diff --git a/LumenApiGateway/.gitignore b/LumenApiGateway/.gitignore
index d18d236..79ad46f 100644
--- a/LumenApiGateway/.gitignore
+++ b/LumenApiGateway/.gitignore
@@ -3,4 +3,5 @@
 Homestead.json
 Homestead.yaml
 .env
-database/database.sqlite
\ No newline at end of file
+database/database.sqlite
+storage/*.key
\ No newline at end of file
diff --git a/LumenApiGateway/app/Providers/AuthServiceProvider.php b/LumenApiGateway/app/Providers/AuthServiceProvider.php
index 9502a0b..d6ede08 100644
--- a/LumenApiGateway/app/Providers/AuthServiceProvider.php
+++ b/LumenApiGateway/app/Providers/AuthServiceProvider.php
@@ -3,6 +3,7 @@
 namespace App\Providers;
 
 use App\User;
+use Dusterio\LumenPassport\LumenPassport;
 use Illuminate\Support\Facades\Gate;
 use Illuminate\Support\ServiceProvider;
 
@@ -30,10 +31,11 @@ public function boot()
         // should return either a User instance or null. You're free to obtain
         // the User instance via an API token or any other method necessary.
 
-        $this->app['auth']->viaRequest('api', function ($request) {
-            if ($request->input('api_token')) {
-                return User::where('api_token', $request->input('api_token'))->first();
-            }
-        });
+//        $this->app['auth']->viaRequest('api', function ($request) {
+//            if ($request->input('api_token')) {
+//                return User::where('api_token', $request->input('api_token'))->first();
+//            }
+//        });
+        LumenPassport::routes($this->app->router);
     }
 }
diff --git a/LumenApiGateway/bootstrap/app.php b/LumenApiGateway/bootstrap/app.php
index e235aba..bf8cf97 100644
--- a/LumenApiGateway/bootstrap/app.php
+++ b/LumenApiGateway/bootstrap/app.php
@@ -31,6 +31,7 @@
  * Registering custom config files
  */
 $app->configure('services');
+$app->configure('auth');
 
 /*
 |--------------------------------------------------------------------------
diff --git a/LumenApiGateway/config/auth.php b/LumenApiGateway/config/auth.php
new file mode 100644
index 0000000..2670a12
--- /dev/null
+++ b/LumenApiGateway/config/auth.php
@@ -0,0 +1,85 @@
+<?php
+
+return [
+
+    /*
+    |--------------------------------------------------------------------------
+    | Authentication Defaults
+    |--------------------------------------------------------------------------
+    |
+    | This option controls the default authentication "guard" and password
+    | reset options for your application. You may change these defaults
+    | as required, but they're a perfect start for most applications.
+    |
+    */
+
+    'defaults' => [
+        'guard' => env('AUTH_GUARD', 'api'),
+    ],
+
+    /*
+    |--------------------------------------------------------------------------
+    | Authentication Guards
+    |--------------------------------------------------------------------------
+    |
+    | Next, you may define every authentication guard for your application.
+    | Of course, a great default configuration has been defined for you
+    | here which uses session storage and the Eloquent user provider.
+    |
+    | All authentication drivers have a user provider. This defines how the
+    | users are actually retrieved out of your database or other storage
+    | mechanisms used by this application to persist your user's data.
+    |
+    | Supported: "token"
+    |
+    */
+
+    'guards' => [
+        'api' => ['driver' => 'passport'],
+    ],
+
+    /*
+    |--------------------------------------------------------------------------
+    | User Providers
+    |--------------------------------------------------------------------------
+    |
+    | All authentication drivers have a user provider. This defines how the
+    | users are actually retrieved out of your database or other storage
+    | mechanisms used by this application to persist your user's data.
+    |
+    | If you have multiple user tables or models you may configure multiple
+    | sources which represent each model / table. These sources may then
+    | be assigned to any extra authentication guards you have defined.
+    |
+    | Supported: "database", "eloquent"
+    |
+    */
+
+    'providers' => [
+        //
+    ],
+
+    /*
+    |--------------------------------------------------------------------------
+    | Resetting Passwords
+    |--------------------------------------------------------------------------
+    |
+    | Here you may set the options for resetting passwords including the view
+    | that is your password reset e-mail. You may also set the name of the
+    | table that maintains all of the reset tokens for your application.
+    |
+    | You may specify multiple password reset configurations if you have more
+    | than one user table or model in the application and you want to have
+    | separate password reset settings based on the specific user types.
+    |
+    | The expire time is the number of minutes that the reset token should be
+    | considered valid. This security feature keeps tokens short-lived so
+    | they have less time to be guessed. You may change this as needed.
+    |
+    */
+
+    'passwords' => [
+        //
+    ],
+
+];