JWT Authentication in Laravel Without Database

get user from jwt token laravel
install jwt laravel
a token is required jwt laravel
how to pass jwt token in header laravel
laravel jwt
jwt laravel 6
authorization token not found laravel jwt
laravel api authentication token tutorial

I have a question regarding Authentication in Laravel 5.x. I’ve been specifically looking at tymondesigns/jwt-auth and irazasyed/jwt-auth-guard packages to do the JSON web token authentication and token handling in my Laravel application.

I am not using a local database whatsoever, nor do I want to. I have environment variables set up in .env for my API’s URL, USERNAME & PASSWORD. The Guzzle PHP HTTP client is doing the trick just fine connecting and returning data between the API and my application as needed.

However, I need to set up Authentication within my Laravel instance. This is where I run into problems, and the auth is wanting a DB connection…

$token = JWTAuth::attempt($credentials)

Here's the exception:

PDOException in Connector.php line 55: 
SQLSTATE[HY000] [14] unable to open database file
  1. How can I make use of JWT without using a database?
  2. How can I COMPLETELY shut-off database connections within Laravel?



Using tymon/jwt-auth, I've set things up within the routes, Kernel, Middleware, etc.

I created a "claim" successfully, but I need to create the token by encoding the "payload."

    $this->username = $request->username;

    $sub = $this->username;
    $iat = time();
    $jti = md5($sub . $iat);
    $aud = env('APP_URL');

    $this->claims = [
        'sub' => $sub,
        'iat' => $iat,
        'exp' => time() + (2 * 7 * 24 * 60 * 60),
        'nbf' => $iat,
        'iss' => 'khill',
        'jti' => $jti,
        'aud' => $aud,

    $payload = JWTFactory::make($this->claims);

How do I get the custom token?

You should define a custom Authentication Provider and set it in config/jwt.php.

Example of provider

Put this class anywhere you like.

namespace MyNamespace;

use Tymon\JWTAuth\Providers\Auth\AuthInterface;

class MyCustomAuthenticationProvider implements AuthInterface
    public function byCredentials(array $credentials = [])
        return $credentials['username'] == env('USERNAME') && $credentials['password'] == env('PASSWORD');

    public function byId($id)
        // maybe throw an expection?

    public function user()
        // you will have to implement this maybe.

Example of configuration

In the providers array in config/jwt.php, change this:

'auth' => 'Tymon\JWTAuth\Providers\Auth\IlluminateAuthAdapter',

to this:

'auth' => 'MyNamespace\MyCustomAuthenticationProvider',

Other considerations
  1. Using the env() function anywhere is not good practice. It's better to use it in your config files, and then use the config() function anywhere else.

  2. You may need to reimplement also the User Provider.

php - JWT Authentication in Laravel Without Database, You should define a custom Authentication Provider and set it in config/jwt.php. Example of provider. Put this class anywhere you like. namespace  JWT authentication provides a secure way to transmit data between the client and server using Laravel APIs. In this post, we will look at how we can create a JWT authentication for a Laravel based API. API’s provide a fluent interface to communicate with the different type of services.

JWTAuth::attempt() won't help you with this, because it hits the database for you behind the scenes. You need some other way to check the environment credentials.

Add a custom method to a class somewhere which will do that for you or pass the credentials against the API you are hitting with Guzzle.

Code example:

public function authenticate($username, $password)
    if(!$username === env('USERNAME') or !$password === env('PASSWORD')) {
       // return a message that the user could not be authenticated or false.

    // Generate the JWT token here and store it somewhere. 

API Login without Database and Get JWT after login, Need Help, How to get JWT Token after login without Database I try to use tymondesigns/jwt-auth but it give me "Call to a member  Laravel 5.8 Create REST API with jwt Authentication. In one of my previous articles, we have learn How to Create REST API With Passport Authentication In Laravel using Laravel passport for REST API authentication. In this article, we will learn to create fully functional restful API with JWT Authentication in Laravel.

