authelia/test/features/access-control.feature

Feature: User has access restricted access to domains

  @need-registered-user-john
  Scenario: User john has admin access
    When I visit "https://auth.test.local:8080"
    And I login with user "john" and password "password"
    And I use "REGISTERED" as TOTP token handle
    And I click on "TOTP"
    Then I have access to:
      | url                                          |
      | https://public.test.local:8080/secret.html   |
      | https://secret.test.local:8080/secret.html   |
      | https://secret1.test.local:8080/secret.html  |
      | https://secret2.test.local:8080/secret.html  |
      | https://mx1.mail.test.local:8080/secret.html |
      | https://mx2.mail.test.local:8080/secret.html |

  @need-registered-user-bob
  Scenario: User bob has restricted access
    When I visit "https://auth.test.local:8080"
    And I login with user "bob" and password "password"
    And I use "REGISTERED" as TOTP token handle
    And I click on "TOTP"
    Then I have access to:
      | url                                          |
      | https://public.test.local:8080/secret.html   |
      | https://secret.test.local:8080/secret.html   |
      | https://secret2.test.local:8080/secret.html  |
      | https://mx1.mail.test.local:8080/secret.html |
      | https://mx2.mail.test.local:8080/secret.html |
    And I have no access to:
      | url                                          |
      | https://secret1.test.local:8080/secret.html  |

  @need-registered-user-harry
  Scenario: User harry has restricted access
    When I visit "https://auth.test.local:8080"
    And I login with user "harry" and password "password"
    And I use "REGISTERED" as TOTP token handle
    And I click on "TOTP"
    Then I have access to:
      | url                                          |
      | https://public.test.local:8080/secret.html   |
      | https://secret1.test.local:8080/secret.html  |
    And I have no access to:
      | url                                          |
      | https://secret.test.local:8080/secret.html   |
      | https://secret2.test.local:8080/secret.html  |
      | https://mx1.mail.test.local:8080/secret.html |
      | https://mx2.mail.test.local:8080/secret.html |
Replace mocha integration tests by cucumber tests 2017-07-26 21:45:26 +00:00			`Feature: User has access restricted access to domains`

Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`@need-registered-user-john`
Replace mocha integration tests by cucumber tests 2017-07-26 21:45:26 +00:00			`Scenario: User john has admin access`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`When I visit "https://auth.test.local:8080"`
			`And I login with user "john" and password "password"`
			`And I use "REGISTERED" as TOTP token handle`
			`And I click on "TOTP"`
Replace mocha integration tests by cucumber tests 2017-07-26 21:45:26 +00:00			`Then I have access to:`
			`\| url \|`
			`\| https://public.test.local:8080/secret.html \|`
			`\| https://secret.test.local:8080/secret.html \|`
			`\| https://secret1.test.local:8080/secret.html \|`
			`\| https://secret2.test.local:8080/secret.html \|`
			`\| https://mx1.mail.test.local:8080/secret.html \|`
			`\| https://mx2.mail.test.local:8080/secret.html \|`

Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`@need-registered-user-bob`
Replace mocha integration tests by cucumber tests 2017-07-26 21:45:26 +00:00			`Scenario: User bob has restricted access`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`When I visit "https://auth.test.local:8080"`
			`And I login with user "bob" and password "password"`
			`And I use "REGISTERED" as TOTP token handle`
			`And I click on "TOTP"`
Replace mocha integration tests by cucumber tests 2017-07-26 21:45:26 +00:00			`Then I have access to:`
			`\| url \|`
			`\| https://public.test.local:8080/secret.html \|`
			`\| https://secret.test.local:8080/secret.html \|`
			`\| https://secret2.test.local:8080/secret.html \|`
			`\| https://mx1.mail.test.local:8080/secret.html \|`
			`\| https://mx2.mail.test.local:8080/secret.html \|`
			`And I have no access to:`
			`\| url \|`
			`\| https://secret1.test.local:8080/secret.html \|`

Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`@need-registered-user-harry`
Replace mocha integration tests by cucumber tests 2017-07-26 21:45:26 +00:00			`Scenario: User harry has restricted access`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`When I visit "https://auth.test.local:8080"`
			`And I login with user "harry" and password "password"`
			`And I use "REGISTERED" as TOTP token handle`
			`And I click on "TOTP"`
Replace mocha integration tests by cucumber tests 2017-07-26 21:45:26 +00:00			`Then I have access to:`
			`\| url \|`
			`\| https://public.test.local:8080/secret.html \|`
			`\| https://secret1.test.local:8080/secret.html \|`
			`And I have no access to:`
			`\| url \|`
			`\| https://secret.test.local:8080/secret.html \|`
			`\| https://secret2.test.local:8080/secret.html \|`
			`\| https://mx1.mail.test.local:8080/secret.html \|`
			`\| https://mx2.mail.test.local:8080/secret.html \|`