check_fail(:revoke, :administrator_user, :moderator)
end
+private
+
def check_fail(action, user, role)
get '/login'
assert_response :redirect
follow_redirect!
assert_response :success
- get "/user/#{users(:second_public_user).display_name}/role/#{role}/#{action}"
- assert_response :redirect
+ post "/user/#{users(:second_public_user).display_name}/role/#{role}/#{action}"
assert_redirected_to :controller => 'user', :action => 'view', :display_name => users(:second_public_user).display_name
reset!
follow_redirect!
assert_response :success
- get "/user/#{users(:second_public_user).display_name}/role/#{role}/#{action}"
- assert_response :success
- post "/user/#{users(:second_public_user).display_name}/role/#{role}/#{action}", {:confirm => "yes", :nonce => session[:nonce]}
- assert_response :redirect
+ post "/user/#{users(:second_public_user).display_name}/role/#{role}/#{action}"
assert_redirected_to :controller => 'user', :action => 'view', :display_name => users(:second_public_user).display_name
reset!