summaryrefslogtreecommitdiff
path: root/users/app/controllers/v1/users_controller.rb
diff options
context:
space:
mode:
Diffstat (limited to 'users/app/controllers/v1/users_controller.rb')
-rw-r--r--users/app/controllers/v1/users_controller.rb11
1 files changed, 10 insertions, 1 deletions
diff --git a/users/app/controllers/v1/users_controller.rb b/users/app/controllers/v1/users_controller.rb
index eda2fad..617bd4b 100644
--- a/users/app/controllers/v1/users_controller.rb
+++ b/users/app/controllers/v1/users_controller.rb
@@ -1,13 +1,22 @@
module V1
class UsersController < ApplicationController
- skip_before_filter :verify_authenticity_token, :only => [:create]
+ skip_before_filter :verify_authenticity_token
+ before_filter :authorize, :only => [:update]
respond_to :json
def create
@user = User.create(params[:user])
+ respond_with @user # return ID instead?
+ end
+
+ def update
+ # For now, only allow public key to be updated via the API. Eventually we might want to store in a config what attributes can be updated via the API.
+ @user = User.find_by_param(params[:id])
+ @user.update_attributes params[:user].slice(:public_key) if params[:user].respond_to?(:slice)
respond_with @user
end
+
end
end
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-07 16:27:20 +0000