Menu
In my application, i generate purchase orders. To avoid send the pdf by mail, I'm sending a signed route link.
How secure is this link? Is there a possibility, that someone can hack it?
970
asked Nov 01 '25 05:11
Laravel signed route, is reliant on a signature hash done with the hmac sha256 approach.
UrlGenerator.php in Laravel has this code that generates it.
return $this->route($name, $parameters + [
'signature' => hash_hmac('sha256', $this->route($name, $parameters, $absolute), $key),
], $absolute);
This is as far as i know considered secure, related crypto stack site post. As long as your application key remains uncompromised, which it should.
78
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
