dwivedianuj9118/laravel-api-starter

A complete API Starter Kit for Laravel 11+ designed to accelerate backend development. This package provides a clean and scalable API architecture with authentication, request validation, standardized API responses, error handling, and best practices. Perfect for SaaS platforms, mobile apps, admin p

Maintainers

Details

github.com/dwivedianuj9118/laravel-api-starter

Homepage

Source

Issues

Installs: 11

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 0

Forks: 0

Open Issues: 0

pkg:composer/dwivedianuj9118/laravel-api-starter

1.0.2 2026-01-29 12:14 UTC

Requires

Requires (Dev)

Suggests

MIT 62a7744b47c014e2ddb1e30a0493b64b1cdb9d63

boilerplatelaraveljwtswaggerlaravel authenticationlaravel apilaravel-apilaravel rest apilaravel backendlaravel boilerplateapi-startersanctumlaravel 11laravel api startersaas backendapi starter kit

This package is auto-updated.

Last update: 2026-01-29 12:15:36 UTC

README

Laravel API Starter ๐Ÿš€

A production-ready API starter package for Laravel 11+ designed to help you bootstrap APIs instantly without reinventing the wheel. This package is opinionated but highly configurable, tailored for real-world backend applications.

โœจ Features

  • โœ… Dual Auth Support: JWT Authentication (for mobile/external) & Sanctum SPA Authentication.
  • โœ… Toggleable Auth: Enable or disable JWT/Sanctum via config.
  • โœ… Standardized Responses: Uniform JSON structure for success and error states.
  • โœ… API Versioning: Pre-configured versioning (defaults to /api/v1).
  • โœ… Auto-Documentation: Swagger/OpenAPI integration out of the box.
  • โœ… Robust Error Handling: Global API exception handling (No more HTML errors in your API!).
  • โœ… Health Monitoring: Dedicated /health endpoint for uptime checks.
  • โœ… Performance: Built-in rate limiting and JSON-only enforcement.
  • โœ… Laravel 11 Ready: Fully compatible with the latest Laravel structures.

๐Ÿ“ฆ Requirements

  • PHP: 8.2+
  • Laravel: 11+

๐Ÿ“ฅ Installation

Install the package via Composer:

composer require dwivedianuj9118/laravel-api-starter

Configuration

Publish the configuration file to customize the behavior:

php artisan api-starter:install

Environment Variables (.env)

Add or modify these variables to control your API behavior:

API_VERSION=v1
API_RATE_LIMIT=60

API_ENABLE_JWT=true
API_ENABLE_SANCTUM=true

API_AUTH_MODEL=App\Models\User

JWT Guard

You must define a JWT guard in config/auth.php.

'guards' => [

    'web' => [
        'driver' => 'session',
        'provider' => 'users',
    ],

    'jwt' => [
        'driver' => 'jwt',
        'provider' => 'users',
    ],

],

Ensure provider exists

'providers' => [
    'users' => [
        'driver' => 'eloquent',
        'model' => App\Models\User::class,
    ],
],

๐Ÿงฏ Global API Exception Handling

The package automatically ensures JSON-only API exception responses.

If you want to customize exception rendering further, you may optionally integrate ApiExceptionHandler into your global exception flow.

๐Ÿ“„ bootstrap/app.php (Laravel 11+)

use Dwivedianuj9118\ApiStarter\Exceptions\ApiExceptionHandler;

->withExceptions(function (Exceptions $exceptions): void {
    $exceptions->render(function (Throwable $e, $request) {
        if ($request->is('api/*')) {
            return ApiExceptionHandler::handle($e);
        }
    });
});

This ensures: No HTML error pages Consistent API error responses Validation & auth errors normalized

๐Ÿ“„ App\Providers\AppServiceProvider.php

use Illuminate\Cache\RateLimiting\Limit;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Http\Request;

public function boot(): void
{
    RateLimiter::for('api', function (Request $request) {
        return Limit::perMinute(
            config('api-starter.rate_limit.per_minute')
        )->by($request->ip());
    });
}

๐Ÿ” Preparing the Authentication Model (JWT & Sanctum)

This package supports JWT authentication and Sanctum SPA authentication.
Your authentication model (usually User) must be configured correctly.

