76 | 77 | /* 78 | |-------------------------------------------------------------------------- 79 | | Application Locale Configuration 80 | |-------------------------------------------------------------------------- 81 | | 82 | | The application locale determines the default locale that will be used 83 | | by the translation service provider. You are free to set this value 84 | | to any of the locales which will be supported by the application. 85 | | 86 | */ 87 | 88 | 'locale' => 'en', 89 | 90 | /* 91 | |-------------------------------------------------------------------------- 92 | | Application Fallback Locale 93 | |-------------------------------------------------------------------------- 94 | | 95 | | The fallback locale determines the locale to use when the current one 96 | | is not available. You may change the value to correspond to any of 97 | | the language folders that are provided through your application. 98 | | 99 | */ 100 | 101 | 'fallback_locale' => 'en', 102 | 103 | /* 104 | |-------------------------------------------------------------------------- 105 | | Faker Locale 106 | |-------------------------------------------------------------------------- 107 | | 108 | | This locale will be used by the Faker PHP library when generating fake 109 | | data for your database seeds. For example, this will be used to get 110 | | localized telephone numbers, street address information and more. 111 | | 112 | */ 113 | 114 | 'faker_locale' => 'en_US', 115 | 116 | /* 117 | |-------------------------------------------------------------------------- 118 | | Encryption Key 119 | |-------------------------------------------------------------------------- 120 | | 121 | | This key is used by the Illuminate encrypter service and should be set 122 | | to a random, 32 character string, otherwise these encrypted strings 123 | | will not be safe. Please do this before deploying an application! 124 | | 125 | */ 126 | 127 | 'key' => env('APP_KEY'), 128 | 129 | 'cipher' => 'AES-256-CBC', 130 | 131 | /* 132 | |-------------------------------------------------------------------------- 133 | | Maintenance Mode Driver 134 | |-------------------------------------------------------------------------- 135 | | 136 | | These configuration options determine the driver used to determine and 137 | | manage Laravel's "maintenance mode" status. The "cache" driver will 138 | | allow maintenance mode to be controlled across multiple machines. 139 | | 140 | | Supported drivers: "file", "cache" 141 | | 142 | */ 143 | 144 | 'maintenance' => [ 145 | 'driver' => 'file', 146 | // 'store' => 'redis', 147 | ], 148 | 149 | /* 150 | |-------------------------------------------------------------------------- 151 | | Autoloaded Service Providers 152 | |-------------------------------------------------------------------------- 153 | | 154 | | The service providers listed here will be automatically loaded on the 155 | | request to your application. Feel free to add your own services to 156 | | this array to grant expanded functionality to your applications. 157 | | 158 | */ 159 | 160 | 'providers' => ServiceProvider::defaultProviders()->merge([ 161 | /* 162 | * Package Service Providers... 163 | */ 164 | 165 | /* 166 | * Application Service Providers... 167 | */ 168 | App\Providers\AppServiceProvider::class, 169 | App\Providers\AuthServiceProvider::class, 170 | // App\Providers\BroadcastServiceProvider::class, 171 | App\Providers\EventServiceProvider::class, 172 | App\Providers\RouteServiceProvider::class, 173 | ])->toArray(), 174 | 175 | /* 176 | |-------------------------------------------------------------------------- 177 | | Class Aliases 178 | |-------------------------------------------------------------------------- 179 | | 180 | | This array of class aliases will be registered when this application 181 | | is started. However, feel free to register as many as you wish as 182 | | the aliases are "lazy" loaded so they don't hinder performance. 183 | | 184 | */ 185 | 186 | 'aliases' => Facade::defaultAliases()->merge([ 187 | // 'Example' => App\Facades\Example::class, 188 | ])->toArray(), 189 | 190 | ]; 191 | -------------------------------------------------------------------------------- /backend/config/auth.php: -------------------------------------------------------------------------------- 1 | [ 17 | 'guard' => 'web', 18 | 'passwords' => 'users', 19 | ], 20 | 21 | /* 22 | |-------------------------------------------------------------------------- 23 | | Authentication Guards 24 | |-------------------------------------------------------------------------- 25 | | 26 | | Next, you may define every authentication guard for your application. 27 | | Of course, a great default configuration has been defined for you 28 | | here which uses session storage and the Eloquent user provider. 29 | | 30 | | All authentication drivers have a user provider. This defines how the 31 | | users are actually retrieved out of your database or other storage 32 | | mechanisms used by this application to persist your user's data. 33 | | 34 | | Supported: "session" 35 | | 36 | */ 37 | 38 | 'guards' => [ 39 | 'web' => [ 40 | 'driver' => 'session', 41 | 'provider' => 'users', 42 | ], 43 | ], 44 | 45 | /* 46 | |-------------------------------------------------------------------------- 47 | | User Providers 48 | |-------------------------------------------------------------------------- 49 | | 50 | | All authentication drivers have a user provider. This defines how the 51 | | users are actually retrieved out of your database or other storage 52 | | mechanisms used by this application to persist your user's data. 53 | | 54 | | If you have multiple user tables or models you may configure multiple 55 | | sources which represent each model / table. These sources may then 56 | | be assigned to any extra authentication guards you have defined. 57 | | 58 | | Supported: "database", "eloquent" 59 | | 60 | */ 61 | 62 | 'providers' => [ 63 | 'users' => [ 64 | 'driver' => 'eloquent', 65 | 'model' => App\Models\User::class, 66 | ], 67 | 68 | // 'users' => [ 69 | // 'driver' => 'database', 70 | // 'table' => 'users', 71 | // ], 72 | ], 73 | 74 | /* 75 | |-------------------------------------------------------------------------- 76 | | Resetting Passwords 77 | |-------------------------------------------------------------------------- 78 | | 79 | | You may specify multiple password reset configurations if you have more 80 | | than one user table or model in the application and you want to have 81 | | separate password reset settings based on the specific user types. 82 | | 83 | | The expiry time is the number of minutes that each reset token will be 84 | | considered valid. This security feature keeps tokens short-lived so 85 | | they have less time to be guessed. You may change this as needed. 86 | | 87 | | The throttle setting is the number of seconds a user must wait before 88 | | generating more password reset tokens. This prevents the user from 89 | | quickly generating a very large amount of password reset tokens. 90 | | 91 | */ 92 | 93 | 'passwords' => [ 94 | 'users' => [ 95 | 'provider' => 'users', 96 | 'table' => 'password_reset_tokens', 97 | 'expire' => 60, 98 | 'throttle' => 60, 99 | ], 100 | ], 101 | 102 | /* 103 | |-------------------------------------------------------------------------- 104 | | Password Confirmation Timeout 105 | |-------------------------------------------------------------------------- 106 | | 107 | | Here you may define the amount of seconds before a password confirmation 108 | | times out and the user is prompted to re-enter their password via the 109 | | confirmation screen. By default, the timeout lasts for three hours. 110 | | 111 | */ 112 | 113 | 'password_timeout' => 10800, 114 | 115 | ]; 116 | -------------------------------------------------------------------------------- /backend/config/broadcasting.php: -------------------------------------------------------------------------------- 1 | env('BROADCAST_DRIVER', 'null'), 19 | 20 | /* 21 | |-------------------------------------------------------------------------- 22 | | Broadcast Connections 23 | |-------------------------------------------------------------------------- 24 | | 25 | | Here you may define all of the broadcast connections that will be used 26 | | to broadcast events to other systems or over websockets. Samples of 27 | | each available type of connection are provided inside this array. 28 | | 29 | */ 30 | 31 | 'connections' => [ 32 | 33 | 'pusher' => [ 34 | 'driver' => 'pusher', 35 | 'key' => env('PUSHER_APP_KEY'), 36 | 'secret' => env('PUSHER_APP_SECRET'), 37 | 'app_id' => env('PUSHER_APP_ID'), 38 | 'options' => [ 39 | 'cluster' => env('PUSHER_APP_CLUSTER'), 40 | 'host' => env('PUSHER_HOST') ?: 'api-'.env('PUSHER_APP_CLUSTER', 'mt1').'.pusher.com', 41 | 'port' => env('PUSHER_PORT', 443), 42 | 'scheme' => env('PUSHER_SCHEME', 'https'), 43 | 'encrypted' => true, 44 | 'useTLS' => env('PUSHER_SCHEME', 'https') === 'https', 45 | ], 46 | 'client_options' => [ 47 | // Guzzle client options: https://docs.guzzlephp.org/en/stable/request-options.html 48 | ], 49 | ], 50 | 51 | 'ably' => [ 52 | 'driver' => 'ably', 53 | 'key' => env('ABLY_KEY'), 54 | ], 55 | 56 | 'redis' => [ 57 | 'driver' => 'redis', 58 | 'connection' => 'default', 59 | ], 60 | 61 | 'log' => [ 62 | 'driver' => 'log', 63 | ], 64 | 65 | 'null' => [ 66 | 'driver' => 'null', 67 | ], 68 | 69 | ], 70 | 71 | ]; 72 | -------------------------------------------------------------------------------- /backend/config/cache.php: -------------------------------------------------------------------------------- 1 | env('CACHE_DRIVER', 'file'), 19 | 20 | /* 21 | |-------------------------------------------------------------------------- 22 | | Cache Stores 23 | |-------------------------------------------------------------------------- 24 | | 25 | | Here you may define all of the cache "stores" for your application as 26 | | well as their drivers. You may even define multiple stores for the 27 | | same cache driver to group types of items stored in your caches. 