**Need to** add authorization tests **To** verify that all our endpoints are protected by authorization An example of the test can be viewed [here](https://github.com/TourmalineCore/inner-circle-items-api/blob/master/e2e/items-no-permissions-lead-to-unauthorized.feature)
