["#{table_name}.id desc"]
end
+ def self.validate(remote_id:)
+ token = Thread.current[:supplied_token]
+ return nil if !token
+ version, uuid, secret = token.split(',')
+ return nil if version != 'v2'
+ auth = ApiClientAuthorization.
+ includes(:user).
+ where('uuid=? and (expires_at is null or expires_at > CURRENT_TIMESTAMP)', uuid).
+ first
+ if auth && secret == OpenSSL::HMAC.hexdigest('sha1', auth.api_token, remote_id)
+ return auth
+ else
+ return nil
+ end
+ end
+
protected
def permission_to_create