Security Service REST Test Suite

Overview

Test suite for the Security REST service.

Prerequisites

Prerequisites are tested in the class SecurityServiceRestTest.

• The run.config specifies a "security.handler" with any required parameters also specified.
• The run.config has an "admin.user" and "admin.password" specified
• The run.config has an "viewer.user" and "viewer.password" specified
• The run.config has a "bad.user" and "bad.password" specified
• No user exists in the database with the "bad.user" userName.

Assumptions

Assumptions not fulfilled will cause test failures.

• The security handler specified exists and can be instantiated.
• The security handler successfully authenticates the "admin.user", and returns a user with application role of ADMINISTRATOR
• The security handler successfully authenticates the "viewer.user", and returns a user with application role of VIEWER
• The security handler fails to authenticate the "bad.user", and returns no user.

Test Cases.

This test suite comprises the following test cases:

• Normal Use - org.ihtsdo.otf.ts.test.Rest.SecurityServiceNormalUseTest
  • Case testNormalUseRestSecurity001
  • Case testNormalUseRestSecurity002
  • Case testNormalUseRestSecurity003 
    
    
• Degenerate Use - org.ihtsdo.otf.ts.test.Rest.SecurityServiceDegenerateUseTest
  • Case testDegenerateUseRestSecurity001
  • Case testDegenerateUseRestSecurity002
  • Case testDegenerateUseRestSecurity003
    
    
• Edge Cases - org.ihtsdo.otf.ts.test.rest.SecurityServiceEdgeCasesTest
  • Case testEdgeCasesRestSecurity001
  • n/a (no conditions)
  • Case testEdgeCasesRestSecurity003

References/Links

• n/a