# frozen_string_literal: true

class ApplicationController < ActionController::Base
  include Pundit::Authorization

  protected

  def authenticate_api_key
    return head :unauthorized unless current_api_user

    true
  end

  def current_api_user
    @current_api_user ||= User.find_by(api_key: params[:api_key])
  end
end