fix test

Author: wxiaoguang

routers/api/v1/repo/action.go

@@ -1195,7 +1195,7 @@ func DownloadArtifactRaw(ctx *context.APIContext) {
 	expires := ctx.Req.URL.Query().Get("expires")
 	sigBytes, _ := base64.URLEncoding.DecodeString(sigStr)
 
-	expectedSig := buildSignature(buildDownloadRawEndpoint(ctx.Repo.Repository, art.ID), expires, art.ID)
+	expectedSig := buildSignature(buildDownloadRawEndpoint(repo, art.ID), expires, art.ID)
 	if !hmac.Equal(sigBytes, expectedSig) {
 		ctx.Error(http.StatusUnauthorized, "DownloadArtifactRaw", "Error unauthorized")
 		return

tests/integration/api_actions_artifact_v4_test.go

@@ -536,9 +536,10 @@ func TestActionsArtifactV4DownloadRawArtifactMismatchedRepoOwnerMissingSignature
 	token := getTokenForLoggedInUser(t, session, auth_model.AccessTokenScopeWriteRepository)
 
 	// confirm artifacts of wrong owner or repo is not visible
+	// TODO: is this test right? `zip/raw` endpoint doesn't use the token?
 	req := NewRequestWithBody(t, "GET", fmt.Sprintf("/api/v1/repos/%s/actions/artifacts/%d/zip/raw", repo.FullName(), 22), nil).
 		AddTokenAuth(token)
-	MakeRequest(t, req, http.StatusUnauthorized)
+	MakeRequest(t, req, http.StatusNotFound)
 }
 
 func TestActionsArtifactV4DownloadRawArtifactCorrectRepoOwnerMissingSignatureUnauthorized(t *testing.T) {