28 | | 29 | | Supported drivers: "apc", "array", "database", "file", 30 | | "memcached", "redis", "dynamodb", "octane", "null" 31 | | 32 | */ 33 | 34 | 'stores' => [ 35 | 36 | 'apc' => [ 37 | 'driver' => 'apc', 38 | ], 39 | 40 | 'array' => [ 41 | 'driver' => 'array', 42 | 'serialize' => false, 43 | ], 44 | 45 | 'database' => [ 46 | 'driver' => 'database', 47 | 'table' => 'cache', 48 | 'connection' => null, 49 | 'lock_connection' => null, 50 | ], 51 | 52 | 'file' => [ 53 | 'driver' => 'file', 54 | 'path' => storage_path('framework/cache/data'), 55 | 'lock_path' => storage_path('framework/cache/data'), 56 | ], 57 | 58 | 'memcached' => [ 59 | 'driver' => 'memcached', 60 | 'persistent_id' => env('MEMCACHED_PERSISTENT_ID'), 61 | 'sasl' => [ 62 | env('MEMCACHED_USERNAME'), 63 | env('MEMCACHED_PASSWORD'), 64 | ], 65 | 'options' => [ 66 | // Memcached::OPT_CONNECT_TIMEOUT => 2000, 67 | ], 68 | 'servers' => [ 69 | [ 70 | 'host' => env('MEMCACHED_HOST', '127.0.0.1'), 71 | 'port' => env('MEMCACHED_PORT', 11211), 72 | 'weight' => 100, 73 | ], 74 | ], 75 | ], 76 | 77 | 'redis' => [ 78 | 'driver' => 'redis', 79 | 'connection' => 'cache', 80 | 'lock_connection' => 'default', 81 | ], 82 | 83 | 'dynamodb' => [ 84 | 'driver' => 'dynamodb', 85 | 'key' => env('AWS_ACCESS_KEY_ID'), 86 | 'secret' => env('AWS_SECRET_ACCESS_KEY'), 87 | 'region' => env('AWS_DEFAULT_REGION', 'us-east-1'), 88 | 'table' => env('DYNAMODB_CACHE_TABLE', 'cache'), 89 | 'endpoint' => env('DYNAMODB_ENDPOINT'), 90 | ], 91 | 92 | 'octane' => [ 93 | 'driver' => 'octane', 94 | ], 95 | 96 | ], 97 | 98 | /* 99 | |-------------------------------------------------------------------------- 100 | | Cache Key Prefix 101 | |-------------------------------------------------------------------------- 102 | | 103 | | When utilizing the APC, database, memcached, Redis, or DynamoDB cache 104 | | stores there might be other applications using the same cache. For 105 | | that reason, you may prefix every cache key to avoid collisions. 106 | | 107 | */ 108 | 109 | 'prefix' => env('CACHE_PREFIX', Str::slug(env('APP_NAME', 'laravel'), '_').'_cache_'), 110 | 111 | ]; 112 | -------------------------------------------------------------------------------- /backend/config/cors.php: -------------------------------------------------------------------------------- 1 | ['*'], 19 | 20 | 'allowed_methods' => ['*'], 21 | 22 | 'allowed_origins' => [env('FRONTEND_URL', 'http://localhost:3000')], 23 | 24 | 'allowed_origins_patterns' => [], 25 | 26 | 'allowed_headers' => ['*'], 27 | 28 | 'exposed_headers' => [], 29 | 30 | 'max_age' => 0, 31 | 32 | 'supports_credentials' => true, 33 | 34 | ]; 35 | -------------------------------------------------------------------------------- /backend/config/database.php: -------------------------------------------------------------------------------- 1 | env('DB_CONNECTION', 'mysql'), 19 | 20 | /* 21 | |-------------------------------------------------------------------------- 22 | | Database Connections 23 | |-------------------------------------------------------------------------- 24 | | 25 | | Here are each of the database connections setup for your application. 26 | | Of course, examples of configuring each database platform that is 27 | | supported by Laravel is shown below to make development simple. 28 | | 29 | | 30 | | All database work in Laravel is done through the PHP PDO facilities 31 | | so make sure you have the driver for your particular database of 32 | | choice installed on your machine before you begin development. 33 | | 34 | */ 35 | 36 | 'connections' => [ 37 | 38 | 'sqlite' => [ 39 | 'driver' => 'sqlite', 40 | 'url' => env('DATABASE_URL'), 41 | 'database' => env('DB_DATABASE', database_path('database.sqlite')), 42 | 'prefix' => '', 43 | 'foreign_key_constraints' => env('DB_FOREIGN_KEYS', true), 44 | ], 45 | 46 | 'mysql' => [ 47 | 'driver' => 'mysql', 48 | 'url' => env('DATABASE_URL'), 49 | 'host' => env('DB_HOST', '127.0.0.1'), 50 | 'port' => env('DB_PORT', '3306'), 51 | 'database' => env('DB_DATABASE', 'forge'), 52 | 'username' => env('DB_USERNAME', 'forge'), 53 | 'password' => env('DB_PASSWORD', ''), 54 | 'unix_socket' => env('DB_SOCKET', ''), 55 | 'charset' => 'utf8mb4', 56 | 'collation' => 'utf8mb4_unicode_ci', 57 | 'prefix' => '', 58 | 'prefix_indexes' => true, 59 | 'strict' => true, 60 | 'engine' => 'InnoDB', 61 | 'options' => extension_loaded('pdo_mysql') ? array_filter([ 62 | PDO::MYSQL_ATTR_SSL_CA => env('MYSQL_ATTR_SSL_CA'), 63 | ]) : [], 64 | ], 65 | 66 | 'pgsql' => [ 67 | 'driver' => 'pgsql', 68 | 'url' => env('DATABASE_URL'), 69 | 'host' => env('DB_HOST', '127.0.0.1'), 70 | 'port' => env('DB_PORT', '5432'), 71 | 'database' => env('DB_DATABASE', 'forge'), 72 | 'username' => env('DB_USERNAME', 'forge'), 73 | 'password' => env('DB_PASSWORD', ''), 74 | 'charset' => 'utf8', 75 | 'prefix' => '', 76 | 'prefix_indexes' => true, 77 | 'search_path' => 'public', 78 | 'sslmode' => 'prefer', 79 | ], 80 | 81 | 'sqlsrv' => [ 82 | 'driver' => 'sqlsrv', 83 | 'url' => env('DATABASE_URL'), 84 | 'host' => env('DB_HOST', 'localhost'), 85 | 'port' => env('DB_PORT', '1433'), 86 | 'database' => env('DB_DATABASE', 'forge'), 87 | 'username' => env('DB_USERNAME', 'forge'), 88 | 'password' => env('DB_PASSWORD', ''), 89 | 'charset' => 'utf8', 90 | 'prefix' => '', 91 | 'prefix_indexes' => true, 92 | // 'encrypt' => env('DB_ENCRYPT', 'yes'), 93 | // 'trust_server_certificate' => env('DB_TRUST_SERVER_CERTIFICATE', 'false'), 94 | ], 95 | 96 | ], 97 | 98 | /* 99 | |-------------------------------------------------------------------------- 100 | | Migration Repository Table 101 | |-------------------------------------------------------------------------- 102 | | 103 | | This table keeps track of all the migrations that have already run for 104 | | your application. Using this information, we can determine which of 105 | | the migrations on disk haven't actually been run in the database. 106 | | 107 | */ 108 | 109 | 'migrations' => 'migrations', 110 | 111 | /* 112 | |-------------------------------------------------------------------------- 113 | | Redis Databases 114 | |-------------------------------------------------------------------------- 115 | | 116 | | Redis is an open source, fast, and advanced key-value store that also 117 | | provides a richer body of commands than a typical key-value system 118 | | such as APC or Memcached. Laravel makes it easy to dig right in. 119 | | 120 | */ 121 | 122 | 'redis' => [ 123 | 124 | 'client' => env('REDIS_CLIENT', 'phpredis'), 125 | 126 | 'options' => [ 127 | 'cluster' => env('REDIS_CLUSTER', 'redis'), 128 | 'prefix' => env('REDIS_PREFIX', Str::slug(env('APP_NAME', 'laravel'), '_') . '_database_'), 129 | ], 130 | 131 | 'default' => [ 132 | 'url' => env('REDIS_URL'), 133 | 'host' => env('REDIS_HOST', '127.0.0.1'), 134 | 'username' => env('REDIS_USERNAME'), 135 | 'password' => env('REDIS_PASSWORD'), 136 | 'port' => env('REDIS_PORT', '6379'), 137 | 'database' => env('REDIS_DB', '0'), 138 | ], 139 | 140 | 'cache' => [ 141 | 'url' => env('REDIS_URL'), 142 | 'host' => env('REDIS_HOST', '127.0.0.1'), 143 | 'username' => env('REDIS_USERNAME'), 144 | 'password' => env('REDIS_PASSWORD'), 145 | 'port' => env('REDIS_PORT', '6379'), 146 | 'database' => env('REDIS_CACHE_DB', '1'), 147 | ], 148 | 149 | ], 150 | 151 | ]; 152 | -------------------------------------------------------------------------------- /backend/config/filesystems.php: -------------------------------------------------------------------------------- 1 | env('FILESYSTEM_DISK', 'local'), 17 | 18 | /* 19 | |-------------------------------------------------------------------------- 20 | | Filesystem Disks 21 | |-------------------------------------------------------------------------- 22 | | 23 | | Here you may configure as many filesystem "disks" as you wish, and you 24 | | may even configure multiple disks of the same driver. Defaults have 25 | | been set up for each driver as an example of the required values. 26 | | 27 | | Supported Drivers: "local", "ftp", "sftp", "s3" 28 | | 29 | */ 30 | 31 | 'disks' => [ 32 | 33 | 'local' => [ 34 | 'driver' => 'local', 35 | 'root' => storage_path('app'), 36 | 'throw' => false, 37 | ], 38 | 39 | 'public' => [ 40 | 'driver' => 'local', 41 | 'root' => storage_path('app/public'), 42 | 'url' => env('APP_URL').'/storage', 43 | 'visibility' => 'public', 44 | 'throw' => false, 45 | ], 46 | 47 | 's3' => [ 48 | 'driver' => 's3', 49 | 'key' => env('AWS_ACCESS_KEY_ID'), 50 | 'secret' => env('AWS_SECRET_ACCESS_KEY'), 51 | 'region' => env('AWS_DEFAULT_REGION'), 52 | 'bucket' => env('AWS_BUCKET'), 53 | 'url' => env('AWS_URL'), 54 | 'endpoint' => env('AWS_ENDPOINT'), 55 | 'use_path_style_endpoint' => env('AWS_USE_PATH_STYLE_ENDPOINT', false), 56 | 'throw' => false, 57 | ], 58 | 59 | ], 60 | 61 | /* 62 | |-------------------------------------------------------------------------- 63 | | Symbolic Links 64 | |-------------------------------------------------------------------------- 65 | | 66 | | Here you may configure the symbolic links that will be created when the 67 | | `storage:link` Artisan command is executed. The array keys should be 68 | | the locations of the links and the values should be their targets. 69 | | 70 | */ 71 | 72 | 'links' => [ 73 | public_path('storage') => storage_path('app/public'), 74 | ], 75 | 76 | ]; 77 | -------------------------------------------------------------------------------- /backend/config/hashing.php: -------------------------------------------------------------------------------- 1 | 'bcrypt', 19 | 20 | /* 21 | |-------------------------------------------------------------------------- 22 | | Bcrypt Options 23 | |-------------------------------------------------------------------------- 24 | | 25 | | Here you may specify the configuration options that should be used when 26 | | passwords are hashed using the Bcrypt algorithm. This will allow you 27 | | to control the amount of time it takes to hash the given password. 28 | | 29 | */ 30 | 31 | 'bcrypt' => [ 32 | 'rounds' => env('BCRYPT_ROUNDS', 10), 33 | ], 34 | 35 | /* 36 | |-------------------------------------------------------------------------- 37 | | Argon Options 38 | |-------------------------------------------------------------------------- 39 | | 40 | | Here you may specify the configuration options that should be used when 41 | | passwords are hashed using the Argon algorithm. These will allow you 42 | | to control the amount of time it takes to hash the given password. 43 | | 44 | */ 45 | 46 | 'argon' => [ 47 | 'memory' => 65536, 48 | 'threads' => 1, 49 | 'time' => 4, 50 | ], 51 | 52 | ]; 53 | -------------------------------------------------------------------------------- /backend/config/logging.php: -------------------------------------------------------------------------------- 1 | env('LOG_CHANNEL', 'stack'), 22 | 23 | /* 24 | |-------------------------------------------------------------------------- 25 | | Deprecations Log Channel 26 | |-------------------------------------------------------------------------- 27 | | 28 | | This option controls the log channel that should be used to log warnings 29 | | regarding deprecated PHP and library features. This allows you to get 30 | | your application ready for upcoming major versions of dependencies. 