Broken Authorization specs added.

2013-09-27 17:30:57 -05:00
parent 269d5a0075
commit 1c8b6e9e17
2 changed files with 26 additions and 1 deletions
@@ -6,7 +6,7 @@ feature 'xss' do
    @normal_user = UserFixture.normal_user
  end

-  scenario 'injection attack on account_settings', :js => true do
+  scenario 'xss attack on account_settings', :js => true do
    login @normal_user

    visit "/users/#{@normal_user.user_id}/account_settings"