demarches-normaliennes/app/controllers/api_controller.rb
2023-12-21 16:02:11 +01:00

36 lines
857 B
Ruby

class APIController < ApplicationController
before_action :default_format_json
before_action :authenticate_from_token
before_action do
Current.browser = 'api'
end
private
def default_format_json
request.format = "json" if !request.params[:format]
end
def check_api_token
if @api_token.nil?
render json: {}, status: :unauthorized
end
end
def authenticate_from_token
@api_token = authenticate_with_http_token { |t, _o| APIToken.authenticate(t) }
# legacy way of sending the token by url
# not available in api v2
if @api_token.nil?
@api_token = APIToken.authenticate(params[:token])
end
if @api_token.present?
@api_token.touch(:last_v1_authenticated_at)
@api_token.store_new_ip(request.remote_ip)
@current_user = @api_token.administrateur.user
end
end
end