diff options
Diffstat (limited to 'indoteknik_api/controllers/api_v1/blog.py')
| -rw-r--r-- | indoteknik_api/controllers/api_v1/blog.py | 8 |
1 files changed, 2 insertions, 6 deletions
diff --git a/indoteknik_api/controllers/api_v1/blog.py b/indoteknik_api/controllers/api_v1/blog.py index af7c4245..5f4f728e 100644 --- a/indoteknik_api/controllers/api_v1/blog.py +++ b/indoteknik_api/controllers/api_v1/blog.py @@ -7,10 +7,8 @@ class Blog(controller.Controller): prefix = '/api/v1/' @http.route(prefix + 'blog', auth='public', methods=['GET']) + @controller.Controller.must_authorized() def get_blog(self, **kw): - if not self.authenticate(): - return self.response(code=401, description='Unauthorized') - limit = int(kw.get('limit', 0)) offset = int(kw.get('offset', 0)) query = [('active', '=', True)] @@ -27,10 +25,8 @@ class Blog(controller.Controller): return self.response(data) @http.route(prefix + 'blog/<id>', auth='public', methods=['GET']) + @controller.Controller.must_authorized() def get_blog_by_id(self, **kw): - if not self.authenticate(): - return self.response(code=401, description='Unauthorized') - id = kw.get('id') if not id: return self.response(code=400, description='id is required') |