Fix JWT validation cache key and prefix handling

KroderDev · KroderDev · commit 3a3ac53ee9b8 · 2025-06-18T03:30:35.000-04:00
diff --git a/src/Http/Middleware/ValidateJwt.php b/src/Http/Middleware/ValidateJwt.php
@@ -29,11 +29,11 @@ public function handle(Request $request, Closure $next): Response
             return response()->json(['error' => 'Unauthorized'], Response::HTTP_UNAUTHORIZED);
         }
 
-        $token = substr($authHeader, 7);
+        $token = substr($authHeader, strlen((string)$prefix) + 1);
 
         try {
-            $publicKey = Cache::remember('jwt_cache_ttl', config('microservice.auth.public_key_ttl', 3600), function() {
-                return file_get_contents(config('microservice.auth.jwt_cache_ttl'));
+            $publicKey = Cache::remember('jwt_public_key', config('microservice.auth.jwt_cache_ttl', 3600), function() {
+                return file_get_contents(config('microservice.auth.jwt_public_key'));
             });
 
             $decoded = JWT::decode($token, new Key($publicKey, config('microservice.auth.jwt_algorithm')));
