mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
d8ff186303
Client and server now have their own tsconfig so that the transpilation is only done on the part that is being modified. It also allows faster transpilation since tests are now excluded from tsconfig. They are compiled by ts-node during unit tests execution.
68 lines
3.6 KiB
Gherkin
68 lines
3.6 KiB
Gherkin
Feature: User has access restricted access to domains
|
|
|
|
@need-registered-user-john
|
|
Scenario: User john has admin access
|
|
When I visit "https://auth.test.local:8080?redirect=https%3A%2F%2Fhome.test.local%3A8080%2F"
|
|
And I login with user "john" and password "password"
|
|
And I use "REGISTERED" as TOTP token handle
|
|
And I click on "TOTP"
|
|
And I'm redirected to "https://home.test.local:8080/"
|
|
Then I have access to:
|
|
| url |
|
|
| https://public.test.local:8080/secret.html |
|
|
| https://dev.test.local:8080/groups/admin/secret.html |
|
|
| https://dev.test.local:8080/groups/dev/secret.html |
|
|
| https://dev.test.local:8080/users/john/secret.html |
|
|
| https://dev.test.local:8080/users/harry/secret.html |
|
|
| https://dev.test.local:8080/users/bob/secret.html |
|
|
| https://admin.test.local:8080/secret.html |
|
|
| https://mx1.mail.test.local:8080/secret.html |
|
|
| https://basicauth.test.local:8080/secret.html |
|
|
And I have no access to:
|
|
| url |
|
|
| https://mx2.mail.test.local:8080/secret.html |
|
|
|
|
@need-registered-user-bob
|
|
Scenario: User bob has restricted access
|
|
When I visit "https://auth.test.local:8080?redirect=https%3A%2F%2Fhome.test.local%3A8080%2F"
|
|
And I login with user "bob" and password "password"
|
|
And I use "REGISTERED" as TOTP token handle
|
|
And I click on "TOTP"
|
|
And I'm redirected to "https://home.test.local:8080/"
|
|
Then I have access to:
|
|
| url |
|
|
| https://public.test.local:8080/secret.html |
|
|
| https://dev.test.local:8080/groups/dev/secret.html |
|
|
| https://dev.test.local:8080/users/bob/secret.html |
|
|
| https://mx1.mail.test.local:8080/secret.html |
|
|
| https://mx2.mail.test.local:8080/secret.html |
|
|
And I have no access to:
|
|
| url |
|
|
| https://dev.test.local:8080/groups/admin/secret.html |
|
|
| https://admin.test.local:8080/secret.html |
|
|
| https://dev.test.local:8080/users/john/secret.html |
|
|
| https://dev.test.local:8080/users/harry/secret.html |
|
|
| https://basicauth.test.local:8080/secret.html |
|
|
|
|
@need-registered-user-harry
|
|
Scenario: User harry has restricted access
|
|
When I visit "https://auth.test.local:8080?redirect=https%3A%2F%2Fhome.test.local%3A8080%2F"
|
|
And I login with user "harry" and password "password"
|
|
And I use "REGISTERED" as TOTP token handle
|
|
And I click on "TOTP"
|
|
And I'm redirected to "https://home.test.local:8080/"
|
|
Then I have access to:
|
|
| url |
|
|
| https://public.test.local:8080/secret.html |
|
|
| https://dev.test.local:8080/users/harry/secret.html |
|
|
And I have no access to:
|
|
| url |
|
|
| https://dev.test.local:8080/groups/dev/secret.html |
|
|
| https://dev.test.local:8080/users/bob/secret.html |
|
|
| https://dev.test.local:8080/groups/admin/secret.html |
|
|
| https://admin.test.local:8080/secret.html |
|
|
| https://dev.test.local:8080/users/john/secret.html |
|
|
| https://mx1.mail.test.local:8080/secret.html |
|
|
| https://mx2.mail.test.local:8080/secret.html |
|
|
| https://basicauth.test.local:8080/secret.html |
|