How to implement WebSocket authentication in Laravel for React

Arif Billah Babu

React with Laravel

Implementing WebSocket authentication in Laravel for React involves a combination of setting up a WebSocket server, handling authentication on the server side, and ensuring that your React application can authenticate and connect to the WebSocket server. Below are the steps you can follow:

Laravel WebSocket Setup:

Install Laravel Echo Server: Laravel Echo Server is a WebSocket server for Laravel. Install it globally using npm:
```
bash
npm install -g laravel-echo-server
```
Configure Laravel Echo Server: Run the following command to generate a laravel-echo-server.json file:
```
bash
laravel-echo-server init
```
Follow the prompts and configure the file based on your needs.

Install Laravel Echo and Pusher: Install Laravel Echo and Pusher in your Laravel project:

bash
composer require pusher/pusher-php-server
npm install --save laravel-echo pusher-js

Configure Broadcasting in Laravel: Update your Laravel application's config/broadcasting.php file to use the Pusher driver:

php
'default' => env('BROADCAST_DRIVER', 'pusher'),

Add the Pusher credentials in your .env file:

env
BROADCAST_DRIVER=pusher
PUSHER_APP_ID=your-app-id
PUSHER_APP_KEY=your-app-key
PUSHER_APP_SECRET=your-app-secret
PUSHER_APP_CLUSTER=your-app-cluster

WebSocket Authentication:

Authenticate Users: In your Laravel application, you can use Laravel Passport, Sanctum, or any other authentication method to authenticate users.
Authorize WebSocket Connections: Edit your App\Providers\BroadcastServiceProvider to authorize WebSocket connections. Add the following method to the BroadcastServiceProvider class:
```
php
public function authorize($request)
{
    return true; // Implement your authorization logic here
}
```

React Setup:

Install Laravel Echo and Pusher in React: Install the necessary packages in your React project:
```
bash
npm install --save laravel-echo pusher-js
```

Configure Echo in React: Set up Laravel Echo in your React application, usually in your main App.js or where you initialize your app:

javascript
import Echo from 'laravel-echo';

window.Echo = new Echo({
    broadcaster: 'pusher',
    key: process.env.REACT_APP_PUSHER_APP_KEY,
    cluster: process.env.REACT_APP_PUSHER_APP_CLUSTER,
    encrypted: true,
});

Handling Authentication:

Authenticate in React: Implement authentication in your React app. You can use Laravel Sanctum or Passport tokens to authenticate users.
Authenticate WebSocket Connection: Once the user is authenticated in your React app, connect to the WebSocket server with the user's credentials:
```
javascript
Echo.connector.socket.auth.headers = {
    Authorization: `Bearer ${yourAuthToken}`,
};
```
Replace yourAuthToken with the actual authentication token obtained from your Laravel backend.

Now, your Laravel backend should authenticate WebSocket connections, and your React app should connect to the WebSocket server with authenticated users. Make sure to handle disconnects and reconnects gracefully in your React app.