add Basic Auth without API Gateway support

Author: umihico

app/Http/Kernel.php

@@ -54,6 +54,7 @@ class Kernel extends HttpKernel
     protected $routeMiddleware = [
         'auth' => \App\Http\Middleware\Authenticate::class,
         'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
+        'basic' => \App\Http\Middleware\BasicAuthMiddleware::class,
         'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
         'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class,
         'can' => \Illuminate\Auth\Middleware\Authorize::class,

app/Http/Middleware/BasicAuthMiddleware.php

@@ -0,0 +1,30 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+
+class BasicAuthMiddleware
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request $request
+     * @param  \Closure $next
+     * @return mixed
+     */
+    public function handle($request, Closure $next, ...$args)
+    {
+        $correct_user = $args[0];
+        $correct_password = $args[1];
+        switch (true) {
+            case !isset($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']):
+            case $_SERVER['PHP_AUTH_USER'] !== $correct_user:
+            case $_SERVER['PHP_AUTH_PW'] !== $correct_password:
+                header('WWW-Authenticate: Basic realm="Access denied"');
+                header('Content-Type: text/plain; charset=utf-8');
+                die('Not authorized');
+        }
+        return $next($request);
+    }
+}

routes/web.php

@@ -16,3 +16,9 @@
 Route::get('/', function () {
     return view('welcome');
 });
+
+Route::group(['middleware' => ['basic:hoge,fuga']], function () {
+    Route::get('/basic', function () {
+        return "Authorized";
+    });
+});