Return 400 instead of 404 for bad token

2025-06-03 14:15:11 +08:00 · 2018-10-12 10:51:41 +11:00
parent 048cdfbcfa
commit a1c912b630
3 changed files with 5 additions and 6 deletions
--- a/spec/requests/users_controller_spec.rb
+++ b/spec/requests/users_controller_spec.rb
@ -3287,7 +3287,7 @@ describe UsersController do

        post "/u/#{user.username}/preferences/revoke-auth-token.json", params: { token_id: token.id }

-        expect(response.status).to eq(404)
+        expect(response.status).to eq(400)
      end

      it 'logs user out from everywhere if token_id is not present' do