X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/f84980f183b9ca4336ed4eec49c2d0ff8aff7165..317b1871f48db1da4abd315c3e67edb910af6b57:/test/controllers/api/nodes_controller_test.rb?ds=sidebyside diff --git a/test/controllers/api/nodes_controller_test.rb b/test/controllers/api/nodes_controller_test.rb index 645408dd4..95658842b 100644 --- a/test/controllers/api/nodes_controller_test.rb +++ b/test/controllers/api/nodes_controller_test.rb @@ -86,7 +86,7 @@ module Api end def test_create_invalid_xml - ## Only test public user here, as test_create should cover what's the forbiddens + ## Only test public user here, as test_create should cover what's the forbidden ## that would occur here user = create(:user) @@ -527,7 +527,7 @@ module Api # try and put something into a string that the API might # use unquoted and therefore allow code injection... xml = "" \ - '' \ + "" \ "" put node_create_path, :params => xml, :headers => auth_header assert_require_public_data "Shouldn't be able to create with non-public user" @@ -538,7 +538,7 @@ module Api # try and put something into a string that the API might # use unquoted and therefore allow code injection... xml = "" \ - '' \ + "" \ "" put node_create_path, :params => xml, :headers => auth_header assert_response :success @@ -559,6 +559,8 @@ module Api assert_includes apinode.tags, "\#{@user.inspect}" end + private + ## # update the changeset_id of a node element def update_changeset(xml, changeset_id)