<?php

declare(strict_types=1);

namespace App\Http\Middleware;

use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpFoundation\Response;

final class CookieBearerToken
{
    private const COOKIE_NAME = 'crewli_app_token';

    public function handle(Request $request, Closure $next): Response
    {
        // Skip if an Authorization header is already present (e.g. portal-token
        // Bearer flow for artists/suppliers, or server-to-server callers).
        if ($request->hasHeader('Authorization')) {
            return $next($request);
        }

        $token = $request->cookie(self::COOKIE_NAME);
        if ($token) {
            $request->headers->set('Authorization', 'Bearer '.$token);
        }

        return $next($request);
    }
}