summaryrefslogtreecommitdiff
path: root/test/functional/api/sessions_controller_test.rb
diff options
context:
space:
mode:
Diffstat (limited to 'test/functional/api/sessions_controller_test.rb')
-rw-r--r--test/functional/api/sessions_controller_test.rb3
1 files changed, 2 insertions, 1 deletions
diff --git a/test/functional/api/sessions_controller_test.rb b/test/functional/api/sessions_controller_test.rb
index 03a1ef9..06a3c22 100644
--- a/test/functional/api/sessions_controller_test.rb
+++ b/test/functional/api/sessions_controller_test.rb
@@ -44,7 +44,8 @@ class Api::SessionsControllerTest < ApiControllerTest
api_post :update, :id => @user.login, :client_auth => @client_hex
- assert_nil session[:handshake]
+ assert_nil session[:handshake],
+ 'session should be cleared to prevent session fixation attacks'
assert_response :success
assert json_response.keys.include?("id")
assert json_response.keys.include?("token")
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-10 16:52:38 +0000