app['auth']->viaRequest('api', function (Request $request) { $token = null; if(isset($_SESSION["token"])) { $token = $_SESSION["token"]; } if(isset($_GET["access_token"])) { $token = $_GET["access_token"]; } if(isset($_GET["token"])) { $token = $_GET["token"]; } if($request->header("Authorization", false)) { $token = trim($request->header("Authorization")); $t = explode(" ", $token); $token = last($t); } if($token == null) { return null; } $accessToken = AccessToken::query()->where("token", "=", $token)->first(); if(time() > strtotime($accessToken->expires_at)) { return null; } if($accessToken->status =! "active") { return null; } return $accessToken->getUser(); }); } }