Laravel API Inspector automatically generates API documentation from your Laravel routes, FormRequest validation rules, and API Resources. It's like Postman + Swagger combined, but deeply integrated with Laravel.
This is the git repository https://github.com/irabbi360/laravel-api-inspector
Features
✨ Auto-Parse FormRequest Rules - Converts Laravel validation rules into comprehensive documentation
📮 Generate Postman Collections - Create ready-to-use Postman collections with examples
📖 OpenAPI/Swagger Specs - Export to OpenAPI 3.0 format for tools like Swagger UI and Redoc
📄 HTML Documentation - Beautiful, auto-generated HTML documentation with examples
🔍 API Resource Detection - Extract response structures from your API Resources
💾 Save Response Examples - Automatically save JSON responses to files
🔐 Authentication Support - Automatically detect protected routes and add auth headers
Installation
Requirements
PHP: 8.1 or higher
Laravel: 10.0 or higher
Database: MySQL 5.7+ / PostgreSQL 10+ / SQLite 3.8+
Get up and running in just two commands:
composer require irabbi360/laravel-api-inspector
Run the interactive installer
php artisan api-inspector:install
Quick Start
View Documentation in Browser
After generating documentation, visit:
http://localhost:8000/api-docs
Create a FormRequest with Validation Rules
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class StoreUserRequest extends FormRequest
{
public function rules()
{
return [
'name' => 'required|string|max:255',
'email' => 'required|email|unique:users',
'password' => 'required|min:8|confirmed',
'age' => 'integer|min:18|max:100',
];
}
}
Use FormRequest in Your Controller
<?php
namespace App\Http\Controllers;
use App\Http\Requests\StoreUserRequest;
class UserController extends Controller
{
public function store(StoreUserRequest $request)
{
return response()->json([
'success' => true,
'message' => 'User created successfully',
'data' => User::create($request->validated()),
], 201);
}
}
Use Actions in Your Controller
<?php
namespace App\Http\Controllers;
use App\Actions\CreateUser;
class UserController extends Controller
{
public function store(Request $request, CreateUser $action)
{
$action->create($request->all());
return response()->json([
'success' => true,
'message' => 'User created successfully',
], 201);
}
}
Auto Response Schema generate. You can now add the annotation to your controller methods:
<?php
/**
* Get user profile
* @LAPIresponsesSchema ProfileResource
*/
public function show(User $user)
{
return new ProfileResource($user);
}
Or without the annotation, it will auto-detect from the return type:
<?php
public function show(User $user): ProfileResource
{
return new ProfileResource($user);
}
<?php
/**
* Get users list with pagination
* @LAPIpagination
*/
public function index()
{
$users = User::latest()->paginate();
return ProfileResource::collection($users);
}
Query parameters
<?php
/**
* Get users list
* @LAPIQueryParams {
* "name": {"type": "string", "required": true, "description": "Filter by user name"},
* "page": {"type": "integer", "required": false, "example": 1},
* "limit": {"type": "integer", "required": false}
* }
*/
public function index(Request $request) { ... }
or
<?php
/**
* Get users list
* @LAPIQueryParams name:string required, page:integer optional, limit:integer optional
*/
public function index(Request $request) { ... }
or
<?php
/**
* // Simple format (new)
* @LAPIQueryParams name, page, per_page, status
*/
public function index(Request $request) { ... }
✅ Parse @LAPIresponsesSchema ResourceName from docblocks
✅ Parse @LAPIpagination Pagination from docblocks
✅ Parse @LAPIQueryParams query params from docblocks
✅ Display response schema as JSON format
✅ Recursively handle nested resources
✅ Support unqualified resource names with auto-namespace resolution
✅ Prevent infinite recursion with depth limit
- View in Browser After generating, automatically view your documentation:
http://localhost:8000/api-docs
That's it! 🎉 Your API is now documented and accessible via browser.
Generate or Download API Collection
The command generates documentation in three formats:
API Stats - http://localhost:8000/api-docs/stats (view in browser) From Stats page download the Postman API Collections & OpenAPI Specification
Files are also saved to storage/api-docs/ directory for backup.
Configuration
Edit config/api-inspector.php:
return [
'enabled' => true,
'save_responses' => true, // Save example responses to JSON
'save_responses_driver' => 'json', // 'cache' or 'json' - Phase 2
'middleware_capture' => true, // Capture real responses - Phase 2
'response_ttl' => 3600, // Cache TTL in seconds (1 hour) - Phase 2
'auth' => [
'type' => 'bearer',
'header' => 'Authorization'
],
'response_path' => storage_path('api-docs'),
];
Runtime Response Capture & Caching
Middleware Response Capture
Automatically capture real API responses from your running endpoints:
// The middleware automatically captures successful (2xx) JSON responses
// Configuration in config/api-inspector.php:
'middleware_capture' => true, // Enable response capture
'save_responses_driver' => 'json', // Store in files or cache
'response_ttl' => 3600, // Cache expiration time
Features:
✅ Captures real API responses automatically
✅ Only captures successful (2xx) responses
✅ Only targets API routes (configurable prefix)
✅ Saves responses to JSON files or Laravel cache
✅ Includes capture timestamp for freshness tracking
✅ Graceful error handling (doesn't break your API)
Using ResponseCache Class
Programmatically manage cached responses:
use Irabbi360\LaravelApiInspector\Support\ResponseCache;
class YourController extends Controller
{
public function someAction(ResponseCache $responseCache)
{
// Store a response
$responseCache->store('api/users/index', 200, [
'data' => [/* ... */],
'success' => true
]);
// Retrieve a cached response
$cached = $responseCache->get('api/users/index', 200);
// Check if response is cached
if ($responseCache->has('api/users/index', 200)) {
// Use cached response
}
// Get all responses for a route
$allResponses = $responseCache->getForRoute('api/users');
// Clear responses for a route
$responseCache->clearForRoute('api/users');
// Clear all cached responses
$responseCache->clearAll();
}
}
Storage Drivers
JSON Driver (recommended for development/production)
'save_responses_driver' => 'json'
// Stores in storage/api-docs/cached-responses/
// Persists across cache flushes
// Better for team sharing
Cache Driver (recommended for performance)
'save_responses_driver' => 'cache'
// Uses your configured cache backend (redis, memcached, etc.)
