Contents

module ApiUserAuth
  # Base controller module
  module Controller
    extend ActiveSupport::Concern

    included do
      before_action :authenticate
      rescue_from Exceptions::Unauthorized, with: :auth_user_unauthorized
    end

    def auth_user_unauthorized(exception)
      render json: { message: exception.message }, status: 401
    end

    private

    def authenticate
      if request.headers['Authorization'].blank?
        raise Exceptions::Unauthorized,
              'Header [Authorization] can not be blank!'
      end
      http_authenticate
      if @auth_user.blank?
        raise Exceptions::Unauthorized,
              'Header [Authorization] token is invalid!'
      end
    end

    def http_authenticate
      authenticate_with_http_token do |token, _options|
        unless token =~ ApiUserAuth::UUID_REGEX
          raise Exceptions::Unauthorized,
                'Header [Authorization] token is invalid!'
        end
        @auth_user = AuthUser.find_fy_token(token)
      end
    end
  end
end

Version data entries

11 entries across 11 versions & 1 rubygems

Version	Path
api_user_auth-0.1.9	lib/api_user_auth/controller.rb
api_user_auth-0.1.8	lib/api_user_auth/controller.rb
api_user_auth-0.1.7	lib/api_user_auth/controller.rb
api_user_auth-0.1.6	lib/api_user_auth/controller.rb
api_user_auth-0.1.5	lib/api_user_auth/controller.rb
api_user_auth-0.1.4	lib/api_user_auth/controller.rb
api_user_auth-0.1.2	lib/api_user_auth/controller.rb
api_user_auth-0.1.1	lib/api_user_auth/controller.rb
api_user_auth-0.1.0	lib/api_user_auth/controller.rb
api_user_auth-0.0.14	lib/api_user_auth/controller.rb
api_user_auth-0.0.12	lib/api_user_auth/controller.rb