api: added allow ability to limit what IPs can access api using a static configured auth token.

author: elijah <elijah@riseup.net> 2016-03-28 15:55:19 -0700
committer: elijah <elijah@riseup.net> 2016-03-28 16:03:54 -0700
commit: e072ac2fa8bc93ed782df1ff95130f4794f9640f (patch)
tree: 986c2cfd607af3f6c0e9c34f62d82de07ff0f3f6 /app/controllers
parent: 67b5aa4198e0f6ab2cd29767aedcb4bf5b5dc4d9 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/app/controllers/controller_extension/token_authentication.rb b/app/controllers/controller_extension/token_authentication.rb
index 15ddef7..c41d61b 100644
--- a/app/controllers/controller_extension/token_authentication.rb
+++ b/app/controllers/controller_extension/token_authentication.rb
@@ -5,7 +5,7 @@ module ControllerExtension::TokenAuthentication
 
   def token
     @token ||= authenticate_with_http_token do |token, options|
-      Token.find_by_token(token) || ApiToken.find_by_token(token)
+      Token.find_by_token(token) || ApiToken.find_by_token(token, request.headers['REMOTE_ADDR'])
     end
   end
author	elijah <elijah@riseup.net>	2016-03-28 15:55:19 -0700
committer	elijah <elijah@riseup.net>	2016-03-28 16:03:54 -0700
commit	e072ac2fa8bc93ed782df1ff95130f4794f9640f (patch)
tree	986c2cfd607af3f6c0e9c34f62d82de07ff0f3f6 /app/controllers
parent	67b5aa4198e0f6ab2cd29767aedcb4bf5b5dc4d9 (diff)