diff --git a/app/controllers/aspects_controller.rb b/app/controllers/aspects_controller.rb
index b2afa078fb2fb1d6d1a8e18dbacdb7d019cfa92f..2d3851d232001a4a175af846582a96360e7fb118 100644
--- a/app/controllers/aspects_controller.rb
+++ b/app/controllers/aspects_controller.rb
@@ -77,7 +77,7 @@ class AspectsController < ApplicationController
   end
 
   def edit
-    @aspect = current_user.aspect_by_id params[:id]
+    @aspect = current_user.aspects.where(:id => params[:id]).first
     @contacts = current_user.contacts.where(:pending => false)
     unless @aspect
       render :file => "#{Rails.root}/public/404.html", :layout => false, :status => 404
diff --git a/spec/controllers/aspects_controller_spec.rb b/spec/controllers/aspects_controller_spec.rb
index 0157be3949498c061d6b41200eaacf31a9990491..e3445f2d4b217537a01eda289d38588d81316deb 100644
--- a/spec/controllers/aspects_controller_spec.rb
+++ b/spec/controllers/aspects_controller_spec.rb
@@ -331,6 +331,13 @@ describe AspectsController do
     end
   end
 
+  describe '#edit' do
+    it 'renders' do
+      get :edit, :id => @aspect0.id
+      response.should be_success
+    end
+  end
+
   describe "#remove_from_aspect" do
     it 'removes contacts from an aspect' do
       @user.add_contact_to_aspect(@contact, @aspect1)
diff --git a/spec/controllers/photos_controller_spec.rb b/spec/controllers/photos_controller_spec.rb
index a483b7d3792e7282da0ec8e6b6a23b97f94d2a61..869511ad89468f072fa5910c96d9c2dbda84471c 100644
--- a/spec/controllers/photos_controller_spec.rb
+++ b/spec/controllers/photos_controller_spec.rb
@@ -74,6 +74,13 @@ describe PhotosController do
       assigns[:ownership].should be_true
     end
 
+    it "renders a show page for another user's photo" do
+      get :show, :id => photo2.id
+      response.status.should == 200
+
+      assigns[:photo].should == photo2
+      assigns[:ownership].should be_false
+    end
   end
 
   describe '#edit' do