Optimize auth method

author: Rafi Zadanly <zadanlyr@gmail.com> 2023-03-09 06:11:55 +0700
committer: Rafi Zadanly <zadanlyr@gmail.com> 2023-03-09 06:11:55 +0700
commit: 60c166f8b4f5f9cd8d4cdf6422f53d8b5d083648 (patch)
tree: 439910148373c0b207838ec701a8bc13947b91d6 /indoteknik_api/controllers/api_v1/blog.py
parent: f790892bb6cf7bd7871e841af92ce3edfc76b8c2 (diff)
1 files changed, 2 insertions, 6 deletions
diff --git a/indoteknik_api/controllers/api_v1/blog.py b/indoteknik_api/controllers/api_v1/blog.py
index af7c4245..5f4f728e 100644
--- a/indoteknik_api/controllers/api_v1/blog.py
+++ b/indoteknik_api/controllers/api_v1/blog.py
@@ -7,10 +7,8 @@ class Blog(controller.Controller):
     prefix = '/api/v1/'
     
     @http.route(prefix + 'blog', auth='public', methods=['GET'])
+    @controller.Controller.must_authorized()
     def get_blog(self, **kw):
-        if not self.authenticate():
-            return self.response(code=401, description='Unauthorized')
-        
         limit = int(kw.get('limit', 0))
         offset = int(kw.get('offset', 0))
         query = [('active', '=', True)]
@@ -27,10 +25,8 @@ class Blog(controller.Controller):
         return self.response(data)
     
     @http.route(prefix + 'blog/<id>', auth='public', methods=['GET'])
+    @controller.Controller.must_authorized()
     def get_blog_by_id(self, **kw):
-        if not self.authenticate():
-            return self.response(code=401, description='Unauthorized')
-        
         id = kw.get('id')
         if not id:
             return self.response(code=400, description='id is required')
author	Rafi Zadanly <zadanlyr@gmail.com>	2023-03-09 06:11:55 +0700
committer	Rafi Zadanly <zadanlyr@gmail.com>	2023-03-09 06:11:55 +0700
commit	60c166f8b4f5f9cd8d4cdf6422f53d8b5d083648 (patch)
tree	439910148373c0b207838ec701a8bc13947b91d6 /indoteknik_api/controllers/api_v1/blog.py
parent	f790892bb6cf7bd7871e841af92ce3edfc76b8c2 (diff)