Enforce real-time issuer authorization check in middleware

[dev-fatima-24]

Description

The issuer.js middleware checks the JWT role but does not verify the wallet address against the on-chain issuer allowlist at request time. A revoked issuer with a valid JWT can still mint.

Acceptance Criteria

• On each issuer-gated request, wallet from JWT verified against contract's issuer allowlist
• Revoked issuers receive 403 even with a valid JWT
• Allowlist lookups cached with a 30s TTL to avoid per-request RPC calls
• Cache invalidated on issuer revocation events

Priority: Critical | Effort: Medium

[playmaker410]

@playmaker410 has applied to work on this issue as part of the Stellar Wave Program's 4th wave.

Hi Maintainer,

I’d love to take this on. I have hands-on experience with Rust, Soroban, Cairo, and TypeScript, and I’m confident I can deliver a solid solution within 24 hours.

Happy to contribute.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @playmaker410 to this issue.

[mathewsap45]

@mathewsap45 has applied to work on this issue as part of the Stellar Wave Program's 4th wave.

hi please assign

ℹ️ Repo Maintainers: To accept this application, review their application or assign @mathewsap45 to this issue.

[Abd-Standard]

@Abd-Standard has applied to work on this issue as part of the Stellar Wave Program's 4th wave.

I would like to work on this issue , I can fix this let me work on this issue maintainer

ℹ️ Repo Maintainers: To accept this application, review their application or assign @Abd-Standard to this issue.

[drips-wave]

Congratulations, @Abd-Standard! 🎉 Your application was accepted by the repo's maintainers, and the issue is due on April 29, 2026.

🧑‍💻 @Abd-Standard: Please resolve the issue such that the repo's maintainers have enough time to review your contribution before the due date. You'll earn Points for completing the issue on-time, which will make you eligible for a share of the Stellar Wave Program's reward pool.

Warning

When opening a PR, please link it to this issue to ensure it gets tracked accurately. Points are awarded when this issue is marked as completed by the maintainer.

🤠 Repo maintainers: Please keep an eye on the contributor's progress and review their work before the due date. You can manage this issue, including adjusting its complexity and points, here.

🌊 Happy Wave 🌊

[drips-wave]

This issue has been completed by @Abd-Standard as part of the Stellar Wave Program's 4th Wave 🥳

😎 @Abd-Standard: You earned 200 Points for completing this issue! After the current Wave ends, you'll be eligible for a percentage of the Wave's reward pool based on the percentage of total points you've earned. Learn more here. You can also Leave a review to share your experience working on this issue.

🧑‍💻 Repo maintainers: How'd the contributor do? Leave a review to share your experience working with them.