ggoran
Reputation: 620
disable access to Laravel API from browser
How can I restrict direct access on GET route?
example localhost/api/helloworld
if I send a request with postman I want to get a response, but if I try open URL in a browser I need redirect to the homepage or give some 403 error?
should I use some header to restrict it or there is another way to do it in Laravel?
Upvotes: 1
Views: 3708
Answers (2)
Jaskaran Singh
Reputation: 914
use the following code to detect the requesting client from headers.
public function isBrowserRequest()
{
$browsers = ['Opera', 'Mozilla', 'Firefox', 'Chrome', 'Edge'];
$userAgent = request()->header('User-Agent');
$isBrowser = false;
foreach($browsers as $browser){
if(strpos($userAgent, $browser) !== false){
$isBrowser = true;
break;
}
}
return ['result' => $isBrowser];
}
Upvotes: 0
Vijay
Reputation: 96
The standard way to do this is use token. Laravel provides you API authentication, follow this link API Authentication (Passport)
Upvotes: 1
Related Questions
- how to make laravel 9 api-only?
- Make Laravel API only accessible from frontend (no direct access)
- Restrict Laravel API access to given frontend(s) only
- How can I restrict API info to user? Laravel 5.7
- A way to make Laravel API private or restricted
- make laravel api only accesible by logged users in laravel 7
- Laravel: Prevent user access to specific resource
- How to prevent Laravel Routes from being accessed directly (i.e. non-ajax requests)
- What is the easiest way to protect api routing in laravel5.4
- Laravel API - protecting route access