zacharyblank/gist:8511498

## gistfile1.txt
App::before(function($request)
{
    header('Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS');
    header('Access-Control-Allow-Origin: *');
    header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization");

	if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
	    exit;
	}

	// Some endpoints have optional user proporties. If an access_token is passed
	// Check it's validity and process the additional properties
    $server = new League\OAuth2\Server\Resource(new SessionModel);

    try {
        $server->isValid();

        User::setCurrentUser($server->getOwnerId());
    } catch (Exception $e) {}

});
	App::before(function($request)
	{
	header('Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS');
	header('Access-Control-Allow-Origin: *');
	header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization");

	if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
	exit;
	}

	// Some endpoints have optional user proporties. If an access_token is passed
	// Check it's validity and process the additional properties
	$server = new League\OAuth2\Server\Resource(new SessionModel);

	try {
	$server->isValid();

	User::setCurrentUser($server->getOwnerId());
	} catch (Exception $e) {}

	});