Implement sessions/create in JSON API

app/controllers/api/application_controller.rb

@@ -1,4 +1,7 @@
 class Api::ApplicationController < ApplicationController
+  skip_before_filter :verify_authenticity_token
+  skip_before_filter :authenticate!, :only => [:cor_preflight]
+
   before_filter :cor_filter
 
   def cor_filter
@@ -12,4 +15,8 @@ class Api::ApplicationController < ApplicationController
 
     head :ok
   end
+
+  def authenticate!
+    head :unauthorized if current_user.nil?
+  end
 end

app/controllers/api/v0/sessions_controller.rb

@@ -0,0 +1,14 @@
+class Api::V0::SessionsController < Api::ApplicationController
+  skip_before_filter :authenticate!, :only => [:create]
+
+  def create
+    user = User.find_by_email(params[:session][:email])
+
+    if ! user.try(:authenticate?, params[:session][:password])
+      return render :json => '', :status => :not_found
+    end
+
+    @user = user
+    self.current_user = @user
+  end
+end