require 'g5_authenticatable_api/token_validator'

module G5AuthenticatableApi
  module Helpers
    module Rails
      def authenticate_api_user!
        raise_auth_error if !token_validator.valid?
      end

      def warden
        request.env['warden']
      end

      private
      def token_validator
        @token_validator ||= TokenValidator.new(request.params, request.headers, warden)
      end

      def raise_auth_error
        response.headers['WWW-Authenticate'] = token_validator.auth_response_header
        render json: {error: 'Unauthorized'},
               status: :unauthorized
      end
    end
  end
end