Skip to content

Instantly share code, notes, and snippets.

Last active May 2, 2024 14:24
Show Gist options
  • Save tanner0101/a9aee81a7b9feb879b355101ea7a0661 to your computer and use it in GitHub Desktop.
Save tanner0101/a9aee81a7b9feb879b355101ea7a0661 to your computer and use it in GitHub Desktop.
Example of authentication with Fluent in Vapor 4
import Fluent
import Vapor
func routes(_ app: Application) throws {"users") { req -> EventLoopFuture<User> in
try User.Create.validate(req)
let create = try req.content.decode(User.Create.self)
guard create.password == create.confirmPassword else {
throw Abort(.badRequest, reason: "Passwords did not match")
let user = try User(
passwordHash: Bcrypt.hash(create.password)
return req.db)
.map { user }
let passwordProtected = app.grouped(User.authenticator().middleware())"login") { req -> EventLoopFuture<Token> in
let user = try req.auth.require(User.self)
let token = try user.generateToken()
return req.db)
.map { token }
let tokenProtected = app.grouped(Token.authenticator().middleware())
tokenProtected.get("me") { req -> User in
try req.auth.require(User.self)
extension User {
struct Create: Content {
var name: String
var email: String
var password: String
var confirmPassword: String
extension User.Create: Validatable {
static func validations(_ validations: inout Validations) {
validations.add("name", as: String.self, is: .count(3...) && .alphanumeric)
validations.add("email", as: String.self, is: .email)
validations.add("password", as: String.self, is: .count(8...))
final class User: Model, Content, Authenticatable {
static let schema = "users"
@ID(key: "id")
var id: Int?
@Field(key: "name")
var name: String
@Field(key: "email")
var email: String
@Field(key: "password_hash")
var passwordHash: String
func generateToken() throws -> Token {
try .init(value: [UInt8].random(count: 16).base64, userID: self.requireID())
init() { }
init(id: Int? = nil, name: String, email: String, passwordHash: String) { = id = name = email
self.passwordHash = passwordHash
extension User: ModelUser {
static let usernameKey = \User.$email
static let passwordHashKey = \User.$passwordHash
func verify(password: String) throws -> Bool {
try Bcrypt.verify(password, created: self.passwordHash)
final class Token: Model, Content {
static let schema = "tokens"
@ID(key: "id")
var id: Int?
@Field(key: "value")
var value: String
@Parent(key: "user_id")
var user: User
init() { }
init(id: Int? = nil, value: String, userID: User.IDValue) { = id
self.value = value
self.$ = userID
extension Token: ModelUserToken {
static let valueKey = \Token.$value
static let userKey = \Token.$user
var isValid: Bool { true }
extension User {
struct Migration: Fluent.Migration {
func prepare(on database: Database) -> EventLoopFuture<Void> {
.field("id", .int, .identifier(auto: true))
.field("name", .string, .required)
.field("email", .string, .required)
.field("password_hash", .string, .required)
func revert(on database: Database) -> EventLoopFuture<Void> {
extension Token {
struct Migration: Fluent.Migration {
func prepare(on database: Database) -> EventLoopFuture<Void> {
.field("id", .int, .identifier(auto: true))
.field("value", .string, .required)
.field("user_id", .int, .required)
.unique(on: "value")
func revert(on database: Database) -> EventLoopFuture<Void> {
Copy link

Ok it's now ModelAuthentificable & ModelTokenAuthentificable

Copy link

jacrack commented May 22, 2021

some example of WebCredentialsAuth and Sessions please, thanks so much :)

Copy link

zjonejj commented Aug 15, 2021

Ok it's now ModelAuthentificable & ModelTokenAuthentificable

It's now: ModelTokenAuthenticatable
not : ModelTokenAuthentificable

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment