mastodon/app/controllers/api_controller.rb
2016-08-17 17:58:00 +02:00

14 lines
320 B
Ruby

class ApiController < ApplicationController
protect_from_forgery with: :null_session
skip_before_action :verify_authenticity_token
protected
def current_resource_owner
User.find(doorkeeper_token.resource_owner_id) if doorkeeper_token
end
def current_user
super || current_resource_owner
end
end