Example #1
0
 protected function _initCredentials()
 {
     $token = $this->_request->getQueryParam('token');
     $this->userDevice = UserDeviceManager::validate($token, $this->requestId);
     $action = $this->_request->getAction();
     $testMode = !\Application::currentInstance()->isProd() && $this->_request->getQueryParam('skip') == 1;
     if (!$this->userDevice && !$testMode && !in_array($action, $this->skipAuths)) {
         $this->response->forbidden();
         $this->response->addError(new ApiError("FORBIDDEN", "Access denied"));
         $this->display();
         exit;
     }
     if ($this->userDevice) {
         RequestLogger::addRecord(array('request_id' => $this->requestId, 'req_type' => $this->_request->getAction(), 'user_device_id' => $this->userDevice->id));
     }
 }