19 lines
469 B
Ruby
19 lines
469 B
Ruby
# frozen_string_literal: true
|
|
|
|
require 'rails_helper'
|
|
|
|
RSpec.describe 'Auth Sessions' do
|
|
describe 'POST /auth/sign_in' do
|
|
# The rack-attack check has issues with the non-nested invalid param used here
|
|
before { Rack::Attack.enabled = false }
|
|
after { Rack::Attack.enabled = true }
|
|
|
|
it 'gracefully handles invalid nested params' do
|
|
post user_session_path(user: 'invalid')
|
|
|
|
expect(response)
|
|
.to have_http_status(400)
|
|
end
|
|
end
|
|
end
|