apiAuth->authenticate($request); if ($actor === null) { return response()->json([ 'error' => 'unauthorized', 'message' => 'Valid API Token, LDAP JWT, or OAuth2 Bearer token required.', ], 401); } $request->attributes->set('api_actor', $actor); return $next($request); } }