Fix group_member_spec to not leak information

4cd04443 · Robert Schilling · ca40479c · 4cd04443
Commit 4cd04443 authored Apr 13, 2016 by Robert Schilling
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 5 deletions

spec/requests/api/group_members_spec.rb spec/requests/api/group_members_spec.rb +7 -5

No files found.
--- a/spec/requests/api/group_members_spec.rb
+++ b/spec/requests/api/group_members_spec.rb
@@ -42,9 +42,10 @@ describe API::API, api: true  do
        end
      end

-      it "users not part of the group should get access error" do
+      it 'users not part of the group should get access error' do
        get api("/groups/#{group_with_members.id}/members", stranger)
-        expect(response.status).to eq(403)
+
+        expect(response.status).to eq(404)
      end
    end
  end
@@ -165,12 +166,13 @@ describe API::API, api: true  do
    end
  end

-  describe "DELETE /groups/:id/members/:user_id" do
-    context "when not a member of the group" do
+  describe 'DELETE /groups/:id/members/:user_id' do
+    context 'when not a member of the group' do
      it "should not delete guest's membership of group_with_members" do
        random_user = create(:user)
        delete api("/groups/#{group_with_members.id}/members/#{owner.id}", random_user)
-        expect(response.status).to eq(403)
+
+        expect(response.status).to eq(404)
      end
    end