The documentation (https://github.com/OWASP/railsgoat/wiki/A7-Missing-Function-Level-Access-Control--(Admin-Controller)) utilizes `before_filter` which has been deprecated in Rails 5. That aside, the unit test still fails because it's expecting the path to be `/` not `/dashboard/home`: ``` Failure/Error: expect(current_path).to eq("/") expected: "/" got: "/dashboard/home" ```
Activity
Updated unit test for url_access to have correct path, allowing users…