vincent.github said almost 3 years ago on Cross-Origin Resource Sharing (CORS) :
Another way to describe my user story. could be to say:

"hey, I have pushed my new release on www.example.com. I have some paths for api, those paths could be found by user if they inspect the console, and I don't want to let them access my www.example.com/api/v1 from any localhost or console but only when they are using my webapp"

How can I do this? Should I only use something like ``` acts_as_token_authentication_handler_for Owner``` and ```before_action :authenticate_user!``` respectively within foo_controller and base_controller