@@ -32,6 +32,10 @@ public:

     {

         std::vector<user> found_user = directory_.find_user (authorizer_user_name);

+        if (requester_user_name.empty()) {

+            return false;

+        }

+

         if (requester_user_name == authorizer_user_name) {

             return false;

         }

@@ -132,6 +132,25 @@ bool validator_fails_with_own_token() {

 }

+bool validator_fails_with_unknown_requester() {

+    // given

+    std::string requester_user_name("");

+    std::string authorizer_user_name("authorizer");

+    std::string authorizer_token("token");

+    directory directory (share (new fake_directory (authorizer_user_name)));

+    user_token_supplier user_token_supplier (share (new

+            fake_user_token_supplier(authorizer_token)));

+    validator validator = validator::create (directory, user_token_supplier);

+

+    // when

+    bool actual = validator.validate (requester_user_name, authorizer_user_name, authorizer_token);

+

+    // then

+    check(!actual, "should not be valid");

+    succeed();

+

+}

+

 RESET_VARS_START

 RESET_VARS_END

@@ -141,6 +160,7 @@ bool run_tests()

     test (validator_fails_unknown_user);

     test (validator_fails_incorrect_token);

     test (validator_fails_with_own_token);

+    test (validator_fails_with_unknown_requester);

     succeed();

 }