31 | | 32 | */ 33 | 34 | 'deprecations' => [ 35 | 'channel' => env('LOG_DEPRECATIONS_CHANNEL', 'null'), 36 | 'trace' => false, 37 | ], 38 | 39 | /* 40 | |-------------------------------------------------------------------------- 41 | | Log Channels 42 | |-------------------------------------------------------------------------- 43 | | 44 | | Here you may configure the log channels for your application. Out of 45 | | the box, Laravel uses the Monolog PHP logging library. This gives 46 | | you a variety of powerful log handlers / formatters to utilize. 47 | | 48 | | Available Drivers: "single", "daily", "slack", "syslog", 49 | | "errorlog", "monolog", 50 | | "custom", "stack" 51 | | 52 | */ 53 | 54 | 'channels' => [ 55 | 'stack' => [ 56 | 'driver' => 'stack', 57 | 'channels' => ['single'], 58 | 'ignore_exceptions' => false, 59 | ], 60 | 61 | 'single' => [ 62 | 'driver' => 'single', 63 | 'path' => storage_path('logs/laravel.log'), 64 | 'level' => env('LOG_LEVEL', 'debug'), 65 | 'replace_placeholders' => true, 66 | ], 67 | 68 | 'daily' => [ 69 | 'driver' => 'daily', 70 | 'path' => storage_path('logs/laravel.log'), 71 | 'level' => env('LOG_LEVEL', 'debug'), 72 | 'days' => 14, 73 | 'replace_placeholders' => true, 74 | ], 75 | 76 | 'slack' => [ 77 | 'driver' => 'slack', 78 | 'url' => env('LOG_SLACK_WEBHOOK_URL'), 79 | 'username' => 'Laravel Log', 80 | 'emoji' => ':boom:', 81 | 'level' => env('LOG_LEVEL', 'critical'), 82 | 'replace_placeholders' => true, 83 | ], 84 | 85 | 'papertrail' => [ 86 | 'driver' => 'monolog', 87 | 'level' => env('LOG_LEVEL', 'debug'), 88 | 'handler' => env('LOG_PAPERTRAIL_HANDLER', SyslogUdpHandler::class), 89 | 'handler_with' => [ 90 | 'host' => env('PAPERTRAIL_URL'), 91 | 'port' => env('PAPERTRAIL_PORT'), 92 | 'connectionString' => 'tls://'.env('PAPERTRAIL_URL').':'.env('PAPERTRAIL_PORT'), 93 | ], 94 | 'processors' => [PsrLogMessageProcessor::class], 95 | ], 96 | 97 | 'stderr' => [ 98 | 'driver' => 'monolog', 99 | 'level' => env('LOG_LEVEL', 'debug'), 100 | 'handler' => StreamHandler::class, 101 | 'formatter' => env('LOG_STDERR_FORMATTER'), 102 | 'with' => [ 103 | 'stream' => 'php://stderr', 104 | ], 105 | 'processors' => [PsrLogMessageProcessor::class], 106 | ], 107 | 108 | 'syslog' => [ 109 | 'driver' => 'syslog', 110 | 'level' => env('LOG_LEVEL', 'debug'), 111 | 'facility' => LOG_USER, 112 | 'replace_placeholders' => true, 113 | ], 114 | 115 | 'errorlog' => [ 116 | 'driver' => 'errorlog', 117 | 'level' => env('LOG_LEVEL', 'debug'), 118 | 'replace_placeholders' => true, 119 | ], 120 | 121 | 'null' => [ 122 | 'driver' => 'monolog', 123 | 'handler' => NullHandler::class, 124 | ], 125 | 126 | 'emergency' => [ 127 | 'path' => storage_path('logs/laravel.log'), 128 | ], 129 | ], 130 | 131 | ]; 132 | -------------------------------------------------------------------------------- /backend/config/mail.php: -------------------------------------------------------------------------------- 1 | env('MAIL_MAILER', 'smtp'), 17 | 18 | /* 19 | |-------------------------------------------------------------------------- 20 | | Mailer Configurations 21 | |-------------------------------------------------------------------------- 22 | | 23 | | Here you may configure all of the mailers used by your application plus 24 | | their respective settings. Several examples have been configured for 25 | | you and you are free to add your own as your application requires. 26 | | 27 | | Laravel supports a variety of mail "transport" drivers to be used while 28 | | sending an e-mail. You will specify which one you are using for your 29 | | mailers below. You are free to add additional mailers as required. 30 | | 31 | | Supported: "smtp", "sendmail", "mailgun", "ses", "ses-v2", 32 | | "postmark", "log", "array", "failover" 33 | | 34 | */ 35 | 36 | 'mailers' => [ 37 | 'smtp' => [ 38 | 'transport' => 'smtp', 39 | 'url' => env('MAIL_URL'), 40 | 'host' => env('MAIL_HOST', 'smtp.mailgun.org'), 41 | 'port' => env('MAIL_PORT', 587), 42 | 'encryption' => env('MAIL_ENCRYPTION', 'tls'), 43 | 'username' => env('MAIL_USERNAME'), 44 | 'password' => env('MAIL_PASSWORD'), 45 | 'timeout' => null, 46 | 'local_domain' => env('MAIL_EHLO_DOMAIN'), 47 | ], 48 | 49 | 'ses' => [ 50 | 'transport' => 'ses', 51 | ], 52 | 53 | 'mailgun' => [ 54 | 'transport' => 'mailgun', 55 | // 'client' => [ 56 | // 'timeout' => 5, 57 | // ], 58 | ], 59 | 60 | 'postmark' => [ 61 | 'transport' => 'postmark', 62 | // 'client' => [ 63 | // 'timeout' => 5, 64 | // ], 65 | ], 66 | 67 | 'sendmail' => [ 68 | 'transport' => 'sendmail', 69 | 'path' => env('MAIL_SENDMAIL_PATH', '/usr/sbin/sendmail -bs -i'), 70 | ], 71 | 72 | 'log' => [ 73 | 'transport' => 'log', 74 | 'channel' => env('MAIL_LOG_CHANNEL'), 75 | ], 76 | 77 | 'array' => [ 78 | 'transport' => 'array', 79 | ], 80 | 81 | 'failover' => [ 82 | 'transport' => 'failover', 83 | 'mailers' => [ 84 | 'smtp', 85 | 'log', 86 | ], 87 | ], 88 | ], 89 | 90 | /* 91 | |-------------------------------------------------------------------------- 92 | | Global "From" Address 93 | |-------------------------------------------------------------------------- 94 | | 95 | | You may wish for all e-mails sent by your application to be sent from 96 | | the same address. Here, you may specify a name and address that is 97 | | used globally for all e-mails that are sent by your application. 98 | | 99 | */ 100 | 101 | 'from' => [ 102 | 'address' => env('MAIL_FROM_ADDRESS', 'hello@example.com'), 103 | 'name' => env('MAIL_FROM_NAME', 'Example'), 104 | ], 105 | 106 | /* 107 | |-------------------------------------------------------------------------- 108 | | Markdown Mail Settings 109 | |-------------------------------------------------------------------------- 110 | | 111 | | If you are using Markdown based email rendering, you may configure your 112 | | theme and component paths here, allowing you to customize the design 113 | | of the emails. Or, you may simply stick with the Laravel defaults! 114 | | 115 | */ 116 | 117 | 'markdown' => [ 118 | 'theme' => 'default', 119 | 120 | 'paths' => [ 121 | resource_path('views/vendor/mail'), 122 | ], 123 | ], 124 | 125 | ]; 126 | -------------------------------------------------------------------------------- /backend/config/queue.php: -------------------------------------------------------------------------------- 1 | env('QUEUE_CONNECTION', 'sync'), 17 | 18 | /* 19 | |-------------------------------------------------------------------------- 20 | | Queue Connections 21 | |-------------------------------------------------------------------------- 22 | | 23 | | Here you may configure the connection information for each server that 24 | | is used by your application. A default configuration has been added 25 | | for each back-end shipped with Laravel. You are free to add more. 26 | | 27 | | Drivers: "sync", "database", "beanstalkd", "sqs", "redis", "null" 28 | | 29 | */ 30 | 31 | 'connections' => [ 32 | 33 | 'sync' => [ 34 | 'driver' => 'sync', 35 | ], 36 | 37 | 'database' => [ 38 | 'driver' => 'database', 39 | 'table' => 'jobs', 40 | 'queue' => 'default', 41 | 'retry_after' => 90, 42 | 'after_commit' => false, 43 | ], 44 | 45 | 'beanstalkd' => [ 46 | 'driver' => 'beanstalkd', 47 | 'host' => 'localhost', 48 | 'queue' => 'default', 49 | 'retry_after' => 90, 50 | 'block_for' => 0, 51 | 'after_commit' => false, 52 | ], 53 | 54 | 'sqs' => [ 55 | 'driver' => 'sqs', 56 | 'key' => env('AWS_ACCESS_KEY_ID'), 57 | 'secret' => env('AWS_SECRET_ACCESS_KEY'), 58 | 'prefix' => env('SQS_PREFIX', 'https://sqs.us-east-1.amazonaws.com/your-account-id'), 59 | 'queue' => env('SQS_QUEUE', 'default'), 60 | 'suffix' => env('SQS_SUFFIX'), 61 | 'region' => env('AWS_DEFAULT_REGION', 'us-east-1'), 62 | 'after_commit' => false, 63 | ], 64 | 65 | 'redis' => [ 66 | 'driver' => 'redis', 67 | 'connection' => 'default', 68 | 'queue' => env('REDIS_QUEUE', 'default'), 69 | 'retry_after' => 90, 70 | 'block_for' => null, 71 | 'after_commit' => false, 72 | ], 73 | 74 | ], 75 | 76 | /* 77 | |-------------------------------------------------------------------------- 78 | | Job Batching 79 | |-------------------------------------------------------------------------- 80 | | 81 | | The following options configure the database and table that store job 82 | | batching information. These options can be updated to any database 83 | | connection and table which has been defined by your application. 84 | | 85 | */ 86 | 87 | 'batching' => [ 88 | 'database' => env('DB_CONNECTION', 'mysql'), 89 | 'table' => 'job_batches', 90 | ], 91 | 92 | /* 93 | |-------------------------------------------------------------------------- 94 | | Failed Queue Jobs 95 | |-------------------------------------------------------------------------- 96 | | 97 | | These options configure the behavior of failed queue job logging so you 98 | | can control which database and table are used to store the jobs that 99 | | have failed. You may change them to any database / table you wish. 100 | | 101 | */ 102 | 103 | 'failed' => [ 104 | 'driver' => env('QUEUE_FAILED_DRIVER', 'database-uuids'), 105 | 'database' => env('DB_CONNECTION', 'mysql'), 106 | 'table' => 'failed_jobs', 107 | ], 108 | 109 | ]; 110 | -------------------------------------------------------------------------------- /backend/config/sanctum.php: -------------------------------------------------------------------------------- 1 | explode(',', env('SANCTUM_STATEFUL_DOMAINS', sprintf( 17 | '%s%s%s', 18 | 'localhost,localhost:3000,127.0.0.1,127.0.0.1:8000,::1', 19 | env('APP_URL') ? ','.parse_url(env('APP_URL'), PHP_URL_HOST) : '', 20 | env('FRONTEND_URL') ? ','.parse_url(env('FRONTEND_URL'), PHP_URL_HOST) : '' 21 | ))), 22 | 23 | /* 24 | |-------------------------------------------------------------------------- 25 | | Sanctum Guards 26 | |-------------------------------------------------------------------------- 27 | | 28 | | This array contains the authentication guards that will be checked when 29 | | Sanctum is trying to authenticate a request. If none of these guards 30 | | are able to authenticate the request, Sanctum will use the bearer 31 | | token that's present on an incoming request for authentication. 32 | | 33 | */ 34 | 35 | 'guard' => ['web'], 36 | 37 | /* 38 | |-------------------------------------------------------------------------- 39 | | Expiration Minutes 40 | |-------------------------------------------------------------------------- 41 | | 42 | | This value controls the number of minutes until an issued token will be 43 | | considered expired. This will override any values set in the token's 44 | | "expires_at" attribute, but first-party sessions are not affected. 45 | | 46 | */ 47 | 48 | 'expiration' => null, 49 | 50 | /* 51 | |-------------------------------------------------------------------------- 52 | | Sanctum Middleware 53 | |-------------------------------------------------------------------------- 54 | | 55 | | When authenticating your first-party SPA with Sanctum you may need to 56 | | customize some of the middleware Sanctum uses while processing the 57 | | request. You may change the middleware listed below as required. 