// Faster access
// Configurable TTL per response
Example Workflow
Enable middleware capture:
// config/api-inspector.php
'middleware_capture' => true,
Make requests to your API:
curl -X GET http://localhost:8000/api/users
curl -X POST http://localhost:8000/api/users \
-H "Content-Type: application/json" \
-d '{"name":"John","email":"john@example.com"}'
Responses are automatically captured:
storage/api-docs/cached-responses/
├── api_response:api_users:200.json
├── api_response:api_users:201.json
└── ...
Use captured responses in documentation:
Postman collection now includes real example responses
OpenAPI spec contains actual response schemas
HTML docs show real data from your API
Phase 3: Dashboard, Analytics & Advanced Features
API Analytics & Monitoring
Automatically track and monitor API performance:
// Enable analytics in config/api-inspector.php
'analytics' => [
'enabled' => true,
'track_response_time' => true,
'track_memory_usage' => true,
'track_errors' => true,
'retention_days' => 30,
'track_only_uri_start_with' => 'api/',
]
After enabling, the package will log request metrics to the database. You need add the middleware to your API routes:
Irabbi360\LaravelApiInspector\Middleware\ApiInspectorAnalyticsMiddleware;
Features:
✅ Real-time request tracking
✅ Response time analytics
✅ Memory usage monitoring
✅ Error rate calculation
✅ Performance trends and insights
✅ Automatic data retention management
Web UI Dashboard
Access the Telescope-like dashboard at /api-docs/stats:
Dashboard Includes:
Real-time request metrics
Response time distribution charts
Error rate monitoring
Status code statistics
Top slow routes identification
Recent errors tracking
Route-level performance analytics
Customizable time ranges (1h, 24h, 7d, 30d)
'dashboard' => [
'enabled' => true,
'auth_middleware' => ['web'], // Protect dashboard access
]
A beautiful, responsive documentation site with:
Request/response examples
Parameter descriptions
Authentication indicators
Search and navigation
Examples
FormRequest to Documentation
Your FormRequest:
'email' => 'required|email',
'age' => 'integer|min:18|max:100'
Generated Documentation:
{
"email": {
"name": "email",
"type": "string",
"format": "email",
"required": true,
"example": "user@example.com",
"description": "Email"
},
"age": {
"name": "age",
"type": "integer",
"required": false,
"min": 18,
"max": 100,
"example": 25,
"description": "Age"
}
}
Validation Rules Mapping
Laravel Rule Generated Type Format Notes
email string email -
date string date -
url string uri -
numeric integer - -
integer integer - -
boolean boolean - -
array array - -
file string binary -
image string binary -
min:N - minLength: N Works with strings, numbers, arrays
max:N - maxLength: N Works with strings, numbers, arrays
size:N - - Exact size for strings/numbers/arrays
regex:PATTERN string - Regex pattern validation
in:val1,val2,... - enum Creates enum values
confirmed - - Requires {field}_confirmation field
same:field - - Must match another field's value
different:field - - Must be different from another field
in_array:field.* - - Values must be in another field's array
before:field date - Must be before another field/date
after:field date - Must be after another field/date
before_or_equal:field date - Must be ≤ another field/date
after_or_equal:field date - Must be ≥ another field/date
required - - Field is required
nullable - - Field can be null
json - json -
uuid string uuid -
ipv4 string ipv4 -
ipv6 string ipv6 -
Relational Validation Rules
When using relational rules like confirmed, same, different, etc., the generated documentation includes metadata about the relationship:
'password' => ['required', 'string', 'min:8', 'confirmed']
Generated schema:
{
"password": {
"name": "password",
"required": true,
"type": "string",
"min": 8,
"confirmed": true,
"requires_field": "password_confirmation",
"description": "Password (must match password_confirmation)"
}
}
Example: Complex Validation Rules
Here's a real-world example with multiple relational validation rules:
// In your FormRequest class
public function rules(): array
{
return [
'email' => ['required', 'email'],
'token' => ['required', 'string'],
'password' => ['required', 'string', 'min:8', 'confirmed'],
'password_confirmation' => ['required', 'same:password'],
'start_date' => ['required', 'date', 'before:end_date'],
'end_date' => ['required', 'date', 'after:start_date'],
'status' => ['required', 'in:active,inactive,pending'],
];
}
Generated documentation will include:
✅ password field with requires_field: password_confirmation
✅ password_confirmation field with same_as: password
✅ start_date field with relationship to end_date
✅ end_date field with relationship to start_date
✅ status field with enum values: ['active', 'inactive', 'pending']
Testing
composer test # Run all tests
composer test-coverage # With code coverage
composer analyse # PHPStan static analysis
composer format # Format code with Pint
Troubleshooting
Routes not appearing
Ensure routes have the api middleware
Check that API_INSPECTOR_ENABLED=true in your .env
Validation rules not extracted
Make sure you're using FormRequest in the controller method
Validate that the method name matches rules()
Files not generating
Check that storage/api-docs directory is writable
Verify config settings in config/api-inspector.php
Top comments (0)