app/controllers/api/users_controller.rb

# frozen_string_literal: true

class Api::UsersController < Api::ApiController
  skip_before_action :authenticate_user
  before_action :verify_custom_token, only: :create

  def create
    if user_params[:email].nil? || user_params[:password].nil?
      raise ActionController::ParameterMissing.new 'Missing email or password'
    end

    user = Oath::Services::SignUp.new(user_params).perform
    render json: user.slice(:email, :created_at, :first_name, :last_name)
  end

  private

  def user_params
    params.require(:user).permit(%i[
                                   email
                                   password
                                   first_name
                                   last_name
                                 ])
  end

  def verify_custom_token
    if token.blank? || token != ENV['CUSTOM_API_TOKEN']
      unauthorized_entity(:user)
    end
  end

end
allow adding users through API 2020-07-29 18:39:21 +02:00			`# frozen_string_literal: true`

			`class Api::UsersController < Api::ApiController`
			`skip_before_action :authenticate_user`
			`before_action :verify_custom_token, only: :create`

			`def create`
			`if user_params[:email].nil? \|\| user_params[:password].nil?`
			`raise ActionController::ParameterMissing.new 'Missing email or password'`
			`end`

			`user = Oath::Services::SignUp.new(user_params).perform`
			`render json: user.slice(:email, :created_at, :first_name, :last_name)`
			`end`

			`private`

			`def user_params`
fix MR comments 2020-08-03 16:59:33 +02:00			`params.require(:user).permit(%i[`
			`email`
			`password`
			`first_name`
			`last_name`
			`])`
allow adding users through API 2020-07-29 18:39:21 +02:00			`end`

			`def verify_custom_token`
fix MR comments 2020-08-03 16:59:33 +02:00			`if token.blank? \|\| token != ENV['CUSTOM_API_TOKEN']`
allow adding users through API 2020-07-29 18:39:21 +02:00			`unauthorized_entity(:user)`
			`end`
			`end`

			`end`