diff options
author | Lars Wirzenius <liw@liw.fi> | 2017-08-24 09:23:33 +0000 |
---|---|---|
committer | Lars Wirzenius <liw@liw.fi> | 2017-08-24 09:23:33 +0000 |
commit | bb97fb549413e47ae8e798c26c2efe301ac0a1a2 (patch) | |
tree | e9cf6cb01e9ab18194d76793cc9de09b2b4ec1c4 /apifw.yarn | |
parent | c775b905b7a456eff43ba83f9e55aab3e8e4bb20 (diff) | |
download | apifw-bb97fb549413e47ae8e798c26c2efe301ac0a1a2.tar.gz |
Add: allos routes to not require authorization
Diffstat (limited to 'apifw.yarn')
-rw-r--r-- | apifw.yarn | 6 |
1 files changed, 2 insertions, 4 deletions
@@ -24,13 +24,11 @@ It's a silly name. Please suggest something better. GIVEN a running apitest using gunicorn3 WHEN client requests GET /version without token - THEN HTTP status code is 401 Unauthorized - AND response has header WWW-Authenticate containing "Bearer" + THEN HTTP status code is 200 OK WHEN client gets an authorization token with scope "no_version_scope" AND client requests GET /version using token - THEN HTTP status code is 401 Unauthorized - AND response has header WWW-Authenticate containing "Bearer" + THEN HTTP status code is 200 OK WHEN client gets an authorization token with scope "uapi_version_get" AND client requests GET /version using token |