Logged User

Explore how to implement user authentication in a Rails API by creating a current_user method that retrieves the user based on JWT tokens in HTTP headers. Understand setting up supporting files, writing tests, and integrating the method into the application controller to secure API endpoints requiring authorization.

We'll cover the following...

Create directories and files
Define the current_user method
Add tests
Test the updated code
Include module

We implemented the following logic: the API returns the authentication token to the client if credentials are correct. We’ll now implement how to find the corresponding user of the authentication token given in the HTTP header. We’ll need to do so each time this client requests an entry point that requires permission.

We will use the HTTP header Authorization for this purpose. We can also use a GET parameter named apiKey but will be using an HTTP header to give context to the request without polluting the URL with additional parameters.

1.Getting Started

2.The API

3.User Model

4.Authenticating the Users

5.User's Products

6.Building JSON

7.Placing Orders

8.Improving Orders

9.Optimizations

10.Wrap up

11.Appendix

Logged User