demarches-normaliennes/app/controllers/api_controller.rb

class APIController < ApplicationController
  AUTHENTICATION_TOKEN_DESCRIPTION = <<-EOS
    L'authentification de l'API se fait via un header HTTP :

    ```
      Authorization: Bearer &lt;Token administrateur&gt;
    ```
  EOS

  before_action :authenticate_user
  before_action :default_format_json

  def authenticate_user
    if !valid_token?
      request_http_token_authentication
    end
  end

  protected

  def valid_token?
    administrateur.present?
  end

  def administrateur
    @administrateur ||= (authenticate_with_bearer_token || authenticate_with_param_token)
  end

  def authenticate_with_bearer_token
    authenticate_with_http_token do |token, options|
      Administrateur.find_by(api_token: token)
    end
  end

  def authenticate_with_param_token
    Administrateur.find_by(api_token: params[:token])
  end

  def default_format_json
    request.format = "json" if !request.params[:format]
  end
end
add api v1 procedure controller 2015-12-21 17:51:49 +01:00			`class APIController < ApplicationController`
Fix authentication token description 2018-03-16 10:10:43 +01:00			`AUTHENTICATION_TOKEN_DESCRIPTION = <<-EOS`
			`L'authentification de l'API se fait via un header HTTP :`
add api v1 procedure controller 2015-12-21 17:51:49 +01:00
Fix authentication token description 2018-03-16 10:10:43 +01:00			```
			`Authorization: Bearer <Token administrateur>`
			```
			`EOS`
Add token authentication to API 2018-03-08 17:41:54 +01:00
Fix authentication token description 2018-03-16 10:10:43 +01:00			`before_action :authenticate_user`
			`before_action :default_format_json`
Add token authentication to API 2018-03-08 17:41:54 +01:00
add api v1 procedure controller 2015-12-21 17:51:49 +01:00			`def authenticate_user`
Add token authentication to API 2018-03-08 17:41:54 +01:00			`if !valid_token?`
			`request_http_token_authentication`
			`end`
add api v1 procedure controller 2015-12-21 17:51:49 +01:00			`end`

			`protected`

			`def valid_token?`
[Fix #1644] In API, current_administrateur -> administrateur 2018-03-15 18:07:20 +01:00			`administrateur.present?`
add api v1 procedure controller 2015-12-21 17:51:49 +01:00			`end`

[Fix #1644] In API, current_administrateur -> administrateur 2018-03-15 18:07:20 +01:00			`def administrateur`
Add token authentication to API 2018-03-08 17:41:54 +01:00			`@administrateur \|\|= (authenticate_with_bearer_token \|\| authenticate_with_param_token)`
			`end`

			`def authenticate_with_bearer_token`
			`authenticate_with_http_token do \|token, options\|`
			`Administrateur.find_by(api_token: token)`
			`end`
			`end`

			`def authenticate_with_param_token`
			`Administrateur.find_by(api_token: params[:token])`
add api v1 procedure controller 2015-12-21 17:51:49 +01:00			`end`
Add CSV output for Dossier API 2016-02-19 16:59:18 +01:00
			`def default_format_json`
Don’t use unless 2018-01-11 19:04:39 +01:00			`request.format = "json" if !request.params[:format]`
Add CSV output for Dossier API 2016-02-19 16:59:18 +01:00			`end`
Files should end with a new line 2017-04-04 15:27:04 +02:00			`end`