API: return 401 for invalid session

2012-09-20 08:38:08 -07:00 · 2012-09-20 08:38:08 -07:00 · b08d33f6a9
commit b08d33f6a9
parent 3dd940d4cb
2 changed files with 4 additions and 5 deletions
--- a/spec/requests/api/session_spec.rb
+++ b/spec/requests/api/session_spec.rb
@ -19,7 +19,7 @@ describe Gitlab::API do
    context "when invalid password" do
      it "should return authentication error" do
        post api("/session"), email: user.email, password: '123'
-        response.status.should == 403
+        response.status.should == 401

        json_response['email'].should be_nil
        json_response['private_token'].should be_nil
@ -29,7 +29,7 @@ describe Gitlab::API do
    context "when empty password" do
      it "should return authentication error" do
        post api("/session"), email: user.email
-        response.status.should == 403
+        response.status.should == 401

        json_response['email'].should be_nil
        json_response['private_token'].should be_nil