58 | | 59 | */ 60 | 61 | 'middleware' => [ 62 | 'verify_csrf_token' => App\Http\Middleware\VerifyCsrfToken::class, 63 | 'encrypt_cookies' => App\Http\Middleware\EncryptCookies::class, 64 | ], 65 | 66 | ]; 67 | -------------------------------------------------------------------------------- /backend/config/services.php: -------------------------------------------------------------------------------- 1 | [ 18 | 'domain' => env('MAILGUN_DOMAIN'), 19 | 'secret' => env('MAILGUN_SECRET'), 20 | 'endpoint' => env('MAILGUN_ENDPOINT', 'api.mailgun.net'), 21 | 'scheme' => 'https', 22 | ], 23 | 24 | 'postmark' => [ 25 | 'token' => env('POSTMARK_TOKEN'), 26 | ], 27 | 28 | 'ses' => [ 29 | 'key' => env('AWS_ACCESS_KEY_ID'), 30 | 'secret' => env('AWS_SECRET_ACCESS_KEY'), 31 | 'region' => env('AWS_DEFAULT_REGION', 'us-east-1'), 32 | ], 33 | 34 | ]; 35 | -------------------------------------------------------------------------------- /backend/config/session.php: -------------------------------------------------------------------------------- 1 | env('SESSION_DRIVER', 'file'), 22 | 23 | /* 24 | |-------------------------------------------------------------------------- 25 | | Session Lifetime 26 | |-------------------------------------------------------------------------- 27 | | 28 | | Here you may specify the number of minutes that you wish the session 29 | | to be allowed to remain idle before it expires. If you want them 30 | | to immediately expire on the browser closing, set that option. 31 | | 32 | */ 33 | 34 | 'lifetime' => env('SESSION_LIFETIME', 120), 35 | 36 | 'expire_on_close' => false, 37 | 38 | /* 39 | |-------------------------------------------------------------------------- 40 | | Session Encryption 41 | |-------------------------------------------------------------------------- 42 | | 43 | | This option allows you to easily specify that all of your session data 44 | | should be encrypted before it is stored. All encryption will be run 45 | | automatically by Laravel and you can use the Session like normal. 46 | | 47 | */ 48 | 49 | 'encrypt' => false, 50 | 51 | /* 52 | |-------------------------------------------------------------------------- 53 | | Session File Location 54 | |-------------------------------------------------------------------------- 55 | | 56 | | When using the native session driver, we need a location where session 57 | | files may be stored. A default has been set for you but a different 58 | | location may be specified. This is only needed for file sessions. 59 | | 60 | */ 61 | 62 | 'files' => storage_path('framework/sessions'), 63 | 64 | /* 65 | |-------------------------------------------------------------------------- 66 | | Session Database Connection 67 | |-------------------------------------------------------------------------- 68 | | 69 | | When using the "database" or "redis" session drivers, you may specify a 70 | | connection that should be used to manage these sessions. This should 71 | | correspond to a connection in your database configuration options. 72 | | 73 | */ 74 | 75 | 'connection' => env('SESSION_CONNECTION'), 76 | 77 | /* 78 | |-------------------------------------------------------------------------- 79 | | Session Database Table 80 | |-------------------------------------------------------------------------- 81 | | 82 | | When using the "database" session driver, you may specify the table we 83 | | should use to manage the sessions. Of course, a sensible default is 84 | | provided for you; however, you are free to change this as needed. 85 | | 86 | */ 87 | 88 | 'table' => 'sessions', 89 | 90 | /* 91 | |-------------------------------------------------------------------------- 92 | | Session Cache Store 93 | |-------------------------------------------------------------------------- 94 | | 95 | | While using one of the framework's cache driven session backends you may 96 | | list a cache store that should be used for these sessions. This value 97 | | must match with one of the application's configured cache "stores". 98 | | 99 | | Affects: "apc", "dynamodb", "memcached", "redis" 100 | | 101 | */ 102 | 103 | 'store' => env('SESSION_STORE'), 104 | 105 | /* 106 | |-------------------------------------------------------------------------- 107 | | Session Sweeping Lottery 108 | |-------------------------------------------------------------------------- 109 | | 110 | | Some session drivers must manually sweep their storage location to get 111 | | rid of old sessions from storage. Here are the chances that it will 112 | | happen on a given request. By default, the odds are 2 out of 100. 113 | | 114 | */ 115 | 116 | 'lottery' => [2, 100], 117 | 118 | /* 119 | |-------------------------------------------------------------------------- 120 | | Session Cookie Name 121 | |-------------------------------------------------------------------------- 122 | | 123 | | Here you may change the name of the cookie used to identify a session 124 | | instance by ID. The name specified here will get used every time a 125 | | new session cookie is created by the framework for every driver. 126 | | 127 | */ 128 | 129 | 'cookie' => env( 130 | 'SESSION_COOKIE', 131 | Str::slug(env('APP_NAME', 'laravel'), '_').'_session' 132 | ), 133 | 134 | /* 135 | |-------------------------------------------------------------------------- 136 | | Session Cookie Path 137 | |-------------------------------------------------------------------------- 138 | | 139 | | The session cookie path determines the path for which the cookie will 140 | | be regarded as available. Typically, this will be the root path of 141 | | your application but you are free to change this when necessary. 142 | | 143 | */ 144 | 145 | 'path' => '/', 146 | 147 | /* 148 | |-------------------------------------------------------------------------- 149 | | Session Cookie Domain 150 | |-------------------------------------------------------------------------- 151 | | 152 | | Here you may change the domain of the cookie used to identify a session 153 | | in your application. This will determine which domains the cookie is 154 | | available to in your application. A sensible default has been set. 155 | | 156 | */ 157 | 158 | 'domain' => env('SESSION_DOMAIN'), 159 | 160 | /* 161 | |-------------------------------------------------------------------------- 162 | | HTTPS Only Cookies 163 | |-------------------------------------------------------------------------- 164 | | 165 | | By setting this option to true, session cookies will only be sent back 166 | | to the server if the browser has a HTTPS connection. This will keep 167 | | the cookie from being sent to you when it can't be done securely. 168 | | 169 | */ 170 | 171 | 'secure' => env('SESSION_SECURE_COOKIE'), 172 | 173 | /* 174 | |-------------------------------------------------------------------------- 175 | | HTTP Access Only 176 | |-------------------------------------------------------------------------- 177 | | 178 | | Setting this value to true will prevent JavaScript from accessing the 179 | | value of the cookie and the cookie will only be accessible through 180 | | the HTTP protocol. You are free to modify this option if needed. 181 | | 182 | */ 183 | 184 | 'http_only' => true, 185 | 186 | /* 187 | |-------------------------------------------------------------------------- 188 | | Same-Site Cookies 189 | |-------------------------------------------------------------------------- 190 | | 191 | | This option determines how your cookies behave when cross-site requests 192 | | take place, and can be used to mitigate CSRF attacks. By default, we 193 | | will set this value to "lax" since this is a secure default value. 194 | | 195 | | Supported: "lax", "strict", "none", null 196 | | 197 | */ 198 | 199 | 'same_site' => 'lax', 200 | 201 | ]; 202 | -------------------------------------------------------------------------------- /backend/config/view.php: -------------------------------------------------------------------------------- 1 | [ 17 | resource_path('views'), 18 | ], 19 | 20 | /* 21 | |-------------------------------------------------------------------------- 22 | | Compiled View Path 23 | |-------------------------------------------------------------------------- 24 | | 25 | | This option determines where all the compiled Blade templates will be 26 | | stored for your application. Typically, this is within the storage 27 | | directory. However, as usual, you are free to change this value. 28 | | 29 | */ 30 | 31 | 'compiled' => env( 32 | 'VIEW_COMPILED_PATH', 33 | realpath(storage_path('framework/views')) 34 | ), 35 | 36 | ]; 37 | -------------------------------------------------------------------------------- /backend/database/.gitignore: -------------------------------------------------------------------------------- 1 | *.sqlite* 2 | -------------------------------------------------------------------------------- /backend/database/factories/UserFactory.php: -------------------------------------------------------------------------------- 1 | 10 | */ 11 | class UserFactory extends Factory 12 | { 13 | /** 14 | * Define the model's default state. 15 | * 16 | * @return array 17 | */ 18 | public function definition(): array 19 | { 20 | return [ 21 | 'name' => fake()->name(), 22 | 'email' => fake()->unique()->safeEmail(), 23 | 'email_verified_at' => now(), 24 | 'password' => '$2y$10$92IXUNpkjO0rOQ5byMi.Ye4oKoEa3Ro9llC/.og/at2.uheWG/igi', // password 25 | 'remember_token' => Str::random(10), 26 | ]; 27 | } 28 | 29 | /** 30 | * Indicate that the model's email address should be unverified. 31 | */ 32 | public function unverified(): static 33 | { 34 | return $this->state(fn (array $attributes) => [ 35 | 'email_verified_at' => null, 36 | ]); 37 | } 38 | } 39 | -------------------------------------------------------------------------------- /backend/database/migrations/2014_10_12_000000_create_users_table.php: -------------------------------------------------------------------------------- 1 | id(); 16 | $table->string('name'); 17 | $table->string('email')->unique(); 18 | $table->timestamp('email_verified_at')->nullable(); 19 | $table->string('password'); 20 | $table->rememberToken(); 21 | $table->timestamps(); 22 | }); 23 | } 24 | 25 | /** 26 | * Reverse the migrations. 27 | */ 28 | public function down(): void 29 | { 30 | Schema::dropIfExists('users'); 31 | } 32 | }; 33 | -------------------------------------------------------------------------------- /backend/database/migrations/2014_10_12_100000_create_password_reset_tokens_table.php: -------------------------------------------------------------------------------- 1 | string('email')->primary(); 16 | $table->string('token'); 17 | $table->timestamp('created_at')->nullable(); 18 | }); 19 | } 20 | 21 | /** 22 | * Reverse the migrations. 