From db4b1d3822daf0a0da0ba6e838231251950f3f2e Mon Sep 17 00:00:00 2001
From: Lars Wirzenius <liw@liw.fi>
Date: Sun, 19 Nov 2017 18:11:34 +0100
Subject: Add: scenario for testing unauthorized access

---
 yarns/100-projects.yarn | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'yarns/100-projects.yarn')

diff --git a/yarns/100-projects.yarn b/yarns/100-projects.yarn
index a4793b3..0aa57b0 100644
--- a/yarns/100-projects.yarn
+++ b/yarns/100-projects.yarn
@@ -75,7 +75,7 @@ building them. We start by starting an instance of the controller.
     THEN result has status code 200
     AND body matches { "projects": [] }
 
-    WHEN user makes request POST /projects
+    WHEN user makes request POST /projects with a valid token and body
     ... {
     ...     "project": "website",
     ...     "pipelines": [
@@ -146,7 +146,8 @@ building them. We start by starting an instance of the controller.
     ...     ]
     ... }
 
-    WHEN user makes request PUT /projects/website
+    WHEN user makes request PUT /projects/website with a valid token
+    ... and body
     ... {
     ...     "project": "website",
     ...     "pipelines": [
-- 
cgit v1.2.1