1 files changed, 8 insertions, 7 deletions

diff --git a/yarns/600-unauthz.yarn b/yarns/600-unauthz.yarn
index 1c928ac..ab33404 100644
--- a/yarns/600-unauthz.yarn
+++ b/yarns/600-unauthz.yarn
@@ -1,6 +1,6 @@
 <!--
 
-Copyright 2017-2018 Lars Wirzenius
+Copyright 2017-2019 Lars Wirzenius
 
 This program is free software: you can redistribute it and/or modify
 it under the terms of the GNU Affero General Public License as published by
@@ -26,12 +26,9 @@ returned.
 
 Set up the controller.
 
-    GIVEN an RSA key pair for token signing
-    AND controller config uses statedir at the state directory
-    AND controller config uses https://blobs.example.com as artifact store
-    AND controller config uses https://auth.example.com as authentication
-    AND controller config uses https://notify.example.com as notify
-    AND an access token for user with scopes
+    GIVEN an access token for user with scopes
+    ... uapi_projects_get
+    ... uapi_projects_id_delete
     ... uapi_projects_post
     ... uapi_projects_id_status_put
     ... uapi_projects_id_status_get
@@ -88,4 +85,8 @@ Set up the controller.
     WHEN outsider makes request POST /work with an invalid token and body {}
     THEN result has status code 401
 
+    WHEN user makes request DELETE /projects/rome
+    WHEN user makes request GET /projects
+    THEN body matches {"projects":[]}
+
     FINALLY stop ick controller