Updates tests to reflect sign_out route change

- Also remove sign_out DELETE route from read-only whitelist routes
author: Joe Marty <jmarty@iexposure.com> 2017-11-07 11:42:25 -0600
committer: Joe Marty <jmarty@iexposure.com> 2017-11-07 11:42:25 -0600
commit: 4dea7944c46287707b6b65ca10e0af0b69a57a21 (patch)
tree: ba3e4b227d6996b71919e980e9f327cc5cae1642 /spec/routing
parent: dfeb60daa607dd96be689cfd3b2f929138efacdf (diff)
download: gitlab-ce-4dea7944c46287707b6b65ca10e0af0b69a57a21.tar.gz
1 files changed, 4 insertions, 2 deletions
diff --git a/spec/routing/routing_spec.rb b/spec/routing/routing_spec.rb
index 609481603af..17cea6f238b 100644
--- a/spec/routing/routing_spec.rb
+++ b/spec/routing/routing_spec.rb
@@ -257,8 +257,10 @@ describe "Authentication", "routing" do
     expect(post("/users/sign_in")).to route_to('sessions#create')
   end
 
-  it "DELETE /users/sign_out" do
-    expect(delete("/users/sign_out")).to route_to('sessions#destroy')
+  # sign_out with GET instead of DELETE facilitates ad-hoc single-sign-out processes
+  # (https://gitlab.com/gitlab-org/gitlab-ce/issues/39708)
+  it "GET /users/sign_out" do
+    expect(get("/users/sign_out")).to route_to('sessions#destroy')
   end
 
   it "POST /users/password" do
author	Joe Marty <jmarty@iexposure.com>	2017-11-07 11:42:25 -0600
committer	Joe Marty <jmarty@iexposure.com>	2017-11-07 11:42:25 -0600
commit	4dea7944c46287707b6b65ca10e0af0b69a57a21 (patch)
tree	ba3e4b227d6996b71919e980e9f327cc5cae1642 /spec/routing
parent	dfeb60daa607dd96be689cfd3b2f929138efacdf (diff)
download	gitlab-ce-4dea7944c46287707b6b65ca10e0af0b69a57a21.tar.gz