From db4b1d3822daf0a0da0ba6e838231251950f3f2e Mon Sep 17 00:00:00 2001
From: Lars Wirzenius <liw@liw.fi>
Date: Sun, 19 Nov 2017 18:11:34 +0100
Subject: Add: scenario for testing unauthorized access

---
 yarns/300-workers.yarn | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'yarns/300-workers.yarn')

diff --git a/yarns/300-workers.yarn b/yarns/300-workers.yarn
index 16bd108..c94f47c 100644
--- a/yarns/300-workers.yarn
+++ b/yarns/300-workers.yarn
@@ -66,7 +66,7 @@ controller API. It doesn't actually talk to the worker itself.
     THEN result has status code 200
     AND body matches { "workers": [] }
 
-    WHEN user makes request POST /workers
+    WHEN user makes request POST /workers with a valid token and body
     ... {
     ...     "worker": "obelix",
     ...     "protocol": "ssh",
@@ -121,7 +121,8 @@ controller API. It doesn't actually talk to the worker itself.
     ...     }
     ... }
 
-    WHEN user makes request PUT /workers/obelix
+    WHEN user makes request PUT /workers/obelix with a valid token 
+    ... and body
     ... {
     ...     "worker": "obelix",
     ...     "protocol": "local",
-- 
cgit v1.2.1