Removed auth

Doesn't really need user account, no sensitive data held in DB, plus routes that do stuff are rate limited anyway. Shouldn't be accessible to untrusted users (i.e. should be behind a RP that handles user auth)
2025-12-24 06:28:27 +01:00 · 2020-04-08 19:45:20 +01:00
parent bff43c205c
commit 4f79645191
6 changed files with 28 additions and 243 deletions
--- a/routes/api.php
+++ b/routes/api.php
@@ -15,41 +15,8 @@ use Illuminate\Support\Facades\Route;
 |
 */

-Route::group(
-    [
-        'middleware' => 'api',
-        'prefix' => 'auth'
-    ],
-    function ($router) {
-        Route::post('register', 'AuthController@register')->name('auth.register');
-
-        Route::get('verify-email', 'AuthController@verifyEmail')->middleware('throttle:5,1')->name('auth.verify_email');
-
-        Route::post('login', 'AuthController@login')->middleware('throttle:10,1')->name('auth.login');
-
-        Route::get('logout', 'AuthController@logout')->name('auth.logout');
-
-        Route::get('refresh', 'AuthController@refresh')->middleware(['throttle:5,1' ])->name('auth.refresh');
-
-        Route::get('me', 'AuthController@me')->middleware(['session_active' ])->name('auth.me');
-
-        Route::put('details', 'UserController@update')->name('auth.user.update_details');
-
-        Route::group(
-            [
-                'middleware' => ['api', 'session_active' ],
-                'prefix' => 'sessions'
-            ],
-            function($router) {
-                Route::get('/', 'AuthController@getSessions')->name('auth.sessions.all');
-                Route::delete('/{id}', 'AuthController@deleteSession')->name('auth.sessions.delete');
-            }
-        );
-    }
-);
-
 Route::group([
-    'middleware' => [ 'api', 'session_active' ],
+    'middleware' => [ 'api' ],
    'prefix' => 'speedtest'
 ], function($router) {
    Route::get('/', 'SpeedtestController@index')