Release Notes

    Laravel's versioning scheme maintains the following convention: . Major framework releases are released every six months (February and August), while minor releases may be released as often as every week. Minor releases should never contain breaking changes.

    When referencing the Laravel framework or its components from your application or package, you should always use a version constraint such as 5.8.*, since major releases of Laravel do include breaking changes. However, we strive to always ensure you may update to a new major release in one day or less.

    Paradigm shifting releases are separated by many years and represent fundamental shifts in the framework's architecture and conventions. Currently, there is no paradigm shifting release under development.

    For LTS releases, such as Laravel 5.5, bug fixes are provided for 2 years and security fixes are provided for 3 years. These releases provide the longest window of support and maintenance. For general releases, bug fixes are provided for 6 months and security fixes are provided for 1 year. For all additional libraries, including Lumen, only the latest release receives bug fixes.

    Laravel 5.8 continues the improvements made in Laravel 5.7 by introducing has-one-through Eloquent relationships, improved email validation, convention based automatic registration of authorization policies, DynamoDB cache and session drivers, improved scheduler timezone configuration, support for assigning multiple authentication guards to broadcast channels, PSR-16 cache driver compliance, improvements to the artisan serve command, PHPUnit 8.0 support, Carbon 2.0 support, Pheanstalk 4.0 support, and a variety of other bug fixes and usability improvements.

    Eloquent now provides support for the hasOneThrough relationship type. For example, imagine a Supplier model hasOne Account model, and an Account model has one AccountHistory model. You may use a hasOneThrough relationship to access a supplier's account history through the account model:

    Auto-Discovery Of Model Policies

    When using Laravel 5.7, each model's corresponding authorization policy needed to be explicitly registered in your application's AuthServiceProvider:

    1. /**
    2.  * The policy mappings for the application.
    3.  *
    4.  * @var array
    5.  */
    6. protected $policies = [
    7.     'App\User' => 'App\Policies\UserPolicy',
    8. ];

    Laravel 5.8 introduces auto-discovery of model policies as long as the model and policy follow standard Laravel naming conventions. Specifically, the policies must be in a Policies directory below the directory that contains the models. So, for example, the models may be placed in the app directory while the policies may be placed in the app/Policies directory. In addition, the policy name must match the model name and have a Policy suffix. So, a User model would correspond to a UserPolicy class.

    2. Gate::guessPolicyNamesUsing(function ($modelClass) {
    3.     // return policy class name...
    4. });

    PSR-16 Cache Compliance

    In order to allow a more granular expiration time when storing items and provide compliance with the PSR-16 caching standard, the cache item time-to-live has changed from minutes to seconds. The put, putMany, add, remember and setDefaultCacheTime methods of the Illuminate\Cache\Repository class and its extended classes, as well as the put method of each cache store were updated with this changed behavior. See the related PR for more info.

    If you are passing an integer to any of these methods, you should update your code to ensure you are now passing the number of seconds you wish the item to remain in the cache. Alternatively, you may pass a DateTime instance indicating when the item should expire:

    1. // Laravel 5.7 - Store item for 30 minutes...
    2. Cache::put('foo', 'bar', 30);
    5. Cache::put('foo', 'bar', 30);
    7. // Laravel 5.7 / 5.8 - Store item for 30 seconds...
    8. Cache::put('foo', 'bar', now()->addSeconds(30));

    Multiple Broadcast Authentication Guards

    In previous releases of Laravel, private and presence broadcast channels authenticated the user via your application's default authentication guard. Beginning in Laravel 5.8, you may now assign multiple guards that should authenticate the incoming request:

    1. Broadcast::channel('channel', function() {
    2.     // ...
    3. }, ['guards' => ['web', 'admin']])

    Token Guard Token Hashing

    Laravel's token guard, which provides basic API authentication, now supports storing API tokens as SHA-256 hashes. This provides improved security over storing plain-text tokens. To learn more about hashed tokens, please review the full .

    Note: While Laravel ships with a simple, token based authentication guard, we strongly recommend you consider using Laravel Passport for robust, production applications that offer API authentication.

