diff --git a/spec/controllers/main_controller_spec.rb b/spec/controllers/main_controller_spec.rb
--- a/spec/controllers/main_controller_spec.rb
+++ b/spec/controllers/main_controller_spec.rb
@@ -14,26 +14,34 @@
                        :source => 'sample source',
                        :compiler_message => 'none')
     @user = mock(User, :id => 1, :login => 'john')
-    Submission.should_receive(:find).with(@submission.id.to_s).and_return(@submission)
+  end
+
+  it "should redirect user to login page when unlogged-in user try to access main/list" do
+    get 'list'
+    response.should redirect_to(:action => 'login')
   end
 
   it "should let user sees her own source" do
+    Submission.should_receive(:find).with(@submission.id.to_s).and_return(@submission)
     get 'source', {:id => @submission.id}, {:user_id => 1}
     response.should be_success
   end
 
   it "should let user sees her own compiler message" do
+    Submission.should_receive(:find).with(@submission.id.to_s).and_return(@submission)
     get 'compiler_msg', {:id => @submission.id}, {:user_id => 1}
     response.should be_success
   end
 
   it "should not let user sees other user's source" do
+    Submission.should_receive(:find).with(@submission.id.to_s).and_return(@submission)
     get 'source', {:id => @submission.id}, {:user_id => 2}
     flash[:notice].should =~ /[Ee]rror/ 
     response.should redirect_to(:action => 'list')
   end
 
   it "should not let user sees other user's compiler message" do
+    Submission.should_receive(:find).with(@submission.id.to_s).and_return(@submission)
     get 'compiler_msg', {:id => @submission.id}, {:user_id => 2}
     flash[:notice].should =~ /[Ee]rror/ 
     response.should redirect_to(:action => 'list')