Signed routes in Laravel

Kernel.php

<?php

namespace App\Http;

use Illuminate\Foundation\Http\Kernel as HttpKernel;

class Kernel extends HttpKernel
{
    // ...
  
    protected $routeMiddleware = [
        // ...
        'signed' => \App\Http\Middleware\ValidateSignature::class,
    ];
}

UrlGenerator.php

<?php

use Illuminate\Routing\UrlGenerator;
use Illuminate\Support\Facades\Config;

UrlGenerator::macro('signedRoute', function ($route, $parameters) {
    return $this->route($route, $parameters + [
        's' => hash_hmac('sha256', $this->route($route, $parameters), Config::get('app.key')),
    ]);
});

ValidateSignature.php

<?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Support\Arr;
use Illuminate\Support\Facades\App;
use Illuminate\Support\Facades\Config;

class ValidateSignature
{
    public function handle($request, Closure $next, $guard = null)
    {
        $originalUrl = $request->url().'?'.http_build_query(Arr::except($request->query(), 's'));
        $signature = hash_hmac('sha256', $originalUrl, Config::get('app.key'));

        if ($signature !== $request->get('s')) {
            App::abort(401, 'Invalid signature');
        }

        return $next($request);
    }
}