gitlabhq/spec/requests/api
Sebastian Ziebell e9d3b96595 API: fixes visibility of project hook
When a user is not authorized to see the list of hooks for a project, he is
still able to access the hooks separately. For example if access to
`GET /projects/:id/hooks` fails and returns a `403 Unauthorized` error it is
still possible to access a hook directly via `GET /projects/:id/hooks/:hook_id`.

Fixes access, also added tests to check access and status codes of hooks.
2013-02-16 14:42:49 +01:00
..
groups_spec.rb Add test for duplicate group paths 2013-02-01 18:58:53 +01:00
issues_spec.rb Rspec fixes 2013-01-04 18:50:31 +02:00
merge_requests_spec.rb Rspec fixes 2013-01-04 18:50:31 +02:00
milestones_spec.rb Rspec fixes 2013-01-04 18:50:31 +02:00
notes_spec.rb add specs for api -> merge request notes 2013-01-31 08:42:11 +02:00
projects_spec.rb API: fixes visibility of project hook 2013-02-16 14:42:49 +01:00
session_spec.rb Remove backward compatibility of factories. 2012-11-13 22:27:45 +11:00
users_spec.rb Merge branch 'extend_user_api' of https://github.com/bladealslayer/gitlabhq into bladealslayer-extend_user_api 2013-01-31 13:00:50 +02:00