assert_response 403
end
- test "active user can read an object in the anonymous group" do
- # make sure there is no link explicitly granting permission to
- # the anonymous collection or its owner
- get("/arvados/v1/permissions/#{collections(:anonymous).owner_uuid}",
- { :format => :json },
- auth(:admin))
- assert_response :success
- assert_empty json_response['items']
-
- get("/arvados/v1/permissions/#{collections(:anonymous).uuid}",
- { :format => :json },
- auth(:admin))
- assert_response :success
- assert_empty json_response['items']
-
- # the active user should still be able to read the anonymous collection.
- get("/arvados/v1/collections/#{collections(:anonymous).uuid}",
- { :format => :json },
- auth(:active))
- assert_response :success
- assert_equal json_response['manifest_text'], collections(:anonymous).manifest_text
+ test "active user can read the empty collection" do
+ # The active user should be able to read the empty collection.
- # the active user should be able to read the empty collection
get("/arvados/v1/collections/#{empty_collection_uuid}",
{ :format => :json },
auth(:active))