Make sure that only admins or card creators can delete cards

This commit is contained in:
Jorge Manrubia
2025-11-05 16:37:43 +01:00
parent de8e861712
commit 3b34703db3
7 changed files with 91 additions and 8 deletions
+5
View File
@@ -27,6 +27,11 @@ module SessionTestHelper
assert_not_nil cookie, "Expected session_token cookie to be set after sign in"
end
def logout_and_sign_in_as(identity)
Session.delete_all
sign_in_as identity
end
def sign_out
untenanted do
delete session_path