Mastering Laravel 12 Middleware: With Real-World Examples

June 20, 2025

Mastering Laravel 12 Middleware
Middleware in Laravel 12 is a powerful mechanism for filtering HTTP requests entering your application. It allows you to inspect, modify, or reject requests before they reach your application logic or after a response is generated. This guide will walk you through the key features of Laravel 12 middleware, how to create and configure them, and provide practical examples, step by step.

  • Authentication: Ensuring users are logged in.
  • Authorization: Checking user permissions or roles.
  • Logging: Recording request details.
  • Rate Limiting: Restricting the number of requests.
  • Request Modification: Adding or validating headers, parameters, etc.
In Laravel 12, middleware configuration has been streamlined, moving from the  
app/Http/Kernel.php file (used in Laravel 10 and earlier) to the bootstrap/app.php file, 
offering a more centralized and functional approach.
 
Step 1: Creating a Middleware
Laravel provides an Artisan command to generate a middleware class.
 
1. Run the Artisan Command: Open your terminal and run: 
Run the Artisan Command 
This creates a new middleware class named CheckRole in the app/Http/Middleware directory.
 
2. Examine the Generated Middleware: Open app/Http/Middleware/CheckRole.php
The default structure looks like this:
Examine the Generated Middleware 
The handle method is where you define the middleware logic. It receives the incoming $request
a $next closure to pass the request to the next middleware or controller, and optional parameters.
 
3. Add Custom Logic: Modify the CheckRole middleware to check if the authenticated user has a 
specific role (e.g., ‘admin’). If not, redirect them.
Add Custom Logic
  • This middleware accepts a $role parameter to check if the user has the specified role.
  • If the user is not authenticated or lacks the role, they are redirected to /home with an error message. 

Step 2: Registering Middleware
In Laravel 12, middleware is registered in the bootstrap/app.php file, unlike earlier versions that 
used app/Http/Kernel.php.
 
1. Register as Global Middleware: Global middleware runs on every HTTP request. 
To register CheckRole globally, edit bootstrap/app.php:
Register as Global Middleware 
  • The append method adds the middleware to the end of the global middleware stack. 
     Use prepend to add it to the beginning. 
2. Register as Route Middleware with an Aliase: To apply middleware to specific routes or 
groups, assign an alias in bootstrap/app.php:
Register as Route Middleware 
3. Register as Group Middleware: Sometimes you may want to group several middleware 
under a single key to make them easier to assign to routes. You may accomplish 
this using the appendToGroup method within your application's bootstrap/app.php file:
Register as Group Middleware 
 
Step 3: Applying Middleware to Routes
Middleware can be applied to individual routes or route groups.
 
1. If you would like to assign middleware to specific routes, you may invoke the middleware method 
when defining the route: 
with parameter:
with parameter 
 
Applying Middleware to Routes 
2. Apply to a Route Group: Group multiple routes under the same middleware: 
Apply to a Route Group 
3. Middleware groups may be assigned to routes and controller actions using the 
same syntax as individual middleware:
Middleware groups 
 
Step 4: Excluding Middleware
When applying middleware to a route group, you may sometimes need to exclude 
a particular route from that middleware stack. Laravel provides the withoutMiddleware 
method to achieve this.
Excluding Middleware 
 
Step 4: Controlling Middleware Execution Order
Laravel 12 allows you to specify the execution order of middleware using the priority 
method in bootstrap/app.php.
1. Set Middleware Priority:  
Set Middleware Priority 
  • Middleware listed in the priority array executes in the specified order, regardless of how they are assigned to routes.
Step 5: Real-World Examples
Here are additional middleware examples for common use cases:
1.Logging Middleware: 
Purpose: Logging middleware captures details about incoming HTTP requests (e.g., URL, method, 
IP address) and logs them for debugging, monitoring, or auditing purposes.
Logging Middleware 
Register in bootstrap/app.php:
Register in bootstrap/app.php 
2. Rate Limiting Middleware: Use Laravel’s built-in throttle middleware to limit API requests:
Rate Limiting Middleware 
3. Custom Header Middleware: Add a custom header to responses: 
Custom Header Middleware 
Register and apply as needed.
 
Best Practices
  • Single Responsibility: Each middleware should handle one specific task (e.g., authentication, logging).
  • Avoid Overuse: Use middleware for cross-cutting concerns, not business logic better suited for controllers or services.
  • Test Thoroughly: Write tests to cover middleware behavior under different conditions.
  • Use Aliases: Assign short, readable aliases for middleware to keep route definitions clean.
  • Document Parameters: If your middleware accepts parameters, document their purpose clearly.
Conclusion
Middleware in Laravel 12 provides a robust and flexible way to manage HTTP requests and responses. 
By following this guide, you can create, register, and apply custom middleware, leverage built-in middleware, and control execution order to build secure and maintainable applications. The examples provided (e.g., CheckRole, LogAfterResponse, AddCustomHeader) demonstrate practical use cases, and testing ensures reliability.
 
If you found this helpful, feel free to share or drop a comment. Happy coding with Laravel! 🧱✨ 
 
TechSolve Central

Posted by TechSolve Central