This is my first attempt at a laravel package and have run into an issue where Auth::attempt($credentials) works within my login controller, but upon redirection to a protected route or controller, the user is no longer authenticated. Below is my login controller method with the redirect to dashboard commented out.

public function attempt(Request $request){

    $email =  strtolower(strip_tags(htmlspecialchars($request->input('email'))));
    $password = strip_tags(htmlspecialchars($request->input('password')));

    if (Auth::attempt(array('email' => $email, 'password' => $password)))
    {
        // Redirect to dashboard route
        //return redirect()->intended('/admin');
        if(Auth::check())
            print_r(Auth::user());
    }
}

A response to valid credentials prints out the correct user record and Auth::check returns true. But, when redirected to the admin controller, the user is not authenticated. Below is the admin controller method that should output the authenticated user, but only returns "not logged".

public function index()
{
    if(Auth::check()) print_r(Auth::user());
    else echo "not logged";
}

Both controllers use Auth;, their namespaces are consistent with vendor/package/pathToDir, db is setup correctly, and the encryption key has been set. Any ideas on what's going wrong? Thanks

Turns out the issue was with the new web middleware, moved all my routes that require session data in to the route group and everything works as normal.

Route::group(['middleware' => ['web']], function () {

    Route::get("/login", ['uses'=>'SiteLogin@index']);
    Route::post("/login", ['uses'=>'SiteLogin@attempt']);
    Route::get("/logout", ['uses'=>'SiteLogin@logout']);

    Route::group(['prefix' => 'admin', 'middleware' => 'auth'], function () {
        Route::get('/', ['uses'=>'Admin@index']);
    });
});

The default behavior of the method attempt is to not keep the user logged.

You should change it to:

if (Auth::attempt(array('email' => $email, 'password' => $password), false, true))

This way you will set remember as false and login as true.

Check more about this here: https://laravel.com/docs/5.2/authentication