How to authenticate Mobile App using Laravel Sanctum & Laravel Fortify

Thank you so much 🙏 💙

Fortify does not have token based authentication, that's Laravel Sanctum. This video shows how to authenticate mobile app using laravel sanctum & laravel fortify because this series is about Laravel Fortify. I think you might be confusing fortify with sanctum. Here is a snippet from laravel docs:
"If you are attempting to manually build the authentication layer for an application that offers an API or serves as the backend for a single-page application, it is entirely possible that you will utilize both Laravel Fortify (for user registration, password reset, etc.) and Laravel Sanctum (API token management, session authentication)." laravel.com/docs/9.x/fortify#laravel-fortify-and-laravel-sanctum
Hope this clears up any confusion. So no, there is nothing misleading about this video.

Glad you liked it 👍

You could use sanctum tokens but those are for user. Authenticating non users might be a bit tricky, don't think sanctum would work in that case. Might need to implement it on your own

​@@ProgramWithGio Thanks man, you are really such a blessing to us PHP developers :) keep up the good content. Bdw, looking forward to your Laravel the Right Way Course

It's hard to help without seeing the code & debugging. If it works on local but fails on prod then it has to be some configuration. Maybe related to session domain env variable

@@ProgramWithGio I never set the SESSION_DOMAIN in the env file, since my API calls are from the mobile app. Is there any other channel to paste my codes?

@@akeemsalami1854 then u are authenticating using token and not sessions. I would debug the token part and see how it's being passed.

@@akeemsalami1854 you can post it on Laracasts to get help on specific code. Someone may have had same issue and may be able to help

Yes, I want to try flutter, it's in my queue of the things I want to learn.

Hey, I would issue a new token and revoke the old one.

I haven't tried but I think you should be able to implement 2FA on token based auth.

Thank you. You would need to authenticate with username/password first, then ask for 2FA and if successful then get the token. If you want to cut the extra step and have 2FA code be entered together with username and password then you will probably need to use custom action for it to authenticate user. Haven't tried doing that way

Not sure I understand. That's how it's referred to in Laravel docs and how developers refer to it, hence why I picked that title because that's what they search for.
From Laravel docs: "Mobile Application Authentication"
laravel.com/docs/8.x/sanctum#mobile-application-authentication

It's a playlist, so if you go to the playlist it's sorted so you'll know which is previous. In the description there are links for videos as well.

Not sure, I have not used firebase

Thanks for the suggestion 👍

@@ProgramWithGio Great series abount nextjs with laravel auth. Lets continue :)

Not sure I fully understand the question but if the SPAs/Mobile Apps fetch the same data just display differently then best to have a single API. Sounds like GraphQL would be ideal since it would allow your SPA/Mobile App to fetch data in the format that it needs without the need to have custom endpoints or even a separate API

@@ProgramWithGio actually what operations need to be implemented separately for mobile and SPA like login and logout APIs u did?

@@homayoonsoheyli9175 yea, because login from mobile app will happen using tokens, same for logout it has to revoke the token. That's what I did in this video, had separate endpoint for logging in using tokens

You can use Laravel Socialite package for that. I'll make a video about it soon

@@ProgramWithGio I mean using social logins in your mobile apps.

@@jahadempire7934 I haven't done that yet

@@jahadempire7934 I think Socialite can be used for that also, it has option to do stateless authentication. I'll be reviewing it soon after my PHP course and make a video about it