Authenticate users before websocket connection establishes

Question

Authenticate users before websocket connection establishes

HASSANDL opened this issue 4 years ago · 2 comments

How only allow authenticated users to establish a successful websocket connection?
in client side use laravel-echo

{
  "authHost": "http://localhost",
  "authEndpoint": "/broadcasting/auth",
  "clients": [
    {
      "appId": "620bafdba22974a2",
      "key": "e860c5fc92f4a20e7175754eb030e737"
    }
  ],
  "database": "redis",
  "databaseConfig": {
    "redis": {
      "host": "localhost",
      "port": 6379
    },
    "sqlite": {
      "databasePath": "/database/laravel-echo-server.sqlite"
    }
  },
  "devMode": true,
  "host": null,
  "port": 7000,
  "protocol": "http",
  "socketio": {
    "pingTimeout": 5000,
    "pingInterval": 2000000
  },
  "secureOptions": 67108864,
  "sslCertPath": "",
  "sslKeyPath": "",
  "sslCertChainPath": "",
  "sslPassphrase": "",
  "subscribers": {
    "http": false,
    "redis": true
  },
  "apiOriginAllow": {
    "allowCors": false,
    "allowOrigin": "",
    "allowMethods": "",
    "allowHeaders": ""
  }
}

Answer 1 · 2021-02-20T04:28:37.000Z

<meta name="user" content="{{Auth::user()}}">
`

    const user = document.querySelector('meta[name="user"]').getAttribute('content')

    if (user !== null) {

        this.echoInstance = new Echo({
          ...
        });

    }`

Answer 2 · 2021-04-20T20:23:42.000Z

https://laravel.com/docs/8.x/broadcasting#concept-overview