New Plugin: Passport-ui #1148
Open
New Plugin: Passport-ui #1148
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This plugin provides a structured and practical administrative interface for Laravel Passport within Filament v4.
Laravel Passport is a widely used OAuth2 server implementation, but it intentionally leaves administrative concerns
(client management, scope visibility, token inspection) to the application. In real-world projects, this often results
in ad-hoc tooling, CLI-only workflows, or missing visibility into OAuth configuration.
Filament Passport UI addresses this gap by offering a first-class, Filament-native admin layer for Passport, without
modifying Passport internals or redefining OAuth behavior.
Key reasons for inclusion
Solves a real, recurring problem
Many Filament-based applications rely on Passport but lack a maintainable way to manage OAuth clients, tokens, and
scopes through the admin UI.
Native Filament integration
Built entirely using Filament v4 resources, pages, tables, and actions.
No custom panels, hacks, or deviations from Filament conventions.
Opinionated but non-invasive
Passport remains the underlying OAuth engine.
This plugin adds visibility and structure on top, without changing authentication flows or protocol semantics.
Clear domain modeling
OAuth concepts such as clients, grant types, scopes, and tokens are presented in a way that is understandable,
reviewable, and auditable.
Context-aware scope management
Scopes are modeled as resource + action identifiers, aligning naturally with Filament’s own resource/action
authorization model and with how real-world APIs typically use OAuth scopes.
Designed for real applications
Especially useful for B2B APIs, internal platforms, multi-service systems, and teams where OAuth configuration must
remain transparent and maintainable over time.
Auditability & Compliance
Administrative actions (e.g. creating, updating, revoking clients or tokens) are fully auditable, enabling traceability of security-relevant actions for compliance requirements (e.g. ISO/IEC 27001). Audit logs remain application-owned and can be integrated into existing ISMS processes.
Fit with the Filament ecosystem
Filament Passport UI follows Filament’s core philosophy:
It complements Filament rather than competing with existing authorization features.
In short:
This plugin brings a commonly needed but often reimplemented capability into the Filament ecosystem in a clean,
consistent, and maintainable way.
I believe it would be a valuable addition to the Filament Plugin Hub for teams using Laravel Passport in production
environments.