ApiController: check token validity for a given admin

2018-09-26 15:39:45 +02:00 · 2018-09-26 15:39:45 +02:00 · 4a04f2e59f
commit 4a04f2e59f
parent d576d426f4
3 changed files with 43 additions and 42 deletions
--- a/app/controllers/api_controller.rb
+++ b/app/controllers/api_controller.rb
@ -16,6 +16,10 @@ class APIController < ApplicationController

  protected

+  def valid_token_for_administrateur?(administrateur)
+    administrateur.valid_api_token?(token)
+  end
+
  def default_format_json
    request.format = "json" if !request.params[:format]
  end
@ -26,6 +30,10 @@ class APIController < ApplicationController
    end
  end

+  def token
+    params_token.presence || header_token
+  end
+
  def header_token
    received_token = nil
    authenticate_with_http_token do |token, _options|
@ -33,4 +41,8 @@ class APIController < ApplicationController
    end
    received_token
  end
+
+  def params_token
+    params[:token]
+  end
 end