Ok I can easily add an optional login. I use to have that on the old api as well.
My question is, when it fails because the ip is banned and the user needs to log in, how will I know that happened? and it is there a way for me to test that kind of response while writing the code?
Thanks.