From 90d0ef9db711069eeb84ebd84f4dd66d9535c465 Mon Sep 17 00:00:00 2001 From: Mark Moser Date: Mon, 1 Aug 2016 13:10:59 -0500 Subject: [PATCH] degraded security for live-coder jQuery load --- app/controllers/candidate_controller.rb | 2 +- test/controllers/candidate_controller_test.rb | 5 +---- 2 files changed, 2 insertions(+), 5 deletions(-) diff --git a/app/controllers/candidate_controller.rb b/app/controllers/candidate_controller.rb index 0dc39d0..e3860dd 100644 --- a/app/controllers/candidate_controller.rb +++ b/app/controllers/candidate_controller.rb @@ -1,5 +1,5 @@ class CandidateController < ApplicationController - before_action :authorize_candidate, except: [:welcome, :validate] + before_action :authorize_candidate, except: [:welcome, :validate, :live_coder] def welcome end diff --git a/test/controllers/candidate_controller_test.rb b/test/controllers/candidate_controller_test.rb index 8bc745f..cdc2989 100644 --- a/test/controllers/candidate_controller_test.rb +++ b/test/controllers/candidate_controller_test.rb @@ -10,7 +10,7 @@ class CandidateControllerTest < ActionDispatch::IntegrationTest assert_response :success end - test "should require auth or redirect" do + test "should require auth and redirect" do get saved_path assert_redirected_to welcome_path @@ -25,9 +25,6 @@ class CandidateControllerTest < ActionDispatch::IntegrationTest get question_path(questions(:fed1).id) assert_redirected_to welcome_path - - get live_coder_path(questions(:fed1).id) - assert_redirected_to welcome_path end test "should auth to question" do