Add internal API filtering.

endpoints/api/user.py

@@ -8,7 +8,7 @@ from flask.ext.principal import identity_changed, AnonymousIdentity
 
 from app import app
 from endpoints.api import (ApiResource, nickname, resource, validate_json_request, request_error,
-                           log_action)
+                           log_action, internal_only)
 from endpoints.api.subscribe import subscribe
 from endpoints.common import common_login
 from data import model
@@ -121,6 +121,7 @@ class User(ApiResource):
     return user_view(user)
 
   @nickname('changeUserDetails')
+  @internal_only
   @validate_json_request('UpdateUser')
   def put(self):
     """ Update a users details such as password or email. """
@@ -154,6 +155,7 @@ class User(ApiResource):
     return user_view(user)
 
   @nickname('createNewUser')
+  @internal_only
   @validate_json_request('NewUser')
   def post(self):
     """ Create a new user. """
@@ -218,6 +220,7 @@ def conduct_signin(username_or_email, password):
 
 
 @resource('/v1/user/convert')
+@internal_only
 class ConvertToOrganization(ApiResource):
   """ Operations for converting a user to an organization. """
   schemas = {
@@ -278,6 +281,7 @@ class ConvertToOrganization(ApiResource):
 
 
 @resource('/v1/signin')
+@internal_only
 class Signin(ApiResource):
   """ Operations for signing in the user. """
   schemas = {
@@ -316,6 +320,7 @@ class Signin(ApiResource):
 
 
 @resource('/v1/signout')
+@internal_only
 class Signout(ApiResource):
   """ Resource for signing out users. """
   @nickname('logout')
@@ -327,6 +332,7 @@ class Signout(ApiResource):
 
 
 @resource("/v1/recovery")
+@internal_only
 class Recovery(ApiResource):
   """ Resource for requesting a password recovery email. """
   schemas = {