Module: Apimaster::Helpers::Session

Defined in:

lib/apimaster/helpers/session.rb

Instance Method Summary

• #auth_user ⇒ Object
• #authorize ⇒ Object
• #current_user ⇒ Object

  Return current_user record if logged in.

• #header_token ⇒ Object
• #is_owner?(owner_id) ⇒ Boolean

  Check logged in user is the owner.

• #user_model ⇒ Object

Instance Method Details

#auth_user ⇒ Object

# File 'lib/apimaster/helpers/session.rb', line 24

def auth_user
  @access_token ||= params[:access_token] or header_token
  user_model.auth @access_token
end

#authorize ⇒ Object

# File 'lib/apimaster/helpers/session.rb', line 15

def authorize
  raise Apimaster::UnauthorizedError.new :user unless current_user
end

#current_user ⇒ Object

Return current_user record if logged in

# File 'lib/apimaster/helpers/session.rb', line 20

def current_user
  @current_user ||= auth_user
end

#header_token ⇒ Object

# File 'lib/apimaster/helpers/session.rb', line 33

def header_token
  keys = %w{HTTP_AUTHORIZATION X-HTTP_AUTHORIZATION X_HTTP_AUTHORIZATION}
  authorization ||= keys.inject(nil) { |auth, key| auth || request.env[key] }
  authorization.split[1] if authorization and authorization[/^token/i]
end

#is_owner?(owner_id) ⇒ Boolean

Check logged in user is the owner

Returns:

• (Boolean)

# File 'lib/apimaster/helpers/session.rb', line 11

def is_owner? owner_id
  !!current_user && current_user.id.to_i == owner_id.to_i
end

#user_model ⇒ Object

# File 'lib/apimaster/helpers/session.rb', line 29

def user_model
  @user_model ||= Apimaster::Models::User
end