TTL

Author: KroderDev

README.md

@@ -86,6 +86,7 @@ Validates the presence and integrity of a JSON Web Token (JWT) in the `Authoriza
 'auth' => [
     'jwt_public_key' => env('JWT_PUBLIC_KEY_PATH'),
     'jwt_algorithm' => env('JWT_ALGORITHM', 'RS256'),
+    'jwt_cache_ttl' => env('JWT_CACHE_TTL', 3600),
     'header' => 'Authorization',
     'prefix' => 'Bearer', 
 ],

src/Http/Middleware/ValidateJwt.php

@@ -7,6 +7,7 @@
 use Firebase\JWT\Key;
 use Illuminate\Http\Request;
 use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Cache;
 use Kroderdev\LaravelMicroserviceCore\Auth\ExternalUser;
 use Kroderdev\LaravelMicroserviceCore\Services\PermissionsClient;
 use Symfony\Component\HttpFoundation\Response;
@@ -31,7 +32,9 @@ public function handle(Request $request, Closure $next): Response
         $token = substr($authHeader, 7);
 
         try {
-            $publicKey = file_get_contents(config('microservice.auth.jwt_public_key'));
+            $publicKey = Cache::remember('jwt_cache_ttl', config('microservice.auth.public_key_ttl', 3600), function() {
+                return file_get_contents(config('microservice.auth.jwt_cache_ttl'));
+            });
 
             $decoded = JWT::decode($token, new Key($publicKey, config('microservice.auth.jwt_algorithm')));
 

src/config/microservice.php

@@ -50,6 +50,14 @@
          */
         'jwt_algorithm' => env('JWT_ALGORITHM', 'RS256'),
 
+
+        /**
+         * The time-to-live (TTL) in seconds for caching JWT keys.
+         * Determines how long the JWT key will be stored in cache before it expires.
+         * Default is 3600 seconds (1 hour).
+         */
+        'jwt_cache_ttl' => env('JWT_CACHE_TTL', 3600),
+
         /**
          * Authorization Header:
          * The HTTP header from which to extract the JWT token.