Dev: add a new route /internal/auth to check if authenticated

The newer versions of hawk-apiserver need to check if the sessions
is still logged in.

Author: Aleksei Burlakov

hawk/app/controllers/internal_auth_controller.rb

@@ -0,0 +1,17 @@
+# Copyright (c) 2025 Aleksei Burlakov <aburlakov@suse.com>
+# See COPYING for license.
+
+class InternalAuthController < ApplicationController
+  # internal endpoint; no CSRF and no redirects
+  skip_before_action :verify_authenticity_token
+
+  def show
+    return head :forbidden unless request.local?
+
+    if logged_in?
+      render json: { ok: true, user: current_user }, status: 200
+    else
+      render json: { ok: false }, status: 403
+    end
+  end
+end

hawk/config/routes.rb

@@ -191,6 +191,8 @@
     end
   end
 
+  get "/internal/auth", to: "internal_auth#show"
+
   if Rails.env.production?
     match '*path' => 'errors#not_found', via: :all # if nothing else matches
   end