23 | */ 24 | public function down(): void 25 | { 26 | Schema::dropIfExists('password_reset_tokens'); 27 | } 28 | }; 29 | -------------------------------------------------------------------------------- /backend/database/migrations/2019_08_19_000000_create_failed_jobs_table.php: -------------------------------------------------------------------------------- 1 | id(); 16 | $table->string('uuid')->unique(); 17 | $table->text('connection'); 18 | $table->text('queue'); 19 | $table->longText('payload'); 20 | $table->longText('exception'); 21 | $table->timestamp('failed_at')->useCurrent(); 22 | }); 23 | } 24 | 25 | /** 26 | * Reverse the migrations. 27 | */ 28 | public function down(): void 29 | { 30 | Schema::dropIfExists('failed_jobs'); 31 | } 32 | }; 33 | -------------------------------------------------------------------------------- /backend/database/migrations/2019_12_14_000001_create_personal_access_tokens_table.php: -------------------------------------------------------------------------------- 1 | id(); 16 | $table->morphs('tokenable'); 17 | $table->string('name'); 18 | $table->string('token', 64)->unique(); 19 | $table->text('abilities')->nullable(); 20 | $table->timestamp('last_used_at')->nullable(); 21 | $table->timestamp('expires_at')->nullable(); 22 | $table->timestamps(); 23 | }); 24 | } 25 | 26 | /** 27 | * Reverse the migrations. 28 | */ 29 | public function down(): void 30 | { 31 | Schema::dropIfExists('personal_access_tokens'); 32 | } 33 | }; 34 | -------------------------------------------------------------------------------- /backend/database/seeders/DatabaseSeeder.php: -------------------------------------------------------------------------------- 1 | create(); 16 | 17 | \App\Models\User::factory()->create([ 18 | 'name' => 'Test User', 19 | 'email' => 'test@example.com', 20 | ]); // password = password 21 | } 22 | } 23 | -------------------------------------------------------------------------------- /backend/phpunit.xml: -------------------------------------------------------------------------------- 1 | 2 | 7 | 8 | 9 | ./tests/Unit 10 | 11 | 12 | ./tests/Feature 13 | 14 | 15 | 16 | 17 | ./app 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | -------------------------------------------------------------------------------- /backend/public/.htaccess: -------------------------------------------------------------------------------- 1 | 2 | 3 | Options -MultiViews -Indexes 4 | 5 | 6 | RewriteEngine On 7 | 8 | # Handle Authorization Header 9 | RewriteCond %{HTTP:Authorization} . 10 | RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] 11 | 12 | # Redirect Trailing Slashes If Not A Folder... 13 | RewriteCond %{REQUEST_FILENAME} !-d 14 | RewriteCond %{REQUEST_URI} (.+)/$ 15 | RewriteRule ^ %1 [L,R=301] 16 | 17 | # Send Requests To Front Controller... 18 | RewriteCond %{REQUEST_FILENAME} !-d 19 | RewriteCond %{REQUEST_FILENAME} !-f 20 | RewriteRule ^ index.php [L] 21 | 22 | -------------------------------------------------------------------------------- /backend/public/favicon.ico: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/justnixx/laravel-breeze-api-react/12f97fbb898ce8bf6b6e3821c28a0b3c15dae855/backend/public/favicon.ico -------------------------------------------------------------------------------- /backend/public/index.php: -------------------------------------------------------------------------------- 1 | make(Kernel::class); 50 | 51 | $response = $kernel->handle( 52 | $request = Request::capture() 53 | )->send(); 54 | 55 | $kernel->terminate($request, $response); 56 | -------------------------------------------------------------------------------- /backend/public/robots.txt: -------------------------------------------------------------------------------- 1 | User-agent: * 2 | Disallow: 3 | -------------------------------------------------------------------------------- /backend/resources/views/.gitkeep: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /backend/routes/api.php: -------------------------------------------------------------------------------- 1 | get('/user', function (Request $request) { 18 | return $request->user(); 19 | }); 20 | -------------------------------------------------------------------------------- /backend/routes/auth.php: -------------------------------------------------------------------------------- 1 | middleware('guest') 13 | ->name('register'); 14 | 15 | Route::post('/login', [AuthenticatedSessionController::class, 'store']) 16 | ->middleware('guest') 17 | ->name('login'); 18 | 19 | Route::post('/forgot-password', [PasswordResetLinkController::class, 'store']) 20 | ->middleware('guest') 21 | ->name('password.email'); 22 | 23 | Route::post('/reset-password', [NewPasswordController::class, 'store']) 24 | ->middleware('guest') 25 | ->name('password.store'); 26 | 27 | Route::get('/verify-email/{id}/{hash}', VerifyEmailController::class) 28 | ->middleware(['auth', 'signed', 'throttle:6,1']) 29 | ->name('verification.verify'); 30 | 31 | Route::post('/email/verification-notification', [EmailVerificationNotificationController::class, 'store']) 32 | ->middleware(['auth', 'throttle:6,1']) 33 | ->name('verification.send'); 34 | 35 | Route::post('/logout', [AuthenticatedSessionController::class, 'destroy']) 36 | ->middleware('auth') 37 | ->name('logout'); 38 | -------------------------------------------------------------------------------- /backend/routes/channels.php: -------------------------------------------------------------------------------- 1 | id === (int) $id; 18 | }); 19 | -------------------------------------------------------------------------------- /backend/routes/console.php: -------------------------------------------------------------------------------- 1 | comment(Inspiring::quote()); 19 | })->purpose('Display an inspiring quote'); 20 | -------------------------------------------------------------------------------- /backend/routes/web.php: -------------------------------------------------------------------------------- 1 | app()->version()]; 18 | }); 19 | 20 | require __DIR__ . '/auth.php'; 21 | -------------------------------------------------------------------------------- /backend/storage/app/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !public/ 3 | !.gitignore 4 | -------------------------------------------------------------------------------- /backend/storage/app/public/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | -------------------------------------------------------------------------------- /backend/storage/framework/.gitignore: -------------------------------------------------------------------------------- 1 | compiled.php 2 | config.php 3 | down 4 | events.scanned.php 5 | maintenance.php 6 | routes.php 7 | routes.scanned.php 8 | schedule-* 9 | services.json 10 | -------------------------------------------------------------------------------- /backend/storage/framework/cache/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !data/ 3 | !.gitignore 4 | -------------------------------------------------------------------------------- /backend/storage/framework/cache/data/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | -------------------------------------------------------------------------------- /backend/storage/framework/sessions/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | -------------------------------------------------------------------------------- /backend/storage/framework/testing/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | -------------------------------------------------------------------------------- /backend/storage/framework/views/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | -------------------------------------------------------------------------------- /backend/storage/logs/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | -------------------------------------------------------------------------------- /backend/tests/CreatesApplication.php: -------------------------------------------------------------------------------- 1 | make(Kernel::class)->bootstrap(); 18 | 19 | return $app; 20 | } 21 | } 22 | -------------------------------------------------------------------------------- /backend/tests/Feature/Auth/AuthenticationTest.php: -------------------------------------------------------------------------------- 1 | create(); 16 | 17 | $response = $this->post('/login', [ 18 | 'email' => $user->email, 19 | 'password' => 'password', 20 | ]); 21 | 22 | $this->assertAuthenticated(); 23 | $response->assertNoContent(); 24 | } 25 | 26 | public function test_users_can_not_authenticate_with_invalid_password(): void 27 | { 28 | $user = User::factory()->create(); 29 | 30 | $this->post('/login', [ 31 | 'email' => $user->email, 32 | 'password' => 'wrong-password', 33 | ]); 34 | 35 | $this->assertGuest(); 36 | } 37 | } 38 | -------------------------------------------------------------------------------- /backend/tests/Feature/Auth/EmailVerificationTest.php: -------------------------------------------------------------------------------- 1 | create([ 20 | 'email_verified_at' => null, 21 | ]); 22 | 23 | Event::fake(); 24 | 25 | $verificationUrl = URL::temporarySignedRoute( 26 | 'verification.verify', 27 | now()->addMinutes(60), 28 | ['id' => $user->id, 'hash' => sha1($user->email)] 29 | ); 30 | 31 | $response = $this->actingAs($user)->get($verificationUrl); 32 | 33 | Event::assertDispatched(Verified::class); 34 | $this->assertTrue($user->fresh()->hasVerifiedEmail()); 35 | $response->assertRedirect(config('app.frontend_url').RouteServiceProvider::HOME.'