tab/app/controllers/application_controller.rb

class ApplicationController < ActionController::Base
  # Prevent CSRF attacks by raising an exception.
  # For APIs, you may want to use :null_session instead.
  protect_from_forgery with: :exception

  rescue_from CanCan::AccessDenied do |exception|
    redirect_to root_url, alert: exception.message
  end

  def current_client
    @current_client ||= identify_client
  end

  private

  def identify_client
    key = request.headers["X-API-KEY"]
    Client.find_by key: key if key
  end
end
Initial rails project 2015-09-07 11:44:48 +02:00			`class ApplicationController < ActionController::Base`
			`# Prevent CSRF attacks by raising an exception.`
			`# For APIs, you may want to use :null_session instead.`
			`protect_from_forgery with: :exception`
Add ability of cancancan 2015-09-08 17:18:38 +02:00
			`rescue_from CanCan::AccessDenied do \|exception\|`
			`redirect_to root_url, alert: exception.message`
			`end`
Add client identification methods 2015-09-09 11:31:34 +02:00
			`def current_client`
			`@current_client \|\|= identify_client`
			`end`

			`private`

			`def identify_client`
			`key = request.headers["X-API-KEY"]`
			`Client.find_by key: key if key`
			`end`
Initial rails project 2015-09-07 11:44:48 +02:00			`end`