diff --git a/test/controllers/api/v1/memberships_controller_test.rb b/test/controllers/api/v1/memberships_controller_test.rb
index fd1fa15..20a1117 100644
--- a/test/controllers/api/v1/memberships_controller_test.rb
+++ b/test/controllers/api/v1/memberships_controller_test.rb
@@ -67,44 +67,44 @@ class Api::V1::MembershipsControllerTest < ActionDispatch::IntegrationTest
     assert_response :forbidden
   end
 
-  # # UPDATE
-  # test "should update membership" do
-  #   patch api_v1_membership_url(@membership),
-  #   headers: { Authorization: JsonWebToken.encode(user_id: @user.id) }, 
-  #   params: { membership: { can_edit: true } },
-  #   as: :json
-  #   assert_response :success
-  # end
+  # UPDATE
+  test "should update membership" do
+    patch api_v1_team_membership_url(@team, @membership),
+    headers: { Authorization: JsonWebToken.encode(user_id: @user.id) }, 
+    params: { membership: { can_edit: true } },
+    as: :json
+    assert_response :success
+  end
 
-  # test "should forbid update membership" do
-  #   patch api_v1_membership_url(@membership),
-  #   params: { membership: { can_edit: true } },
-  #   as: :json
-  #   assert_response :forbidden
-  # end
+  test "should forbid update membership" do
+    patch api_v1_team_membership_url(@team, @membership),
+    params: { membership: { can_edit: true } },
+    as: :json
+    assert_response :forbidden
+  end
 
-  # test "should forbid update read_only attributes - team_id" do
-  #   patch api_v1_membership_url(@membership),
-  #   headers: { Authorization: JsonWebToken.encode(user_id: @user.id) }, 
-  #   params: { membership: { team_id: @team2.id, member_id: @user2.id } },
-  #   as: :json
-  #   assert_response :unprocessable_entity
-  # end
+  test "should forbid update read_only attributes - team_id" do
+    patch api_v1_team_membership_url(@team, @membership),
+    headers: { Authorization: JsonWebToken.encode(user_id: @user.id) }, 
+    params: { membership: { team_id: @team2.id, member_id: @user2.id } },
+    as: :json
+    assert_response :unprocessable_entity
+  end
 
-  # # DESTROY
-  # test "should destroy membership" do
-  #   assert_difference('Membership.count', -1) do
-  #     delete api_v1_membership_url(@membership), 
-  #     headers: { Authorization: JsonWebToken.encode(user_id: @user.id) },
-  #     as: :json
-  #   end
-  #   assert_response :no_content
-  # end
+  # DESTROY
+  test "should destroy membership" do
+    assert_difference('Membership.count', -1) do
+      delete api_v1_team_membership_url(@team, @membership), 
+      headers: { Authorization: JsonWebToken.encode(user_id: @user.id) },
+      as: :json
+    end
+    assert_response :no_content
+  end
 
-  # test "should forbid destroy membership" do
-  #   assert_no_difference('Membership.count') do
-  #     delete api_v1_membership_url(@membership), as: :json
-  #   end
-  #   assert_response :forbidden
-  # end
+  test "should forbid destroy membership" do
+    assert_no_difference('Membership.count') do
+      delete api_v1_team_membership_url(@team, @membership), as: :json
+    end
+    assert_response :forbidden
+  end
 end