From fe90938f5100329bd9e87f7fa4162d89aebc2e01 Mon Sep 17 00:00:00 2001
From: Gustavo Maronato <gustavo@maronato.dev>
Date: Wed, 30 Aug 2023 23:42:55 -0300
Subject: [PATCH] use Bearer token

---
 internal/server/middleware/auth/token.go | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/internal/server/middleware/auth/token.go b/internal/server/middleware/auth/token.go
index a6169b8..5cb568d 100644
--- a/internal/server/middleware/auth/token.go
+++ b/internal/server/middleware/auth/token.go
@@ -1,6 +1,7 @@
 package authmiddleware
 
 import (
+	"fmt"
 	"net/http"
 
 	"git.maronato.dev/maronato/goshort/internal/errs"
@@ -13,7 +14,10 @@ func authenticateViaToken(r *http.Request, tokenService *tokenservice.TokenServi
 
 	// Get token from request
 	value := r.Header.Get(tokenHeader)
-	if value == "" {
+
+	// Use sscanf to remove the "Bearer " prefix, or return an error if it's not present
+	_, err = fmt.Sscanf(value, "Bearer %s", &value)
+	if err != nil || value == "" {
 		return nil, errs.ErrTokenMissing
 	}