2021-06-05 UTC
# Zegnat What I have usually seen is that there is an auth middleware (PSR-15) in the chain that checks if the current request is made by a logged in user. And then the user’s data is added as an attribute on the PSR-7 request before it is passed down. One example I could quickly get a result for through Google: https://docs.mezzio.dev/mezzio-authentication/v1/intro/