    Laravel 5.8 introduces improvements to the validator's underlying email validation logic by adopting the egulias/email-validator package utilized by SwiftMailer. Laravel's previous email validation logic occasionally considered valid emails, such as är.se, to be invalid.

    Default Scheduler Timezone

    Laravel allows you to customize the timezone of a scheduled task using the timezone method:

    However, this can become cumbersome and repetitive if you are specifying the same timezone for all of your scheduled tasks. For that reason, you may now define a scheduleTimezone method in your app/Console/Kernel.php file. This method should return the default timezone that should be assigned to all scheduled tasks:

    1. /**
    2.  * Get the timezone that should be used by default for scheduled events.
    3.  *
    4.  * @return \DateTimeZone|string|null
    5.  */
    6. protected function scheduleTimezone()
    7. {
    8.     return 'America/Chicago';
    9. }

    Intermediate Table / Pivot Model Events

    In previous versions of Laravel, Eloquent model events were not dispatched when attaching, detaching, or syncing custom intermediate table / "pivot" models of a many-to-many relationship. When using in Laravel 5.8, the applicable model events will now be dispatched.

    Artisan Call Improvements

    1. use Illuminate\Support\Facades\Artisan;
    3. Artisan::call('migrate:install', ['database' => 'foo']);

    However, Laravel 5.8 allows you to pass the entire command, including options, as the first string argument to the method:

    1. Artisan::call('migrate:install --database=foo');

    Mock / Spy Testing Helper Methods

    In order to make mocking objects more convenient, new mock and spy methods have been added to the base Laravel test case class. These methods automatically bind the mocked class into the container. For example:

    1. // Laravel 5.7
    2. $this->instance(Service::class, Mockery::mock(Service::class, function ($mock) {
    3.     $mock->shouldReceive('process')->once();
    5. // Laravel 5.8
    6. $this->mock(Service::class, function ($mock) {
    7.     $mock->shouldReceive('process')->once();
    8. });

    When returning an Eloquent resource collection from a route, Laravel resets the collection's keys so that they are in simple numerical order:

    When using Laravel 5.8, you may now add a preserveKeys property to your resource class indicating if collection keys should be preserved. By default, and to maintain consistency with previous Laravel releases, the keys will be reset by default:

    3. namespace App\Http\Resources;
    5. use Illuminate\Http\Resources\Json\JsonResource;
    7. class User extends JsonResource
    8. {
    9.     /**
    10.      * Indicates if the resource's collection keys should be preserved.
    11.      *
    12.      * @var bool
    13.      */
    14.     public $preserveKeys = true;
    15. }

    When the preserveKeys property is set to true, collection keys will be preserved:

    1. use App\User;
    2. use App\Http\Resources\User as UserResource;
    4. Route::get('/user', function () {
    5.     return UserResource::collection(User::all()->keyBy->id);
    6. });

    Higher Order orWhere Eloquent Method

    In previous releases of Laravel, combining multiple Eloquent model scopes via an or query operator required the use of Closure callbacks:

    1. // scopePopular and scopeActive methods defined on the User model...
    2. $users = App\User::popular()->orWhere(function (Builder $query) {
    3.     $query->active();
    4. })->get();

    Laravel 5.8 introduces a "higher order" orWhere method that allows you to fluently chain these scopes together without the use of Closures:

    1. $users = App\User::popular()->orWhere->active()->get();

    Artisan Serve Improvements

    In previous releases of Laravel, Artisan's serve command would serve your application on port 8000. If another serve command process was already listening on this port, an attempt to serve a second application via serve would fail. Beginning in Laravel 5.8, serve will now scan for available ports up to port 8009, allowing you to serve multiple applications at once.

    Blade File Mapping

    When compiling Blade templates, Laravel now adds a comment to the top of the compiled file which contains the path to the original Blade template.

    DynamoDB Cache / Session Drivers

    Laravel 5.8 introduces cache and session drivers. DynamoDB is a serverless NoSQL database provided by Amazon Web Services. The default configuration for the dynamodb cache driver can be found in the Laravel 5.8 cache configuration file.

    Pheanstalk 4.0 Support

    Laravel 5.8 provides support for the ~4.0 release of the Pheanstalk queue library. If you are using Pheanstalk library in your application, please upgrade your library to the ~4.0 release via Composer.