app/models/agents/webhook_agent.rb

@@ -40,7 +40,7 @@ module Agents

                     def receive_web_request(params, method, format)
              

                       secret = params.delete('secret')
              

                       verbs = (options['verbs'] ? options['verbs'] : 'post').split(';')
              

                -      return ["Please use #{verbs.first.upcase} requests only", 401] unless verbs.include?(method)
              

                +      return ["Please use #{verbs.join('/').upcase} requests only", 401] unless verbs.include?(method)
              

                       return ["Not Authorized", 401] unless secret == interpolated['secret']
              

                 
              

                       [payload_for(params)].flatten.each do |payload|
              

spec/models/agents/webhook_agent_spec.rb

@@ -80,6 +80,14 @@ describe Agents::WebhookAgent do

                           expect(out).to eq(['Event Created', 201])
              

                         end
              

                 
              

                +        it "should not accept PUT" do
              

                +          out = nil
              

                +          expect {
              

                +            out = agent.receive_web_request({ 'secret' => 'foobar', 'some_key' => payload }, "put", "text/html")
              

                +          }.to change { Event.count }.by(0)
              

                +          expect(out).to eq(['Please use GET/POST requests only', 401])
              

                +        end
              

                +
              

                       end
              

                 
              

                       context "accepting only get" do