From 675f89974476ceb3d4a08355fa8e769455b98313 Mon Sep 17 00:00:00 2001
From: Hillel Coren <hillelcoren@gmail.com>
Date: Sun, 5 Mar 2017 12:30:08 +0200
Subject: [PATCH] Allow ping with api_secret or account token

---
 app/Http/Middleware/ApiCheck.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/app/Http/Middleware/ApiCheck.php b/app/Http/Middleware/ApiCheck.php
index 7f59159fe088..80554c977acc 100644
--- a/app/Http/Middleware/ApiCheck.php
+++ b/app/Http/Middleware/ApiCheck.php
@@ -54,6 +54,8 @@ class ApiCheck
             if ($token && $token->user) {
                 Auth::onceUsingId($token->user_id);
                 Session::set('token_id', $token->id);
+            } elseif ($hasApiSecret && $request->is('api/v1/ping')) {
+                // do nothing: allow ping with api_secret or account token
             } else {
                 sleep(ERROR_DELAY);
                 $error['error'] = ['message' => 'Invalid token'];