RPJosh
/
authelia
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
authelia/test/features/restrictions.feature

37 lines
2.6 KiB
Gherkin
Raw Normal View History

Replace mocha integration tests by cucumber tests
2017-07-26 21:45:26 +00:00
Feature: Non authenticated users have no access to certain pages
Disable notifiers when server uses single factor method only Notifier is not mandatory when authentication method is single_factor for all sub-domains since there is no registration required.
2017-10-22 15:42:05 +00:00
Scenario: Anonymous user has no access to protected pages
Then I get the following status code when requesting:
| url | code | method |
Change domain from test.local to example.com Warning: you will need to update your /etc/hosts to take this change into account for the example environment to work.
2017-11-02 20:34:07 +00:00
| https://login.example.com:8080/secondfactor | 401 | GET |
| https://login.example.com:8080/secondfactor/u2f/identity/start | 401 | GET |
| https://login.example.com:8080/secondfactor/u2f/identity/finish | 401 | GET |
| https://login.example.com:8080/secondfactor/totp/identity/start | 401 | GET |
| https://login.example.com:8080/secondfactor/totp/identity/finish | 401 | GET |
| https://login.example.com:8080/loggedin | 401 | GET |
| https://login.example.com:8080/api/totp | 401 | POST |
| https://login.example.com:8080/api/u2f/sign_request | 401 | GET |
| https://login.example.com:8080/api/u2f/sign | 401 | POST |
| https://login.example.com:8080/api/u2f/register_request | 401 | GET |
| https://login.example.com:8080/api/u2f/register | 401 | POST |
Replace mocha integration tests by cucumber tests
2017-07-26 21:45:26 +00:00
Disable notifiers when server uses single factor method only Notifier is not mandatory when authentication method is single_factor for all sub-domains since there is no registration required.
2017-10-22 15:42:05 +00:00
@needs-single_factor-config
@need-registered-user-john
Scenario: User does not have acces to second factor related endpoints when in single factor mode
Change domain from test.local to example.com Warning: you will need to update your /etc/hosts to take this change into account for the example environment to work.
2017-11-02 20:34:07 +00:00
Given I post "https://login.example.com:8080/api/firstfactor" with body:
Disable notifiers when server uses single factor method only Notifier is not mandatory when authentication method is single_factor for all sub-domains since there is no registration required.
2017-10-22 15:42:05 +00:00
| key | value |
| username | john |
| password | password |
Then I get the following status code when requesting:
| url | code | method |
Change domain from test.local to example.com Warning: you will need to update your /etc/hosts to take this change into account for the example environment to work.
2017-11-02 20:34:07 +00:00
| https://login.example.com:8080/secondfactor | 401 | GET |
| https://login.example.com:8080/secondfactor/u2f/identity/start | 401 | GET |
| https://login.example.com:8080/secondfactor/u2f/identity/finish | 401 | GET |
| https://login.example.com:8080/secondfactor/totp/identity/start | 401 | GET |
| https://login.example.com:8080/secondfactor/totp/identity/finish | 401 | GET |
| https://login.example.com:8080/api/totp | 401 | POST |
| https://login.example.com:8080/api/u2f/sign_request | 401 | GET |
| https://login.example.com:8080/api/u2f/sign | 401 | POST |
| https://login.example.com:8080/api/u2f/register_request | 401 | GET |
| https://login.example.com:8080/api/u2f/register | 401 | POST |