Send "Unauthorized" message body with 401 responses (refs #42)

2016-06-02 13:07:19 +02:00
parent 7aaf3f80f7
commit 9a9a9c79e5
2 changed files with 50 additions and 2 deletions
--- a/spec/swift/app_spec.rb
+++ b/spec/swift/app_spec.rb
@@ -173,6 +173,29 @@ describe "App" do
      purge_redis
    end

+    context "not authorized" do
+
+      describe "with no token" do
+        it "says it's not authorized" do
+          delete "/phil/food/aguacate"
+
+          last_response.status.must_equal 401
+          last_response.body.must_equal "Unauthorized"
+        end
+      end
+
+      describe "with wrong token" do
+        it "says it's not authorized" do
+          header "Authorization", "Bearer wrongtoken"
+          delete "/phil/food/aguacate"
+
+          last_response.status.must_equal 401
+          last_response.body.must_equal "Unauthorized"
+        end
+      end
+
+    end
+
    context "authorized" do
      before do
        redis.sadd "authorizations:phil:amarillo", [":rw"]
@@ -248,6 +271,29 @@ describe "App" do
      purge_redis
    end

+    context "not authorized" do
+
+      describe "without token" do
+        it "says it's not authorized" do
+          get "/phil/food/"
+
+          last_response.status.must_equal 401
+          last_response.body.must_equal "Unauthorized"
+        end
+      end
+
+      describe "with wrong token" do
+        it "says it's not authorized" do
+          header "Authorization", "Bearer wrongtoken"
+          get "/phil/food/"
+
+          last_response.status.must_equal 401
+          last_response.body.must_equal "Unauthorized"
+        end
+      end
+
+    end
+
    context "authorized" do

      before do