Can I use this bundle in Laravel 9/10 without Symfony’s full stack?

Yes, but you’ll need to wrap it in a Laravel service provider and abstract Symfony dependencies (e.g., Doctrine ORM) using Eloquent or custom repositories. The bundle relies on Symfony’s security and HTTP components, so isolate them via Composer’s `replace` directives to avoid conflicts with Laravel’s native packages.

How do I store OAuth tokens in Laravel’s database instead of Doctrine?

Replace the Doctrine entities (`OAuthToken`, `OAuthClient`) with Eloquent models that mirror their structure. Configure the bundle’s `token_storage` to point to your custom repository, which extends Symfony’s `TokenStorage` interface. This requires mapping Symfony’s event listeners to Laravel’s event system for token lifecycle management.

Does this bundle support Laravel’s Passport for hybrid authentication?

Not natively, but you can use this bundle for complex OAuth flows (e.g., PKCE, custom grants) while delegating JWT handling to Passport. Route `/oauth/v2/token` to this bundle and `/oauth/token` to Passport, or merge their guards via Laravel’s `AuthManager` for unified authentication.

What Laravel versions and Symfony dependencies does this bundle require?

The bundle targets Symfony 5.4/6.x, which must be bridged to Laravel 9/10 using `symfony/bridge` packages. Ensure your `composer.json` replaces conflicting Symfony dependencies (e.g., `security-core`, `dependency-injection`) with versions compatible with your Laravel installation.

How do I handle manager_authentication (Akeneo’s fork feature) in Laravel?

Extend Laravel’s `AuthManager` to support the bundle’s `manager_authentication` by creating a custom guard that implements Symfony’s `ManagerAuthenticatedInterface`. Bind this guard to the bundle’s `security.authentication.manager` in your service provider’s configuration.

Are there performance concerns with Symfony’s event system in Laravel?

Yes, Symfony’s event dispatcher may introduce latency. Mitigate this by isolating event listeners to critical paths (e.g., token issuance) and benchmarking against native Laravel solutions like `spatie/laravel-oauth-server`. Use Redis for token storage to reduce database load.

Can I use this bundle for B2C user authentication (e.g., social logins)?

While possible, it’s overkill for simple B2C flows. For social logins, consider `spatie/laravel-socialite` or Laravel Passport. This bundle excels in B2B scenarios with custom grants, client credentials, or high-security token validation.

How do I log OAuth events (e.g., token revocation) in Laravel’s logging system?

Override Symfony’s event listeners to dispatch Laravel events (e.g., `oauth.token.revoked`). Use Laravel’s `Log` facade or a monitoring tool like Sentry to capture these events. Example: Convert `TokenEvent` to a Laravel event and log it via `event(new OAuthTokenRevoked($token));`.

What alternatives exist for Laravel OAuth2 servers with tighter integration?

For native Laravel solutions, evaluate `spatie/laravel-oauth-server` (simpler, Eloquent-based) or `lcobucci/jwt` for custom JWT flows. If you need PKCE or custom grants, consider `darkaonline/l5-swagger` (for API docs) paired with this bundle for enterprise auth.

How do I test this bundle in a Laravel CI pipeline (e.g., GitHub Actions)?

Mock Symfony’s `HttpFoundation` and `Security` components using Laravel’s `Http` and `Auth` facades. Test token storage with Eloquent factories, and validate middleware routes (e.g., `/oauth/v2/token`) using `Http::fake()`. Isolate Symfony dependencies in a separate test container to avoid conflicts.

Weave Code

Code Weaver

Helps Laravel developers discover, compare, and choose open-source packages. See popularity, security, maintainers, and scores at a glance to make better decisions.

