47 lines
1.6 KiB
PHP
47 lines
1.6 KiB
PHP
<?php
|
|
|
|
use Illuminate\Foundation\Application;
|
|
use Illuminate\Foundation\Configuration\Exceptions;
|
|
use Illuminate\Foundation\Configuration\Middleware;
|
|
use Illuminate\Http\Request;
|
|
use Laravel\Sanctum\Sanctum;
|
|
use App\Http\Middleware\Cors;
|
|
|
|
return Application::configure(basePath: dirname(__DIR__))
|
|
->withRouting(
|
|
web: __DIR__.'/../routes/web.php',
|
|
api: __DIR__.'/../routes/api.php',
|
|
commands: __DIR__.'/../routes/console.php',
|
|
health: '/up',
|
|
)
|
|
->withMiddleware(function (Middleware $middleware) {
|
|
// Add CORS middleware globally to handle cross-origin requests
|
|
$middleware->web(prepend: [
|
|
Cors::class,
|
|
]);
|
|
|
|
// Register Sanctum middleware for API authentication with CORS handling
|
|
$middleware->api(prepend: [
|
|
Cors::class, // Add CORS first to handle preflight requests
|
|
]);
|
|
|
|
$middleware->api(append: [
|
|
\Laravel\Sanctum\Http\Middleware\EnsureFrontendRequestsAreStateful::class,
|
|
]);
|
|
|
|
// Configure authentication so Sanctum can properly protect API routes
|
|
$middleware->alias([
|
|
'auth:sanctum' => \Laravel\Sanctum\Http\Middleware\Authenticate::class,
|
|
]);
|
|
})
|
|
->withExceptions(function (Exceptions $exceptions) {
|
|
$exceptions->renderable(function (\Illuminate\Auth\AuthenticationException $e, Request $request) {
|
|
if ($request->expectsJson()) {
|
|
return response()->json([
|
|
'success' => false,
|
|
'message' => 'Unauthenticated.'
|
|
], 401);
|
|
}
|
|
});
|
|
})->create();
|