Add permissions_cache_ttl option

KroderDev · KroderDev · commit bbd9b634a132 · 2025-06-18T04:53:07.000-04:00
diff --git a/README.md b/README.md
@@ -125,6 +125,12 @@ Loads the authenticated user's roles and permissions, typically from a centraliz
 By default, the `ValidateJwt` middleware will automatically load `roles` and `permissions` from the JWT payload if they are present.  
 However, if you have a centralized permission service, you can use `LoadAccess` to fetch and hydrate the latest roles and permissions for the user, ensuring up-to-date authorization data.
 
+#### Configuration (`config/microservice.php`)
+
+```php
+'permissions_cache_ttl' => env('PERMISSIONS_CACHE_TTL', 60),
+```
+
 #### Usage
 
 Apply after JWT authentication, or use the `microservice.auth` group for both:
diff --git a/src/Services/PermissionsClient.php b/src/Services/PermissionsClient.php
@@ -18,8 +18,9 @@ public function __construct(ApiGatewayClientInterface $gateway)
     public function getAccessFor(ExternalUser $user): array
     {
         $cacheKey = "user_access:{$user->getAuthIdentifier()}";
+        $ttl = config('microservice.permissions_cache_ttl', 60);
 
-        return Cache::remember($cacheKey, 60, function () use ($user) {
+        return Cache::remember($cacheKey, $ttl, function () use ($user) {
             $response = $this->gateway->get('/auth/permissions/' . $user->getAuthIdentifier());
 
             if ($response->failed()) {
diff --git a/src/config/microservice.php b/src/config/microservice.php
@@ -18,8 +18,6 @@
         'role'           => 'role',
         'permission'     => 'permission',
     ],
-
-
     
     /*
     |--------------------------------------------------------------------------
@@ -118,4 +116,15 @@
          */
         'url' => env('API_GATEWAY_URL', 'http://gateway.local'),
     ],
+
+    /*
+    |--------------------------------------------------------------------------
+    | Permissions Cache
+    |--------------------------------------------------------------------------
+    |
+    | Defines how long (in seconds) fetched roles and permissions are cached
+    | for an authenticated user. Adjust via the PERMISSIONS_CACHE_TTL
+    | environment variable to control cache duration.
+    */
+    'permissions_cache_ttl' => env('PERMISSIONS_CACHE_TTL', 60),
 ];

Original file line number	Diff line number	Diff line change
`@@ -18,8 +18,9 @@ public function __construct(ApiGatewayClientInterface $gateway)`
`18`	`18`	`public function getAccessFor(ExternalUser $user): array`
`19`	`19`	`{`
`20`	`20`	`$cacheKey = "user_access:{$user->getAuthIdentifier()}";`
	`21`	`+ $ttl = config('microservice.permissions_cache_ttl', 60);`
`21`	`22`
`22`		`- return Cache::remember($cacheKey, 60, function () use ($user) {`
	`23`	`+ return Cache::remember($cacheKey, $ttl, function () use ($user) {`
`23`	`24`	`$response = $this->gateway->get('/auth/permissions/' . $user->getAuthIdentifier());`
`24`	`25`
`25`	`26`	`if ($response->failed()) {`