?verified=1'); 36 | } 37 | 38 | public function test_email_is_not_verified_with_invalid_hash(): void 39 | { 40 | $user = User::factory()->create([ 41 | 'email_verified_at' => null, 42 | ]); 43 | 44 | $verificationUrl = URL::temporarySignedRoute( 45 | 'verification.verify', 46 | now()->addMinutes(60), 47 | ['id' => $user->id, 'hash' => sha1('wrong-email')] 48 | ); 49 | 50 | $this->actingAs($user)->get($verificationUrl); 51 | 52 | $this->assertFalse($user->fresh()->hasVerifiedEmail()); 53 | } 54 | } 55 | -------------------------------------------------------------------------------- /backend/tests/Feature/Auth/PasswordResetTest.php: -------------------------------------------------------------------------------- 1 | create(); 20 | 21 | $this->post('/forgot-password', ['email' => $user->email]); 22 | 23 | Notification::assertSentTo($user, ResetPassword::class); 24 | } 25 | 26 | public function test_password_can_be_reset_with_valid_token(): void 27 | { 28 | Notification::fake(); 29 | 30 | $user = User::factory()->create(); 31 | 32 | $this->post('/forgot-password', ['email' => $user->email]); 33 | 34 | Notification::assertSentTo($user, ResetPassword::class, function (object $notification) use ($user) { 35 | $response = $this->post('/reset-password', [ 36 | 'token' => $notification->token, 37 | 'email' => $user->email, 38 | 'password' => 'password', 39 | 'password_confirmation' => 'password', 40 | ]); 41 | 42 | $response->assertSessionHasNoErrors(); 43 | 44 | return true; 45 | }); 46 | } 47 | } 48 | -------------------------------------------------------------------------------- /backend/tests/Feature/Auth/RegistrationTest.php: -------------------------------------------------------------------------------- 1 | post('/register', [ 15 | 'name' => 'Test User', 16 | 'email' => 'test@example.com', 17 | 'password' => 'password', 18 | 'password_confirmation' => 'password', 19 | ]); 20 | 21 | $this->assertAuthenticated(); 22 | $response->assertNoContent(); 23 | } 24 | } 25 | -------------------------------------------------------------------------------- /backend/tests/Feature/ExampleTest.php: -------------------------------------------------------------------------------- 1 | get('/'); 16 | 17 | $response->assertStatus(200); 18 | } 19 | } 20 | -------------------------------------------------------------------------------- /backend/tests/TestCase.php: -------------------------------------------------------------------------------- 1 | assertTrue(true); 15 | } 16 | } 17 | -------------------------------------------------------------------------------- /frontend/.env.development: -------------------------------------------------------------------------------- 1 | VITE_BACKEND_URL=http://localhost:8000 2 | -------------------------------------------------------------------------------- /frontend/.env.example: -------------------------------------------------------------------------------- 1 | VITE_BACKEND_URL_LOCAL= 2 | -------------------------------------------------------------------------------- /frontend/.env.production: -------------------------------------------------------------------------------- 1 | VITE_BACKEND_URL=https://breeze.nixx.dev/app 2 | -------------------------------------------------------------------------------- /frontend/.eslintrc.cjs: -------------------------------------------------------------------------------- 1 | module.exports = { 2 | env: { browser: true, es2020: true }, 3 | extends: [ 4 | 'eslint:recommended', 5 | 'plugin:@typescript-eslint/recommended', 6 | 'plugin:react-hooks/recommended', 7 | ], 8 | parser: '@typescript-eslint/parser', 9 | parserOptions: { ecmaVersion: 'latest', sourceType: 'module' }, 10 | plugins: ['react-refresh'], 11 | rules: { 12 | 'react-refresh/only-export-components': 'warn', 13 | }, 14 | } 15 | -------------------------------------------------------------------------------- /frontend/.gitignore: -------------------------------------------------------------------------------- 1 | # Logs 2 | logs 3 | *.log 4 | npm-debug.log* 5 | yarn-debug.log* 6 | yarn-error.log* 7 | pnpm-debug.log* 8 | lerna-debug.log* 9 | 10 | node_modules 11 | dist 12 | dist-ssr 13 | *.local 14 | 15 | # Editor directories and files 16 | .vscode/* 17 | !.vscode/extensions.json 18 | .idea 19 | .DS_Store 20 | *.suo 21 | *.ntvs* 22 | *.njsproj 23 | *.sln 24 | *.sw? 25 | -------------------------------------------------------------------------------- /frontend/README.md: -------------------------------------------------------------------------------- 1 | # Vite + React + TypeScript + Tailwindcss 2 | 3 | This directory contains the frontend code that connects to the Laravel Breeze API backend. 4 | 5 | # Intallation 6 | 7 | To get started, Install the dependencies using Yarn: 8 | 9 | `yarn` 10 | 11 | # Usage 12 | 13 | To run the development server, use the following command: 14 | 15 | `yarn dev` 16 | 17 | This will start the server and open the application in your default browser. 18 | 19 | # Technologies Used 20 | 21 | - Vite: A fast build tool for modern web applications. 22 | - React: A JavaScript library for building user interfaces. 23 | - TypeScript: A typed superset of JavaScript that compiles to plain JavaScript. 24 | - Tailwind CSS: A utility-first CSS framework for rapid UI development. 25 | 26 | # Contributing 27 | 28 | Contributions are welcome! If you find any issues or have suggestions for improvements, please open an issue or submit a pull request. 29 | 30 | # Contact 31 | 32 | If you have any questions or need further assistance, feel free to contact **NIXX** at [hello@nixx.dev](mailto:hello@nixx.dev). 33 | -------------------------------------------------------------------------------- /frontend/index.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | Vite + React + TS 9 | 10 | 11 | 12 |
13 | 14 | 15 | 16 | 17 | -------------------------------------------------------------------------------- /frontend/package.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "frontend", 3 | "engines": { 4 | "node": "18.x" 5 | }, 6 | "private": true, 7 | "version": "0.0.0", 8 | "type": "module", 9 | "scripts": { 10 | "dev": "vite", 11 | "build": "tsc && vite build", 12 | "lint": "eslint src --ext ts,tsx --report-unused-disable-directives --max-warnings 0", 13 | "preview": "vite preview" 14 | }, 15 | "dependencies": { 16 | "@headlessui/react": "^1.7.17", 17 | "@heroicons/react": "^2.0.18", 18 | "@types/react-router-dom": "^5.3.3", 19 | "axios": "^1.4.0", 20 | "react": "^18.2.0", 21 | "react-dom": "^18.2.0", 22 | "react-hot-toast": "^2.4.1", 23 | "react-router-dom": "^6.14.0", 24 | "ts-node": "^10.9.1" 25 | }, 26 | "devDependencies": { 27 | "@types/react": "^18.0.37", 28 | "@types/react-dom": "^18.0.11", 29 | "@typescript-eslint/eslint-plugin": "^5.59.0", 30 | "@typescript-eslint/parser": "^5.59.0", 31 | "@vitejs/plugin-react": "^4.0.0", 32 | "autoprefixer": "^10.4.14", 33 | "eslint": "^8.38.0", 34 | "eslint-plugin-react-hooks": "^4.6.0", 35 | "eslint-plugin-react-refresh": "^0.3.4", 36 | "postcss": "^8.4.24", 37 | "tailwindcss": "^3.3.2", 38 | "typescript": "^5.0.2", 39 | "vite": "^4.3.9" 40 | } 41 | } 42 | -------------------------------------------------------------------------------- /frontend/postcss.config.js: -------------------------------------------------------------------------------- 1 | export default { 2 | plugins: { 3 | tailwindcss: {}, 4 | autoprefixer: {}, 5 | }, 6 | } 7 | -------------------------------------------------------------------------------- /frontend/public/_redirects: -------------------------------------------------------------------------------- 1 | /* /index.html 200 -------------------------------------------------------------------------------- /frontend/public/vite.svg: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /frontend/src/App.tsx: -------------------------------------------------------------------------------- 1 | import { Toaster } from 'react-hot-toast'; 2 | import { Route, Routes } from 'react-router-dom'; 3 | import AuthLayout from './components/layout/AuthLayout'; 4 | import GuestLayout from './components/layout/GuestLayout'; 5 | import ForgotPassword from './pages/ForgotPassword'; 6 | import Home from './pages/Home'; 7 | import Login from './pages/Login'; 8 | import Register from './pages/Register'; 9 | import ResetPassword from './pages/ResetPassword'; 10 | import QuickStart from './pages/QuickStart'; 11 | import ErrorBoundary from './components/ErrorBoundary'; 12 | 13 | export default function App() { 14 | return ( 15 | <> 16 | 17 | 20 | 21 | 22 | } 23 | > 24 | } /> 25 | } /> 26 | 27 | 30 | 31 | 32 | } 33 | > 34 | } /> 35 | } /> 36 | } /> 37 | } /> 38 | 39 | 40 | 41 | 42 | ); 43 | } 44 | -------------------------------------------------------------------------------- /frontend/src/assets/index.css: -------------------------------------------------------------------------------- 1 | @tailwind base; 2 | @tailwind components; 3 | @tailwind utilities; 4 | -------------------------------------------------------------------------------- /frontend/src/components/ErrorBoundary.tsx: -------------------------------------------------------------------------------- 1 | import { Component, ErrorInfo, ReactNode } from 'react'; 2 | import Generic from './errors/Generic'; 3 | 4 | interface ErrorBoundaryProps { 5 | children: ReactNode; 6 | } 7 | 8 | interface ErrorBoundaryState { 9 | hasError: boolean; 10 | } 11 | 12 | class ErrorBoundary extends Component { 13 | constructor(props: ErrorBoundaryProps) { 14 | super(props); 15 | this.state = { hasError: false }; 16 | } 17 | 18 | static getDerivedStateFromError(_: Error): ErrorBoundaryState { 19 | return { hasError: true }; 20 | } 21 | 22 | componentDidCatch(error: Error, errorInfo: ErrorInfo): void { 23 | console.error(error, errorInfo); 24 | } 25 | 26 | render(): ReactNode { 27 | if (this.state.hasError) { 28 | return ( 29 | 30 | ); 31 | } 32 | 33 | return this.props.children; 34 | } 35 | } 36 | 37 | export default ErrorBoundary; 38 | -------------------------------------------------------------------------------- /frontend/src/components/errors/Generic.tsx: -------------------------------------------------------------------------------- 1 | export default function Generic({ message }: { message: string }) { 2 | return ( 3 |
4 | {message} 5 |
6 | ); 7 | } 8 | -------------------------------------------------------------------------------- /frontend/src/components/layout/AuthLayout.tsx: -------------------------------------------------------------------------------- 1 | import { Outlet, Navigate } from 'react-router-dom'; 2 | import Navbar from '../ui/Navbar'; 3 | import useAuthContext from '../../hooks/useAuthContext'; 4 | 5 | export default function AuthLayout() { 6 | const { loading, user } = useAuthContext(); 7 | 8 | if (!loading && !user) { 9 | return ; 10 | } 11 | 12 | return ( 13 |
14 | 15 |
16 |
17 | 18 |
19 |
20 |
21 | ); 22 | } 23 | -------------------------------------------------------------------------------- /frontend/src/components/layout/GuestLayout.tsx: -------------------------------------------------------------------------------- 1 | import { Outlet, Navigate } from 'react-router-dom'; 2 | import useAuthContext from '../../hooks/useAuthContext'; 3 | import Spinner from '../ui/Spinner'; 4 | 5 | export default function GuestLayout() { 6 | const { user, sessionVerified } = useAuthContext(); 7 | 8 | if (sessionVerified && !user) { 9 | return ( 10 |
11 |
12 | 13 |
14 | Authenticating... 15 |
16 | ); 17 | } 18 | 19 | return !user ? : ; 20 | } 21 | -------------------------------------------------------------------------------- /frontend/src/components/ui/Navbar.tsx: -------------------------------------------------------------------------------- 1 | import { Disclosure, Menu, Transition } from '@headlessui/react'; 2 | import { Bars3Icon, BellIcon, XMarkIcon } from '@heroicons/react/24/outline'; 3 | import { Fragment } from 'react'; 4 | import { Link, NavLink } from 'react-router-dom'; 5 | import useAuthContext from '../../hooks/useAuthContext'; 6 | 7 | const navigation = [ 8 | { name: 'Home', path: '/', current: true }, 9 | { name: 'QuickStart', path: '/quickstart', current: false }, 10 | ]; 11 | 12 | function classNames(...classes: string[]) { 13 | return classes.filter(Boolean).join(' '); 14 | } 15 | 16 | export default function Navbar() { 17 | const { logout } = useAuthContext(); 18 | 19 | return ( 20 | 21 | {({ open }) => ( 22 | <> 23 |
