module DeviseTokenAuth
  class TokenValidationsController < DeviseTokenAuth::ApplicationController
    skip_before_filter :assert_is_devise_resource!, :only => [:validate_token]
    before_filter :set_user_by_token, :only => [:validate_token]

    def validate_token
      # @user will have been set by set_user_token concern
      if @user
        render json: resource_serializer(@user)
      else
        render json: error_messages("Invalid login credentials"), status: 401
      end
    end


    def resource_serializer(user)
      serializer = DeviseTokenAuth.token_validation_serializer || ResourceSerializer
      serializer.new(user)
    end

  end
end