Oauth Server Bundle Laravel Package

akeneo/oauth-server-bundle

View on GitHub

Deep Wiki

Context7

Fork of Symfony2 OAuth Server Bundle

Frequently asked questions about Oauth Server Bundle

Can I use this bundle in Laravel 9/10 without Symfony’s full stack?: Yes, but you’ll need to wrap it in a Laravel service provider and abstract Symfony dependencies (e.g., Doctrine ORM) using Eloquent or custom repositories. The bundle relies on Symfony’s security and HTTP components, so isolate them via Composer’s `replace` directives to avoid conflicts with Laravel’s native packages.
How do I store OAuth tokens in Laravel’s database instead of Doctrine?: Replace the Doctrine entities (`OAuthToken`, `OAuthClient`) with Eloquent models that mirror their structure. Configure the bundle’s `token_storage` to point to your custom repository, which extends Symfony’s `TokenStorage` interface. This requires mapping Symfony’s event listeners to Laravel’s event system for token lifecycle management.
Does this bundle support Laravel’s Passport for hybrid authentication?: Not natively, but you can use this bundle for complex OAuth flows (e.g., PKCE, custom grants) while delegating JWT handling to Passport. Route `/oauth/v2/token` to this bundle and `/oauth/token` to Passport, or merge their guards via Laravel’s `AuthManager` for unified authentication.
What Laravel versions and Symfony dependencies does this bundle require?: The bundle targets Symfony 5.4/6.x, which must be bridged to Laravel 9/10 using `symfony/bridge` packages. Ensure your `composer.json` replaces conflicting Symfony dependencies (e.g., `security-core`, `dependency-injection`) with versions compatible with your Laravel installation.
How do I handle manager_authentication (Akeneo’s fork feature) in Laravel?: Extend Laravel’s `AuthManager` to support the bundle’s `manager_authentication` by creating a custom guard that implements Symfony’s `ManagerAuthenticatedInterface`. Bind this guard to the bundle’s `security.authentication.manager` in your service provider’s configuration.
Are there performance concerns with Symfony’s event system in Laravel?: Yes, Symfony’s event dispatcher may introduce latency. Mitigate this by isolating event listeners to critical paths (e.g., token issuance) and benchmarking against native Laravel solutions like `spatie/laravel-oauth-server`. Use Redis for token storage to reduce database load.
Can I use this bundle for B2C user authentication (e.g., social logins)?: While possible, it’s overkill for simple B2C flows. For social logins, consider `spatie/laravel-socialite` or Laravel Passport. This bundle excels in B2B scenarios with custom grants, client credentials, or high-security token validation.
How do I log OAuth events (e.g., token revocation) in Laravel’s logging system?: Override Symfony’s event listeners to dispatch Laravel events (e.g., `oauth.token.revoked`). Use Laravel’s `Log` facade or a monitoring tool like Sentry to capture these events. Example: Convert `TokenEvent` to a Laravel event and log it via `event(new OAuthTokenRevoked($token));`.
What alternatives exist for Laravel OAuth2 servers with tighter integration?: For native Laravel solutions, evaluate `spatie/laravel-oauth-server` (simpler, Eloquent-based) or `lcobucci/jwt` for custom JWT flows. If you need PKCE or custom grants, consider `darkaonline/l5-swagger` (for API docs) paired with this bundle for enterprise auth.
How do I test this bundle in a Laravel CI pipeline (e.g., GitHub Actions)?: Mock Symfony’s `HttpFoundation` and `Security` components using Laravel’s `Http` and `Auth` facades. Test token storage with Eloquent factories, and validate middleware routes (e.g., `/oauth/v2/token`) using `Http::fake()`. Isolate Symfony dependencies in a separate test container to avoid conflicts.

Popularity trends

Recorded values over time (once-a-day snapshots). Apr 14, 2026 – May 13, 2026

GitHub · stars, forks, watchers

Stars Forks Watchers

Packagist · monthly downloads

Ecosystem · dependents

View on GitHub

Stars

Favorites

Forks

Score

0.8

Score breakdown

Sum of components, capped 0–100. Halved if archived.

Stars

input: 5

+0.0
Forks

input: 1

+0.0
Open issues + PRs

input: 1

+0.1
Releases

input: 2

+0.6
Recency

input: 1255

+0.0
Issue opportunity

input: 0

+0.0
Laravel News mentions

input: 0

+0.0
Dependents

input: 0

+0.0

Total 0.8

Opportunity

40.8

Opportunity score breakdown

Hidden gem signal × 0.65 + contribution need × 0.35, scaled by health factor.

Hidden gem

log(monthly_downloads / (stars + 1)) × 25

73.8
Contribution need

open_issues + open_prs: 1

0.0
Health factor

archived + recency + open issues

×0.85

Total 40.8

License

—

Last release

Dec 5, 2022

Watchers

Downloads

5K/mo

Dependents

Open issues

Weaver

How can I help you explore Laravel packages today?

Conversation history is not saved when not logged in.

Add packages to context

No packages found.

comsave/common

alecsammon/php-raml-parser

chrome-php/wrench

lendable/composer-license-checker

typhoon/reflection

mesilov/moneyphp-percentage

mike42/gfx-php

bookdown/themes

aura/view

aura/html

aura/cli

povils/phpmnd

nayjest/manipulator

omnipay/tests

psr-mock/http-message-implementation

psr-mock/http-factory-implementation

psr-mock/http-client-implementation

voku/email-check

voku/urlify

rtheunissen/guzzle-log-middleware