JWT & Sanctum Model Setup (Required)

To enable JWT and Sanctum authentication, update your auth model (usually User) as follows:

  1. Implement JWTSubject
  2. Use HasApiTokens trait
  3. Add the two JWT methods
use Laravel\Sanctum\HasApiTokens;
use Tymon\JWTAuth\Contracts\JWTSubject;

class User extends Authenticatable implements JWTSubject
{
    use HasApiTokens;

    public function getJWTIdentifier()
    {
        return $this->getKey();
    }

    public function getJWTCustomClaims(): array
    {
        return [];
    }
}

If you are using JWT authentication, you must also define a JWTSubject interface in your model. And if you are using Sanctum authentication, you must also define a HasApiTokens trait in your model.

If you are using JWT and want to use middleware, you can use the auth:jwt middleware. And if you are using Sanctum, you can use the auth:sanctum middleware.

Default:

๐Ÿ” Authentication

1. JWT Authentication

Ideal for mobile apps and external clients.

  • Register: POST /api/v1/auth/register
  • Login: POST /api/v1/auth/login
  • Refresh: POST /api/v1/auth/refresh
  • Logout: POST /api/v1/auth/logout

*To disable, set API_ENABLE_JWT=false*

2. Sanctum SPA Authentication

Optimized for first-party web applications.

  • Login: POST /api/v1/spa/login
  • Logout: POST /api/v1/spa/logout

*To disable, set API_ENABLE_SANCTUM=false*

Custom Auth Model

You can define which model is used for authentication (e.g., for an Admin panel):

API_AUTH_MODEL=App\Models\Admin

Note: Your model must extend Illuminate\Foundation\Auth\User and use the HasApiTokens trait.

๐Ÿ“Š API Response Format

All responses are returned as structured JSON.

Success Response

{
  "success": true,
  "message": "Success",
  "data": {},
  "errors": null
}

Error Response

{
  "success": false,
  "message": "Validation failed",
  "data": null,
  "errors": {
    "email": ["The email field is required."]
  }
}

Swagger Setup (Optional)

Install Swagger:

composer require darkaonline/l5-swagger
php artisan vendor:publish --provider="L5Swagger\L5SwaggerServiceProvider"

Edit the generated file:

๐Ÿ“„ config/l5-swagger.php

Update the annotations paths:

'annotations' => [
    base_path('app'),
    base_path('vendor/dwivedianuj9118/laravel-api-starter/src'),
],

๐Ÿ” REQUIRED: Sanctum Security Scheme (Swagger)

Make sure this exists in config/l5-swagger.php

'securityDefinitions' => [
    'securitySchemes' => [

        // JWT Authentication
        'bearerAuth' => [
            'type' => 'http',
            'scheme' => 'bearer',
            'bearerFormat' => 'JWT',
            'description' => 'JWT Authorization header using the Bearer scheme. Example: Bearer {token}',
        ],

        // Sanctum Authentication
        'sanctum' => [
            'type' => 'http',
            'scheme' => 'bearer',
            'description' => 'Sanctum token using Bearer scheme. Example: Bearer {token}',
            'in' => 'header',
        ],
    ],
],

Generate documentation:

php artisan l5-swagger:generate

Access Swagger UI at:

/api/documentation

๐Ÿ›  Features in Detail

Health Check

Monitor your application status easily.

  • Endpoint: GET /api/v1/health

Rate Limiting

Prevent abuse with built-in throttling (per IP).

  • Default: 60 requests/min.
  • Customization: Update API_RATE_LIMIT in your .env.

๐Ÿงช Testing

Run the package test suite:

vendor/bin/phpunit

๐Ÿš€ Roadmap

  • OAuth / Social Login support
  • Multi-guard API configurations
  • API Key-based authentication
  • Webhook signature verification support

๐Ÿ“„ License

The MIT License (MIT). Please see License File for more information.

ยฉ 2026 Dwivedianuj9118