This module adds support for keeping session IDs (as normally stored in session cookies) to all URLs.
This is especially useful if your application runs in Iframe as some browser block cookies in those.
PHP already provides the session.use_trans_sid configuration value for this, but as Laravel 5 is implementing sessions in its on way, our module is necessary.
| Laravel Version | Package Version |
|---|---|
| 5.x - 6.x | 2.0 |
| 7+ | 3.0 |
- Install
imi/laravel-transsidvia composer. - In your
config/app.phpatprovidersreplace'Illuminate\Session\SessionServiceProvider'with\iMi\LaravelTransSid\SessionServiceProvider::class - Add
\iMi\LaravelTransSid\UrlServiceProvider::classat the end of the providers array - (optional) In your
app/Http/Kernel.phpadd'urlsession' => \iMi\LaravelTransSid\UrlSession::classto the$routeMiddlewarearray.
To use SessionIDs in URLs add the middleware urlsession (if you registered the middleware globally) or add the
\iMi\LaravelTransSid\UrlSession::class class directly to your route or routegroup.
URLs generated with Laravel's URL function (for example URL::to()) will now have a session ID appended.
If direct path's are or the previous() method is used, the SID is always added, because no route is known.
If you would like to generate URLs without a session ID, add a NO_ADD_SID parameter:
{{ URL::to('/', ['NO_ADD_SID' => true]) }}
To include session ids when using Livewire, add this script to your page:
<script type="text/javascript">
document.addEventListener('livewire:load', function(event) {
Livewire.addHeaders({
'X-session': '{{ Session::getId() }}',
})
});
</script>
Session IDs in URLs are easier to steal than a session cookie.
iMi digital GmbH offers Laravel related open source modules. If you are confronted with any bugs, you may want to open an issue here.
In need of support or an implementation of a modul in an existing system, free to contact us. In this case, we will provide full service support for a fee.
Of course we provide development of closed-source modules as well.