Merge pull request #133 from dgreisen/auth2

authenticate() can pass custom error message to client through reject(msg)

src/server/useragent.coffee

@@ -52,10 +52,10 @@ module.exports = (model, options) ->
         else throw new Error "Invalid action name #{name}"
 
       action.responded = false
-      action.reject = ->
+      action.reject = (message='forbidden') ->
         throw new Error 'Multiple accept/reject calls made' if @responded
         @responded = true
-        userCallback 'forbidden', null
+        userCallback message, null
       action.accept = ->
         throw new Error 'Multiple accept/reject calls made' if @responded
         @responded = true

test/client.coffee

@@ -378,6 +378,13 @@ genTests = (client) -> testCase
 
       doc.insert 0, 'hi'
 
+  'error message passed to reject is the error passed to client': (test) ->
+    @auth = (client, action) -> action.reject('not allowed')
+
+    client.open @name, 'text', "http://localhost:#{@port}/sjs", (error, doc) =>
+      test.strictEqual error, 'not allowed'
+      test.done()
+
   'If auth rejects your op, other transforms work correctly': (test) ->
     # This should probably have a randomized tester as well.
     @auth = (client, action) ->