Bypass JWT auth for GET /api/ca_dashboard/stats

aaronskiba · aaronskiba · commit 1066be2320b0 · 2024-08-22T13:36:46.000-06:00
diff --git a/app/controllers/api/ca_dashboard/stats_controller.rb b/app/controllers/api/ca_dashboard/stats_controller.rb
@@ -4,11 +4,11 @@ module Api
   module CaDashboard
     # Handles CRUD operations for "/api/ca_dashboard/stats"
     class StatsController < Api::V1::BaseApiController
+      # Allow public access / bypass JWT authentication via "POST /api/v1/authenticate"
+      skip_before_action :authorize_request, only: [:index]
 
       # GET /api/ca_dashboard/stats
       def index
-        # To access this endpoint, the user must provide a valid JWT
-        # JWT is acquired by authenticating via POST /api/v1/authenticate
         base_hash = {
           'plans' => Plan.all,
           'orgs' => Org.where(managed: true).all,
