app: api: base_controller: allow API access to be configurable

2022-11-06 19:13:50 +00:00 · 2022-11-06 19:13:50 +00:00 · 152f5c7983
parent 7ceda772e4
commit 152f5c7983
1 changed files with 7 additions and 1 deletions
--- a/app/controllers/api/base_controller.rb
+++ b/app/controllers/api/base_controller.rb
@ -133,7 +133,13 @@ class Api::BaseController < ApplicationController
  end

  def disallow_unauthenticated_api_access?
-    authorized_fetch_mode?
+    if ENV['DISALLOW_UNAUTHENTICATED_API_ACCESS'] == 'true'
+      true
+    elsif ENV['DISALLOW_UNAUTHENTICATED_API_ACCESS'] == 'false'
+      false
+    else
+      authorized_fetch_mode?
+    end
  end

  private