Retrieving a personal access token after it's been created

[qng5150]

My current workflow is:

1. After user registered, automatically create a Personal Access Token (PAT) to access the API
2. However once the token is created, how are we able to display the PAT again.
   // Creating a token with scopes... $token = $user->createToken('Pricing Token', ['get-pricing])->accessToken;

Essentially it would be good for the user, once they have logged in to my secured site to download the Token at any time to use on their own site. Essentially I'm using the PAT to identify the user so don't need the full OAUTH workflow.

Reading through the source code, I'm able to regenerate the Access token, but how are we able to retrieve the original Token generated in Step 2.

[peyobr]

+1

[Mont4]

+1

[FrittenKeeZ]

I created this trait to grab the latest valid token for a user, with the default personal access client.

<?php

namespace App\Models\Traits;

use Laravel\Passport\ClientRepository;
use Laravel\Passport\Token;
use Laravel\Passport\TokenRepository;

trait AccessToken
{
    /**
     * Get personal access token for user.
     *
     * @return \Laravel\Passport\Token|null
     */
    public function getToken(): ?Token
    {
        return app(TokenRepository::class)->findValidToken(
            $this,
            app(ClientRepository::class)->personalAccessClient()
        );
    }
}

[judasane]

Why not acces it from database?

[driesvints]

Hey there. There's a token and tokens method on the HasApiTokens trait. Is this what you need? Please note that these aren't filtered on revoked etc.

[mikebronner]

@driesvints it seems those two methods don't include personal access tokens?

[kevinb1989]

Is it possible for me to retrieve the ACCESS TOKEN string from a Laravel\Passport\Token object?

[julesgraus]

Is it possible for me to retrieve the ACCESS TOKEN string from a Laravel\Passport\Token object?

I would like to know this too! In passport it is pretty easy to create tokens and clients, but not so easy (not documented well enough) to get tokens after they are created.

#edit. I want to get back at my above statement. It seems that some (if not all) services (GitHub too) issue you a personal access token only once. Then you need to store it safely yourself. They usually wil let you delete previously generated tokens, but you cannot view them again. I think that this is just how it is meant to work.

[VishalParkash]

Why not acces it from database?

Do you have code for this task ?

[rddewan]

I am using Laravel 8 and Passport 10.1 . is there any to retrieve a Personal Access Token after it has been created ?

[marwan2]

This thread discussion doesn't reply to who ask to get created Personal Access Token yet ?
I'm having the same concern

[BourneSuper]

can not reuse a token in server side, the created token is only save by client. And server saved hash( token ), which is not reverseable.

HasApiTokens.php

    public function createToken(string $name, array $abilities = ['*'], DateTimeInterface $expiresAt = null)
    {
        $plainTextToken = sprintf(
            '%s%s%s',
            config('sanctum.token_prefix', ''),
            $tokenEntropy = Str::random(40),
            hash('crc32b', $tokenEntropy)
        );

        $token = $this->tokens()->create([
            'name' => $name,
            'token' => hash('sha256', $plainTextToken),
            'abilities' => $abilities,
            'expires_at' => $expiresAt,
        ]);

        return new NewAccessToken($token, $token->getKey().'|'.$plainTextToken);
    }