Learn more about these different git repos.
Other Git URLs
I was writing unitests for this in the logged in and then logged out state and noticed I can edit someone else's hub without being logged in.
For example
http://127.0.0.1:5000/ralph/
http://127.0.0.1:5000/ralph/edit
http://127.0.0.1:5000/ralph/add
I think we need to
While hubs do have authentication the entire authorization layer is currently missing indeed :)
okay would the end behvior return a http status of 403? i'd like to write the tests for this route
Since the code isn't written it's hard to say, but 403 seems reasonable in this context, so let's go with it and adjust later if we need :)
Login to comment on this ticket.