Logo: Relish

  1. Sign in

Project: Medlink

Authorization control

As a site owner
I want to be sure to limit access to sensitive areas
To prevent unauthorized access

Scenarios
Authorized Page Functionality
Given
I am logged in as a role
When
I go to the authorized_page page
Then
I should not be asked to authenticate with the right credentials
Examples:
role authorized_page
admin add user
admin edit user
user new_order
pcmo request_manager
pcmo request history
pcmo reports
Unauthorized Page Functionality
Given
I am logged in as a role
When
I go to the unauthorized_page page
Then
I should be asked to authenticate with the right credentials
Examples:
role unauthorized_page
pcmo add user
pcmo edit user
user add user
user edit user
user reports

Last published about 7 years ago by jasnow.