/** * @param \App\Restful\RestfulRequest $request * * @return bool */ public function isAuthorized(RestfulRequest $request) { if (!$request->token) { throw new RestfulException(Response::HTTP_UNAUTHORIZED, "missing token"); } /** @var \App\Models\Token $tokenModel */ $tokenModel = Token::ofToken($request->token)->first(); if ($tokenModel == null || $tokenModel->isExpired()) { throw new RestfulException(Response::HTTP_UNAUTHORIZED, "token is invalid or expired"); } return true; }