diff --git a/src/test/java/de/caritas/cob/mailservice/api/controller/MailControllerE2EIT.java b/src/test/java/de/caritas/cob/mailservice/api/controller/MailControllerE2EIT.java
index e7be338..096f096 100644
--- a/src/test/java/de/caritas/cob/mailservice/api/controller/MailControllerE2EIT.java
+++ b/src/test/java/de/caritas/cob/mailservice/api/controller/MailControllerE2EIT.java
@@ -84,6 +84,20 @@ void sendMailsShouldRespondWithOkWhenEmailListIsEmpty() throws Exception {
         .andExpect(status().isOk());
   }
 
+  @Test
+  void sendMailsShouldRespondWithAccessDeniedWhenCrsfTokenIsNotGiven() throws Exception {
+    givenAnEmptyEmailList();
+
+    mockMvc
+        .perform(
+            post("/mails/send")
+                .cookie(CSRF_COOKIE)
+                .contentType(MediaType.APPLICATION_JSON)
+                .content(objectMapper.writeValueAsString(mailsDTO))
+                .accept(MediaType.APPLICATION_JSON))
+        .andExpect(status().isForbidden());
+  }
+
   @Test
   void sendMailsShouldSendEmailAndRenderDataWithDefaultLanguageWhenLanguageNotGiven()
       throws Exception {