Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/spec/requests/sessions_spec.rb
diff options
context:
space:
mode:
authorGitLab Bot <gitlab-bot@gitlab.com>2020-02-21 18:09:05 +0300
committerGitLab Bot <gitlab-bot@gitlab.com>2020-02-21 18:09:05 +0300
commitcf6a3e7ed4cb10a3e9fcbda810601387afc8b8d6 (patch)
treebda3707e95a53cb225793fded61d5073950b0b68 /spec/requests/sessions_spec.rb
parent2a040e2655fe0a99df61ad0a7bd0c27e68af0c38 (diff)
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'spec/requests/sessions_spec.rb')
-rw-r--r--spec/requests/sessions_spec.rb17
1 files changed, 17 insertions, 0 deletions
diff --git a/spec/requests/sessions_spec.rb b/spec/requests/sessions_spec.rb
new file mode 100644
index 00000000000..6697700c37d
--- /dev/null
+++ b/spec/requests/sessions_spec.rb
@@ -0,0 +1,17 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe 'Sessions' do
+ context 'authentication', :allow_forgery_protection do
+ let(:user) { create(:user) }
+
+ it 'logout does not require a csrf token' do
+ login_as(user)
+
+ post(destroy_user_session_path, headers: { 'X-CSRF-Token' => 'invalid' })
+
+ expect(response).to redirect_to(new_user_session_path)
+ end
+ end
+end
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-04 14:38:51 +0300