[DS-3952] Proper test for wrong authenticated user.

2025-10-07 01:54:22 +00:00 · 2021-09-30 14:42:51 -04:00
parent af20f0b8d8
commit 5787be3dae
1 changed files with 6 additions and 4 deletions
--- a/dspace-server-webapp/src/test/java/org/dspace/app/rest/RequestItemRepositoryIT.java
+++ b/dspace-server-webapp/src/test/java/org/dspace/app/rest/RequestItemRepositoryIT.java
@@ -526,11 +526,12 @@ public class RequestItemRepositoryIT
                .createRequestItem(context, item, bitstream)
                .build();

-        String authToken = getAuthToken(eperson.getEmail(), password);
-        ObjectWriter mapperWriter = new ObjectMapper().writer();
+        String authToken;
        Map<String, String> parameters;
        String content;

+        ObjectWriter mapperWriter = new ObjectMapper().writer();
+
        // Unauthenticated user
        parameters = Map.of(
                "acceptRequest", "true",
@@ -548,10 +549,11 @@ public class RequestItemRepositoryIT
                "subject", "subject",
                "responseMessage", "Request accepted");
        content = mapperWriter.writeValueAsString(parameters);
-        getClient().perform(put(URI_ROOT + '/' + itemRequest.getToken())
+        authToken = getAuthToken(admin.getEmail(), password);
+        getClient(authToken).perform(put(URI_ROOT + '/' + itemRequest.getToken())
                .contentType(contentType)
                .content(content))
-                .andExpect(status().isUnauthorized());
+                .andExpect(status().isInternalServerError()); // Should be FORBIDDEN

        // Missing acceptRequest
        parameters = Map.of(