spec/requests/api · e9d3b9659525c23a1d8c3b755c792040a5b41148 · Forest Godfrey / gitlab-ce

API: fixes visibility of project hook · e9d3b965

authored Feb 16, 2013

When a user is not authorized to see the list of hooks for a project, he is
still able to access the hooks separately. For example if access to
`GET /projects/:id/hooks` fails and returns a `403 Unauthorized` error it is
still possible to access a hook directly via `GET /projects/:id/hooks/:hook_id`.

Fixes access, also added tests to check access and status codes of hooks.

e9d3b965

Name	Last commit	Last update
..
groups_spec.rb		Loading commit data...
issues_spec.rb		Loading commit data...
merge_requests_spec.rb		Loading commit data...
milestones_spec.rb		Loading commit data...
notes_spec.rb		Loading commit data...
projects_spec.rb		Loading commit data...
session_spec.rb		Loading commit data...
users_spec.rb		Loading commit data...