Move admin incoming message actions to use RESTful routes.

So data changing actions require a POST and can be protected against CSRF.
author: Louise Crow <louise.crow@gmail.com> 2014-11-04 21:56:54 +0000
committer: Louise Crow <louise.crow@gmail.com> 2014-12-18 14:03:49 +0000
commit: 49758c23ccca57483413a4df10308e95fb7c8cc4 (patch)
tree: 2575293288b2fd315cf6897c485e91683c6006d2 /spec/integration
parent: 095e216f43eba4081730335ba6be90e12ce02b8c (diff)
2 files changed, 4 insertions, 4 deletions
diff --git a/spec/integration/download_request_spec.rb b/spec/integration/download_request_spec.rb
index 638198cde..648d46a6e 100644
--- a/spec/integration/download_request_spec.rb
+++ b/spec/integration/download_request_spec.rb
@@ -56,7 +56,7 @@ describe 'when making a zipfile available' do
                 admin = login(FactoryGirl.create(:admin_user))
                 post_data = {:incoming_message => {:prominence => 'requester_only',
                                                    :prominence_reason => 'boring'}}
-                admin.post_via_redirect "/en/admin/incoming/update/#{info_request.incoming_messages.first.id}", post_data
+                admin.put_via_redirect "/en/admin/incoming_messages/#{info_request.incoming_messages.first.id}", post_data
                 admin.response.should be_success
 
                 # Admin retains the requester only things
@@ -104,7 +104,7 @@ describe 'when making a zipfile available' do
                 post_data = {:outgoing_message => {:prominence => 'requester_only',
                                                    :prominence_reason => 'boring',
                                                    :body => 'Some information please'}}
-                admin.post_via_redirect "/en/admin/outgoing/update/#{info_request.outgoing_messages.first.id}", post_data
+                admin.put_via_redirect "/en/admin/outgoing/update/#{info_request.outgoing_messages.first.id}", post_data
                 admin.response.should be_success
 
                 # Admin retains the requester only things
@@ -237,7 +237,7 @@ describe 'when making a zipfile available' do
                 admin = login(FactoryGirl.create(:admin_user))
                 post_data = {:incoming_message => {:prominence => 'requester_only',
                                                    :prominence_reason => 'boring'}}
-                admin.post_via_redirect "/en/admin/incoming/update/#{info_request.incoming_messages.first.id}", post_data
+                admin.put_via_redirect "/en/admin/incoming_messages/#{info_request.incoming_messages.first.id}", post_data
                 admin.response.should be_success
 
                 # Admin retains the requester only things
diff --git a/spec/integration/view_request_spec.rb b/spec/integration/view_request_spec.rb
index eecb984f5..4d04c97d7 100644
--- a/spec/integration/view_request_spec.rb
+++ b/spec/integration/view_request_spec.rb
@@ -33,7 +33,7 @@ describe "When viewing requests" do
             # Admin makes the incoming message requester only
             post_data = {:incoming_message => {:prominence => 'hidden',
                                                :prominence_reason => 'boring'}}
-            admin.post_via_redirect "/admin/incoming/update/#{info_request.incoming_messages.first.id}", post_data
+            admin.put_via_redirect "/admin/incoming_messages/#{info_request.incoming_messages.first.id}", post_data
             admin.response.should be_success
 
             cache_directories_exist?(info_request).should be_false
author	Louise Crow <louise.crow@gmail.com>	2014-11-04 21:56:54 +0000
committer	Louise Crow <louise.crow@gmail.com>	2014-12-18 14:03:49 +0000
commit	49758c23ccca57483413a4df10308e95fb7c8cc4 (patch)
tree	2575293288b2fd315cf6897c485e91683c6006d2 /spec/integration
parent	095e216f43eba4081730335ba6be90e12ce02b8c (diff)