24 |
25 |
26 | {/* Mobile menu button*/} 27 | 28 | 29 | Open main menu 30 | {open ? ( 31 | 36 |
37 |
38 |
39 | Your Company 44 |
45 |
46 |
47 | {navigation.map((item) => ( 48 | 52 | classNames( 53 | isActive 54 | ? 'bg-gray-900 text-white' 55 | : 'text-gray-600 hover:bg-gray-700 hover:text-white', 56 | 'rounded-md px-3 py-2 text-sm font-medium' 57 | ) 58 | } 59 | > 60 | {item.name} 61 | 62 | ))} 63 |
64 |
65 |
66 |
67 | 75 | 76 | {/* Profile dropdown */} 77 | 78 |
79 | 80 | 81 | Open user menu 82 | 87 | 88 |
89 | 98 | 99 | 100 | {({ active }) => ( 101 | 109 | Sign out 110 | 111 | )} 112 | 113 | 114 | 115 | 116 |
117 |
118 |
119 | 120 | 121 |
122 | {navigation.map((item) => ( 123 | 127 | classNames( 128 | isActive 129 | ? 'bg-gray-900 text-white' 130 | : 'text-gray-300 hover:bg-gray-700 hover:text-white', 131 | 'block rounded-md px-3 py-2 text-base font-medium' 132 | ) 133 | } 134 | > 135 | {item.name} 136 | 137 | ))} 138 |
139 | 140 | 141 | )} 142 | 143 | ); 144 | } 145 | -------------------------------------------------------------------------------- /frontend/src/components/ui/Spinner.tsx: -------------------------------------------------------------------------------- 1 | export default function Spinner({ loading }: { loading: boolean }) { 2 | return loading && 3 | } 4 | -------------------------------------------------------------------------------- /frontend/src/context/AuthContext.tsx: -------------------------------------------------------------------------------- 1 | import { ReactNode, createContext, useEffect, useState } from 'react'; 2 | import axios from '../lib/axios'; 3 | import { useNavigate } from 'react-router-dom'; 4 | 5 | type AuthProviderProps = { 6 | children: ReactNode; 7 | }; 8 | 9 | type User = { 10 | name?: string; 11 | email?: string; 12 | created_at?: string; 13 | id?: string; 14 | updated_at?: string; 15 | email_verified_at?: string; 16 | }; 17 | 18 | type Errors = { 19 | name?: string[]; 20 | email?: string[]; 21 | password?: string[]; 22 | }; 23 | 24 | type LoginParams = { email: string; password: string }; 25 | 26 | type RegisterParams = { 27 | name: string; 28 | email: string; 29 | password: string; 30 | password_confirmation: string; 31 | }; 32 | 33 | type NewPasswordParams = { 34 | email: string | number; 35 | token: string | undefined; 36 | password: string; 37 | password_confirmation: string; 38 | }; 39 | 40 | export interface AuthContextValues { 41 | csrf: () => void; 42 | errors: Errors; 43 | user: User | null; 44 | login: (data: LoginParams) => void; 45 | register: (data: RegisterParams) => void; 46 | logout: () => void; 47 | loading: boolean; 48 | sessionVerified: boolean; 49 | status: string | null; 50 | setStatus: React.Dispatch>; 51 | sendPasswordResetLink: (data: { email: string }) => void; 52 | newPassword: (data: NewPasswordParams) => void; 53 | sendEmailVerificationLink: () => void; 54 | } 55 | 56 | export const AuthContext = createContext( 57 | {} as AuthContextValues 58 | ); 59 | 60 | const SESSION_NAME = 'session-verified'; 61 | 62 | export function AuthProvider({ children }: AuthProviderProps) { 63 | const [user, setUser] = useState(null); 64 | const [errors, setErrors] = useState({}); 65 | const [loading, setLoading] = useState(true); 66 | const [status, setStatus] = useState(null); 67 | const navigate = useNavigate(); 68 | 69 | const sessionData = window.localStorage.getItem(SESSION_NAME); 70 | const initialSessionVerified = sessionData ? JSON.parse(sessionData) : false; 71 | const [sessionVerified, setSessionVerified] = useState( 72 | initialSessionVerified 73 | ); 74 | 75 | const csrf = () => axios.get('/sanctum/csrf-cookie'); 76 | 77 | const getUser = async () => { 78 | try { 79 | const { data } = await axios.get('/api/user'); 80 | setUser(data); 81 | setSessionVerified(true); 82 | window.localStorage.setItem(SESSION_NAME, 'true'); 83 | } catch (e) { 84 | console.warn('Error ', e); 85 | } 86 | }; 87 | 88 | const login = async ({ ...data }) => { 89 | setErrors({}); 90 | setLoading(true); 91 | try { 92 | await csrf(); 93 | await axios.post('/login', data); 94 | await getUser(); 95 | } catch (e) { 96 | if (typeof e === 'object' && e !== null && 'response' in e) { 97 | console.warn((e as { response: { data: unknown } }).response.data); 98 | setErrors( 99 | (e as { response: { data: { errors: [] } } }).response.data.errors 100 | ); 101 | } else { 102 | console.warn(e); 103 | } 104 | } finally { 105 | setTimeout(() => setLoading(false), 2000); 106 | } 107 | }; 108 | 109 | const register = async ({ ...data }) => { 110 | setErrors({}); 111 | setLoading(true); 112 | try { 113 | await csrf(); 114 | await axios.post('/register', data); 115 | await getUser(); 116 | } catch (e) { 117 | if (typeof e === 'object' && e !== null && 'response' in e) { 118 | console.warn((e as { response: { data: unknown } }).response.data); 119 | setErrors( 120 | (e as { response: { data: { errors: [] } } }).response.data.errors 121 | ); 122 | } else { 123 | console.warn(e); 124 | } 125 | } finally { 126 | setTimeout(() => setLoading(false), 2000); 127 | } 128 | }; 129 | 130 | const sendPasswordResetLink = async ({ ...data }) => { 131 | setErrors({}); 132 | setLoading(true); 133 | setStatus(null); 134 | try { 135 | await csrf(); 136 | const response = await axios.post('/forgot-password', data); 137 | setStatus(response.data?.status); 138 | } catch (e) { 139 | if (typeof e === 'object' && e !== null && 'response' in e) { 140 | console.warn((e as { response: { data: unknown } }).response.data); 141 | setErrors( 142 | (e as { response: { data: { errors: [] } } }).response.data.errors 143 | ); 144 | } else { 145 | console.warn(e); 146 | } 147 | } finally { 148 | setTimeout(() => setLoading(false), 2000); 149 | } 150 | }; 151 | 152 | const newPassword = async ({ ...data }) => { 153 | setErrors({}); 154 | setLoading(true); 155 | setStatus(null); 156 | try { 157 | await csrf(); 158 | const response = await axios.post('/reset-password', data); 159 | setStatus(response.data?.status); 160 | setTimeout(() => { 161 | navigate('/login'); 162 | }, 2000); 163 | } catch (e) { 164 | if (typeof e === 'object' && e !== null && 'response' in e) { 165 | console.warn((e as { response: { data: unknown } }).response.data); 166 | setErrors( 167 | (e as { response: { data: { errors: [] } } }).response.data.errors 168 | ); 169 | } else { 170 | console.warn(e); 171 | } 172 | } finally { 173 | setTimeout(() => setLoading(false), 2000); 174 | } 175 | }; 176 | 177 | const sendEmailVerificationLink = async () => { 178 | setErrors({}); 179 | setLoading(true); 180 | setStatus(null); 181 | try { 182 | await csrf(); 183 | const response = await axios.post('/email/verification-notification'); 184 | setStatus(response.data?.status); 185 | } catch (e) { 186 | if (typeof e === 'object' && e !== null && 'response' in e) { 187 | console.warn((e as { response: { data: unknown } }).response.data); 188 | setErrors( 189 | (e as { response: { data: { errors: [] } } }).response.data.errors 190 | ); 191 | } else { 192 | console.warn(e); 193 | } 194 | } finally { 195 | setTimeout(() => setLoading(false), 2000); 196 | } 197 | }; 198 | 199 | const logout = async () => { 200 | try { 201 | setSessionVerified(false); 202 | await axios.post('/logout'); 203 | setUser(null); 204 | window.localStorage.removeItem(SESSION_NAME); 205 | } catch (e) { 206 | console.warn(e); 207 | } 208 | }; 209 | 210 | useEffect(() => { 211 | const fetchUser = async () => { 212 | try { 213 | await getUser(); 214 | } catch (e) { 215 | console.warn(e); 216 | } finally { 217 | setLoading(false); 218 | setSessionVerified(false); 219 | } 220 | }; 221 | 222 | if (!user) { 223 | fetchUser(); 224 | } 225 | }, [user]); 226 | 227 | return ( 228 | 245 | {children} 246 | 247 | ); 248 | } 249 | -------------------------------------------------------------------------------- /frontend/src/hooks/useAuthContext.tsx: -------------------------------------------------------------------------------- 1 | import { useContext } from "react"; 2 | import { AuthContext, AuthContextValues } from "../context/AuthContext"; 3 | 4 | export default function useAuthContext(): AuthContextValues { 5 | return useContext(AuthContext) 6 | } 7 | -------------------------------------------------------------------------------- /frontend/src/lib/axios.tsx: -------------------------------------------------------------------------------- 1 | import axios, { AxiosInstance, AxiosError } from 'axios'; 2 | 3 | const instance: AxiosInstance = axios.create({ 4 | baseURL: import.meta.env.VITE_BACKEND_URL as string, 5 | withXSRFToken: true, 6 | withCredentials: true, 7 | }); 8 | 9 | // Add a response interceptor 10 | instance.interceptors.response.use( 11 | (response) => { 12 | // If the request was successful, return the response 13 | return response; 14 | }, 15 | (error: AxiosError) => { 16 | // If there's an error in the response, handle it here 17 | throw error; 18 | } 19 | ); 20 | 21 | export default instance; 22 | -------------------------------------------------------------------------------- /frontend/src/main.tsx: -------------------------------------------------------------------------------- 1 | import React from 'react'; 2 | import ReactDOM from 'react-dom/client'; 3 | import App from './App.tsx'; 4 | import { BrowserRouter as Router } from 'react-router-dom'; 5 | import './assets/index.css'; 6 | import { AuthProvider } from './context/AuthContext.tsx'; 7 | 8 | ReactDOM.createRoot(document.getElementById('root') as HTMLElement).render( 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | ); 17 | -------------------------------------------------------------------------------- /frontend/src/pages/ForgotPassword.tsx: -------------------------------------------------------------------------------- 1 | import { FormEvent, useEffect, useState } from 'react'; 2 | import Spinner from '../components/ui/Spinner'; 3 | import useAuthContext from '../hooks/useAuthContext'; 4 | import toast from 'react-hot-toast'; 5 | 6 | export default function ForgotPassword() { 7 | const [email, setEmail] = useState(''); 8 | const { sendPasswordResetLink, loading, errors, status } = useAuthContext(); 9 | 10 | const handleSubmit = async (e: FormEvent) => { 11 | e.preventDefault(); 12 | sendPasswordResetLink({ email }); 13 | setEmail(''); 14 | }; 15 | 16 | useEffect(() => { 17 | if (status) { 18 | toast.success(status); 19 | } 20 | }, [status]); 21 | 22 | return ( 23 |
24 |
25 |