As a quick fix I decided to implement the following custom code...

1) Created custom middleware to handle the logic.

class CustomMiddleware
    protected $loginPath = 'login';

    public function handle($request, Closure $next) {
        $logged_in = $request->session()->get('logged_in');

        if (!$logged_in) {
            return redirect()->guest('login')->with('flag','1');

    return $next($request);

2) Added a reference to the middleware class.

class Kernel extends HttpKernel
    protected $routeMiddleware = [
        'custom' => \App\Http\Middleware\CustomMiddleware::class,

3) Added it to routes.php.

Route::group(['middleware' => ['custom']], function () {
    // Add routes here

Simple User Authentication API with Laravel and JWT Authentication, This time, I want to share how to make User Authentication API with Laravel and If there's still no JWT_SECRET there, add JWT_SECRET= [generated secret key] In this case we will use mysql as database connection and as  Popular Article. User Roles and Permissions Tutorial in Laravel without Packages Vue Laravel CRUD Example With Vue Router & Sweet Alert Laravel 7 REST API with Passport Tutorial with Ecommerce Project Laravel 6 REST API with JWT Authentication with CRUD Laravel Auth : Multi Authentication System Using Guard

yes. you can create jwt token without database using tymondesigns/jwt-auth package...

for that you have to use jwt::encode method...

let me explain ...

first you have to put your credential in .env file... then i am recomending you to use custom claims ...

after that you can create jwt token using below code ...

$customClaims = ['foo' => 'bar', 'baz' => 'bob'];
$factory = JWTFactory::customClaims($customClaims);
$token = JWTAuth::encode($payload);

for further details you can refer below link


JWT authentication in a Laravel Application using Postman, JWT authentication has aided the wider adoption of stateless API services. When that is done, open the .env file and edit the database settings. data is open and can be accessed without the client being authenticated";  We will build a basic user products list with restful API in laravel using JWT authentication. A User will be able to. sign up and create a new account. log-in to their account. log out to discard the token and leave the application. get the details of the logged in user. retrieve a list of products available for the user.

How to Build an API-Only JWT-Powered Laravel App, The Laravel API Boilerplate (JWT Edition) was made on the shoulders of giants like: When set to true , a token is automatically released after signup. The user part is now complete without typing a single line of code. namespace App; use Illuminate\Database\Eloquent\Model; class Book extends  If you choose to remove these controllers, you will need to manage user authentication using the Laravel authentication classes directly. Don't worry, it's a cinch! We will access Laravel's authentication services via the Auth facade , so we'll need to make sure to import the Auth facade at the top of the class.

JWT Authentication in Laravel Without Database, I have a question regarding Authentication in Laravel 5.x. I've been specifically looking at tymondesigns/jwt-auth and irazasyed/jwt-auth-guard  jwt authentication integration in laravel. and make sure the database is working perfectly. So now if you try the localhost:80/api/me route again without the access token,

laravel 5.3 + Tymon\JWTAuth = How to create token with own , laravel 5.3 + Tymon\JWTAuth = How to create token with own i get the following error with jwt engine set to "database" in config/auth.php. I am using laravel as API consumer. Api is written in .Net and laravel simply implement GUI for users and use API to carry all tasks. Now I am stuck at authentication. Since there are no models how can I Authenticate users in a better way. Sure I am sending user data to API and getting response back but how can I start session and use functions

  • And despite the horrible examples for creating a custom token by tymondesigns/jwt-auth. What do you suggest @Ruffles? I can create a custom claim easy enough but how do I create the PayLoad, and the actual JWT Token so I can start authenticating Users and not let them access certain pages, etc. I just need something very simple and for some reason it escapes me.
  • You should still generate a token with the facade, but it's useless for the authenticating part.
  • Thank you. Then how do you create the token and what do you do with token once generated to employ it's use?
  • Check the docs or any tutorial that uses a database but instead of getting and saving data to the database, use your env variables or your API with Guzzle.