diff options
author | Bernhard Posselt <dev@bernhard-posselt.com> | 2014-04-09 01:59:42 +0200 |
---|---|---|
committer | Bernhard Posselt <dev@bernhard-posselt.com> | 2014-04-09 22:52:27 +0200 |
commit | 4637dcc4587ed0c3b1695568a3c8a3853d695c5d (patch) | |
tree | e1778a3ddbaa95568ab90c211d49925f4946d157 /tests/unit/api | |
parent | 6d365e8083ecf67212203fe86fd1e1bf2b4ac281 (diff) |
migrate security annotations, please review
Diffstat (limited to 'tests/unit/api')
-rw-r--r-- | tests/unit/api/FeedAPITest.php | 7 | ||||
-rw-r--r-- | tests/unit/api/FolderAPITest.php | 3 | ||||
-rw-r--r-- | tests/unit/api/ItemAPITest.php | 3 | ||||
-rw-r--r-- | tests/unit/api/NewsAPITest.php | 10 |
4 files changed, 9 insertions, 14 deletions
diff --git a/tests/unit/api/FeedAPITest.php b/tests/unit/api/FeedAPITest.php index 03dd762cb..935b5214b 100644 --- a/tests/unit/api/FeedAPITest.php +++ b/tests/unit/api/FeedAPITest.php @@ -84,8 +84,7 @@ class FeedAPITest extends ControllerTestUtility { private function assertDefaultAnnotations($methodName){ - $annotations = array('IsAdminExemption', 'IsSubAdminExemption', - 'Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoAdminRequired', 'NoCSRFRequired', 'API'); $this->assertAnnotations($this->feedAPI, $methodName, $annotations); } @@ -116,13 +115,13 @@ class FeedAPITest extends ControllerTestUtility { public function testGetAllFromUsersAnnotations(){ - $annotations = array('Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoCSRFRequired', 'API'); $this->assertAnnotations($this->feedAPI, 'getAllFromAllUsers', $annotations); } public function testUpdateAnnotations(){ - $annotations = array('Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoCSRFRequired', 'API'); $this->assertAnnotations($this->feedAPI, 'update', $annotations); } diff --git a/tests/unit/api/FolderAPITest.php b/tests/unit/api/FolderAPITest.php index 843ac004f..c835e4722 100644 --- a/tests/unit/api/FolderAPITest.php +++ b/tests/unit/api/FolderAPITest.php @@ -80,8 +80,7 @@ class FolderAPITest extends ControllerTestUtility { private function assertDefaultAnnotations($methodName){ - $annotations = array('IsAdminExemption', 'IsSubAdminExemption', - 'Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoAdminRequired', 'NoCSRFRequired', 'API'); $this->assertAnnotations($this->folderAPI, $methodName, $annotations); } diff --git a/tests/unit/api/ItemAPITest.php b/tests/unit/api/ItemAPITest.php index 5bbf7edf1..4c44e37f2 100644 --- a/tests/unit/api/ItemAPITest.php +++ b/tests/unit/api/ItemAPITest.php @@ -69,8 +69,7 @@ class ItemAPITest extends ControllerTestUtility { private function assertDefaultAnnotations($methodName){ - $annotations = array('IsAdminExemption', 'IsSubAdminExemption', - 'Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoAdminRequired', 'NoCSRFRequired', 'API'); $this->assertAnnotations($this->itemAPI, $methodName, $annotations); } diff --git a/tests/unit/api/NewsAPITest.php b/tests/unit/api/NewsAPITest.php index 9fa467913..f0aaf2411 100644 --- a/tests/unit/api/NewsAPITest.php +++ b/tests/unit/api/NewsAPITest.php @@ -59,8 +59,7 @@ class NewsAPITest extends ControllerTestUtility { private function assertDefaultAnnotations($methodName){ - $annotations = array('IsAdminExemption', 'IsSubAdminExemption', - 'Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoAdminRequired', 'NoCSRFRequired', 'API'); $this->assertAnnotations($this->newsAPI, $methodName, $annotations); } @@ -69,12 +68,12 @@ class NewsAPITest extends ControllerTestUtility { } public function testBeforeUpdateAnnotations(){ - $annotations = array('Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoCSRFRequired', 'API'); $this->assertAnnotations($this->newsAPI, 'beforeUpdate', $annotations); } public function testAfterUpdateAnnotations(){ - $annotations = array('Ajax', 'CSRFExemption', 'API'); + $annotations = array('NoCSRFRequired', 'API'); $this->assertAnnotations($this->newsAPI, 'afterUpdate', $annotations); } @@ -109,8 +108,7 @@ class NewsAPITest extends ControllerTestUtility { public function testCorsAnnotations(){ - $annotations = array('IsAdminExemption', 'IsSubAdminExemption', - 'Ajax', 'CSRFExemption', 'IsLoggedInExemption'); + $annotations = array('NoAdminRequired', 'NoCSRFRequired', 'PublicPage'); $this->assertAnnotations($this->newsAPI, 'cors', $annotations); } |