From d1b7352fcaef313282a8e2df13e171831d5930dd Mon Sep 17 00:00:00 2001
From: HolgerHatGarKeineNode
 <123783602+HolgerHatGarKeineNode@users.noreply.github.com>
Date: Mon, 8 Jun 2026 01:13:23 +0200
Subject: [PATCH] =?UTF-8?q?=F0=9F=9B=A0=EF=B8=8F=20**Fix=20config=20serial?=
 =?UTF-8?q?ization=20and=20optimize=20caching**?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- 🗑️ Removed `SecurityScheme` from `scramble.php` due to non-serializable issues causing `config:cache`/`optimize` failures.
- ✏️ Added clarification on `scheme` omission with default fallback to `SecurityScheme::http('bearer')`.
---
 config/scramble.php | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/config/scramble.php b/config/scramble.php
index 17f4823..8be79ea 100644
--- a/config/scramble.php
+++ b/config/scramble.php
@@ -2,7 +2,6 @@
 
 use Dedoc\Scramble\Http\Middleware\RestrictedDocsAccess;
 use Dedoc\Scramble\SecurityDocumentation\MiddlewareAuthSecurityStrategy;
-use Dedoc\Scramble\Support\Generator\SecurityScheme;
 
 return [
     /*
@@ -187,11 +186,17 @@ return [
      *     ],
      * ],
      */
+    /*
+     * NOTE: `scheme` is intentionally omitted here. Passing a `SecurityScheme` object
+     * instance would make the config non-serializable and break `config:cache`/`optimize`
+     * (LogicException: value is non-serializable). `MiddlewareAuthSecurityStrategy`
+     * defaults to `SecurityScheme::http('bearer')` when no scheme is provided, which is
+     * exactly what we want.
+     */
     'security_strategy' => [
         MiddlewareAuthSecurityStrategy::class,
         [
             'middleware' => ['auth', 'auth:*'],
-            'scheme' => SecurityScheme::http('bearer'),
         ],
     ],
 ];