Fails the test when origin is invalid

kjetilk · rubensworks · commit 99d4d1cd3acb · 2018-11-27T10:39:49.000+01:00
diff --git a/test/integration/acl-oidc-test.js b/test/integration/acl-oidc-test.js
@@ -294,14 +294,15 @@ describe('ACL with WebID+OIDC over HTTP', function () {
           done()
         })
       })
-    it('user1 should be able to access test directory when origin is invalid',
+    it('user1 should not be able to access test directory when origin is invalid',
       function (done) {
         var options = createOptions('/origin/test-folder/', 'user1')
         options.headers.origin = origin2
 
         request.head(options, function (error, response, body) {
           assert.equal(error, null)
-          assert.equal(response.statusCode, 200)
+          assert.equal(response.statusCode, 403)
+          assert.equal(response.statusMessage, 'Origin Unauthorized')
           done()
         })
       })
@@ -326,14 +327,15 @@ describe('ACL with WebID+OIDC over HTTP', function () {
           done()
         })
       })
-    it('agent should be able to access test directory when origin is invalid',
+    it('agent should not be able to access test directory when origin is invalid',
       function (done) {
         var options = createOptions('/origin/test-folder/')
         options.headers.origin = origin2
 
         request.head(options, function (error, response, body) {
           assert.equal(error, null)
-          assert.equal(response.statusCode, 200)
+          assert.equal(response.statusCode, 403)
+          assert.equal(response.statusMessage, 'Origin Unauthorized')
           done()
         })
       })
