degraded security for live-coder jQuery load

This commit is contained in:
Mark Moser 2016-08-01 13:10:59 -05:00
parent fff062a3a7
commit 90d0ef9db7
2 changed files with 2 additions and 5 deletions

View File

@ -1,5 +1,5 @@
class CandidateController < ApplicationController class CandidateController < ApplicationController
before_action :authorize_candidate, except: [:welcome, :validate] before_action :authorize_candidate, except: [:welcome, :validate, :live_coder]
def welcome def welcome
end end

View File

@ -10,7 +10,7 @@ class CandidateControllerTest < ActionDispatch::IntegrationTest
assert_response :success assert_response :success
end end
test "should require auth or redirect" do test "should require auth and redirect" do
get saved_path get saved_path
assert_redirected_to welcome_path assert_redirected_to welcome_path
@ -25,9 +25,6 @@ class CandidateControllerTest < ActionDispatch::IntegrationTest
get question_path(questions(:fed1).id) get question_path(questions(:fed1).id)
assert_redirected_to welcome_path assert_redirected_to welcome_path
get live_coder_path(questions(:fed1).id)
assert_redirected_to welcome_path
end end
test "should auth to question" do test "should auth to question" do