Comment speaks for itself. Look at surrounding code.
Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Nick Clemens <nick@bywatersolutions.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
$tx->req->cookies( { name => 'CGISESSID', value => $session->id } );
$tx->req->env( { REMOTE_ADDR => $remote_address } );
- # FIXME This is not correct They are authenticated!
- # Patron is not authenticated yet
+ # Session is still anonymous, no borrowernumber yet: Unauthorized
$t->request_ok($tx)->status_is(401);
# Patron is partially authenticated (credentials correct)