Customize Passport Queries time of authenticating

Question

For every request I found that 4 queries are fired to validate the user and the token. Among them one is to fetch the user (select * from user) based on the user id. This queries are fired by Passport/Laravel But what I want is to modify this query to add one status field check also to check if any user become invalid during the token validity period. If we only check with the id then if any user become inactive(By changing status then also we will not be able to stop the user as deleting the token for the user is not a good solution for me).

Queries Fired on every request by Passport Laravel:

select * from oauth_access_tokens where id = ? 
select * from user where id = ? limit 1 ["2"] 
select * from oauth_access_tokens where id = ? 
select * from oauth_clients where id = ?

So, can anyone tell me how to change the 'select * from user where id' query in passport at time of Token validation.

Answer 1

You can add this method on your User model (or any model you're authenticating with passport)

    ...
    public function findForPassport($username)
    {
        return $user = (new self)->where('email', $username)->where('is_active', 1)->first();
    }
    ...

of course you can modify is_active by whichever column you are using (and/or any query constraint for that matter), as long as it returns Illuminate\Contracts\Auth\Authenticatable contract.

Answer 2

I wouldn't try and modify passports default behaviour as I have no idea what else it might impact both now and in future upgrades.

Your best bet might be to hook into the passport events and apply you business logic to a listener that is called when the events are fired