26 | Forgot password? 27 |

28 |
29 | 30 |
31 |
32 |
33 |

34 | Enter your registered email address, and we'll email you a link to 35 | reset your password. 36 |

37 | 43 |
44 | setEmail(e.target.value)} 54 | /> 55 |
56 | {errors.email && ( 57 | {errors.email[0]} 58 | )} 59 |
60 | 61 |
62 | 70 |
71 |
72 |
73 |
74 | ); 75 | } 76 | -------------------------------------------------------------------------------- /frontend/src/pages/Home.tsx: -------------------------------------------------------------------------------- 1 | import { useEffect } from 'react'; 2 | import useAuthContext from '../hooks/useAuthContext'; 3 | import toast from 'react-hot-toast'; 4 | import Spinner from '../components/ui/Spinner'; 5 | 6 | export default function Home() { 7 | const { user, sendEmailVerificationLink, status, loading } = useAuthContext(); 8 | 9 | useEffect(() => { 10 | if (status) { 11 | toast.success(status); 12 | } 13 | }, [status]); 14 | 15 | return ( 16 | <> 17 |

18 | Hello, {user?.name}! 19 |

20 | 21 | {!user?.email_verified_at && ( 22 |
23 |

Please verify your email address.

24 | 32 |
33 | )} 34 | 35 | ); 36 | } 37 | -------------------------------------------------------------------------------- /frontend/src/pages/Login.tsx: -------------------------------------------------------------------------------- 1 | import { FormEvent, useState } from 'react'; 2 | import { Link } from 'react-router-dom'; 3 | import Spinner from '../components/ui/Spinner'; 4 | import useAuthContext from '../hooks/useAuthContext'; 5 | 6 | export default function Login() { 7 | const [email, setEmail] = useState(''); 8 | const [password, setPassword] = useState(''); 9 | const { login, errors, loading } = useAuthContext(); 10 | 11 | const handleLogin = async (e: FormEvent) => { 12 | e.preventDefault(); 13 | login({ email, password }); 14 | }; 15 | 16 | return ( 17 |
18 |
19 |

20 | Sign in to your account 21 |

22 |
23 | 24 |
25 |
26 |
27 | 33 |
34 | setEmail(e.target.value)} 44 | /> 45 |
46 | {errors.email && ( 47 | {errors.email[0]} 48 | )} 49 |
50 | 51 |
52 |
53 | 59 |
60 | 64 | Forgot password? 65 | 66 |
67 |
68 |
69 | setPassword(e.target.value)} 79 | /> 80 |
81 | {errors.password && ( 82 | {errors.password[0]} 83 | )} 84 |
85 | 86 |
87 | 95 |
96 |
97 | 98 |

99 | Don't have an account?{' '} 100 | 104 | Sign up 105 | 106 |

107 |
108 |
109 | ); 110 | } 111 | -------------------------------------------------------------------------------- /frontend/src/pages/QuickStart.tsx: -------------------------------------------------------------------------------- 1 | export default function QuickStart() { 2 | return

QuickStart

; 3 | } 4 | -------------------------------------------------------------------------------- /frontend/src/pages/Register.tsx: -------------------------------------------------------------------------------- 1 | import { FormEvent, useState } from 'react'; 2 | import { Link } from 'react-router-dom'; 3 | import Spinner from '../components/ui/Spinner'; 4 | import useAuthContext from '../hooks/useAuthContext'; 5 | 6 | export default function Register() { 7 | const [email, setEmail] = useState(''); 8 | const [name, setName] = useState(''); 9 | const [password, setPassword] = useState(''); 10 | const [password_confirmation, setPasswordConfirmation] = useState(''); 11 | const { register, errors, loading } = useAuthContext(); 12 | 13 | const handleRegister = async (e: FormEvent) => { 14 | e.preventDefault(); 15 | register({ name, email, password, password_confirmation }); 16 | }; 17 | 18 | return ( 19 |
20 |
21 |

22 | Create a new account 23 |

24 |
25 | 26 |
27 |
28 |
29 | 35 |
36 | setName(e.target.value)} 45 | /> 46 |
47 | {errors.name && ( 48 | {errors.name[0]} 49 | )} 50 |
51 | 52 |
53 | 59 |
60 | setEmail(e.target.value)} 70 | /> 71 |
72 | {errors.email && ( 73 | {errors.email[0]} 74 | )} 75 |
76 | 77 |
78 |
79 | 85 |
86 |
87 | setPassword(e.target.value)} 97 | /> 98 |
99 | {errors.password && ( 100 | {errors.password[0]} 101 | )} 102 |
103 | 104 |
105 |
106 | 112 |
113 |
114 | setPasswordConfirmation(e.target.value)} 124 | /> 125 |
126 |
127 | 128 |
129 | 137 |
138 |
139 | 140 |

141 | Already have an account?{' '} 142 | 146 | Sign in 147 | 148 |

149 |
150 |
151 | ); 152 | } 153 | -------------------------------------------------------------------------------- /frontend/src/pages/ResetPassword.tsx: -------------------------------------------------------------------------------- 1 | import { FormEvent, useEffect, useState } from 'react'; 2 | import Spinner from '../components/ui/Spinner'; 3 | import useAuthContext from '../hooks/useAuthContext'; 4 | import toast from 'react-hot-toast'; 5 | import { useParams, useSearchParams } from 'react-router-dom'; 6 | 7 | export default function ResetPassword() { 8 | const [email, setEmail] = useState(''); 9 | const [password, setPassword] = useState(''); 10 | const [password_confirmation, setPasswordConfirmation] = useState(''); 11 | const { newPassword, loading, errors, status } = useAuthContext(); 12 | const { token } = useParams(); 13 | const [searchParams] = useSearchParams(); 14 | 15 | const handleSubmit = async (e: FormEvent) => { 16 | e.preventDefault(); 17 | newPassword({ email, password, token, password_confirmation }); 18 | }; 19 | 20 | useEffect(() => { 21 | if (status) { 22 | toast.success(status); 23 | } 24 | 25 | setEmail(searchParams.get('email') || 0); 26 | }, [status, searchParams]); 27 | 28 | return ( 29 |
30 |
31 |

32 | Reset password 33 |

34 |
35 | 36 |
37 |
38 |
39 | 45 |
46 | setEmail(e.target.value)} 56 | readOnly 57 | /> 58 |
59 | {errors.email && ( 60 | {errors.email[0]} 61 | )} 62 |
63 | 64 |
65 | 71 |
72 | setPassword(e.target.value)} 82 | /> 83 |
84 | {errors.password && ( 85 | {errors.password[0]} 86 | )} 87 |
88 | 89 |
90 | 96 |
97 | setPasswordConfirmation(e.target.value)} 107 | /> 108 |
109 |
110 | 111 |
112 | 120 |
121 |
122 |
123 |
124 | ); 125 | } 126 | -------------------------------------------------------------------------------- /frontend/src/vite-env.d.ts: -------------------------------------------------------------------------------- 1 | /// 2 | -------------------------------------------------------------------------------- /frontend/tailwind.config.ts: -------------------------------------------------------------------------------- 1 | /** @type {import('tailwindcss').Config} */ 2 | export default { 3 | content: [ 4 | "./index.html", 5 | "./src/**/*.{js,ts,jsx,tsx}", 6 | ], 7 | theme: { 8 | extend: {}, 9 | }, 10 | plugins: [], 11 | } 12 | -------------------------------------------------------------------------------- /frontend/tsconfig.json: -------------------------------------------------------------------------------- 1 | { 2 | "compilerOptions": { 3 | "target": "ES2020", 4 | "useDefineForClassFields": true, 5 | "lib": ["ES2020", "DOM", "DOM.Iterable"], 6 | "module": "ESNext", 7 | "skipLibCheck": true, 8 | 9 | /* Bundler mode */ 10 | "moduleResolution": "bundler", 11 | "allowImportingTsExtensions": true, 12 | "resolveJsonModule": true, 13 | "isolatedModules": true, 14 | "noEmit": true, 15 | "jsx": "react-jsx", 16 | 17 | /* Linting */ 18 | "strict": true, 19 | "noUnusedLocals": true, 20 | "noUnusedParameters": true, 21 | "noFallthroughCasesInSwitch": true 22 | }, 23 | "include": ["src"], 24 | "references": [{ "path": "./tsconfig.node.json" }] 25 | } 26 | -------------------------------------------------------------------------------- /frontend/tsconfig.node.json: -------------------------------------------------------------------------------- 1 | { 2 | "compilerOptions": { 3 | "composite": true, 4 | "skipLibCheck": true, 5 | "module": "ESNext", 6 | "moduleResolution": "bundler", 7 | "allowSyntheticDefaultImports": true 8 | }, 9 | "include": ["vite.config.ts"] 10 | } 11 | -------------------------------------------------------------------------------- /frontend/vite.config.ts: -------------------------------------------------------------------------------- 1 | import { defineConfig } from 'vite' 2 | import react from '@vitejs/plugin-react' 3 | 4 | // https://vitejs.dev/config/ 5 | export default defineConfig({ 6 | base:"/", 7 | plugins: [react()], 8 | server: { port: 3000 } 9 | }) 10 | --------------------------------------------------------------------------------