667: Add Spring Security to Service Example
Test Case #: 667 | Test Case Name: Add Spring Security to Service Example |
System: OpenLMIS | Subsystem: Example |
Test case designed by: Anna Czyrko | Design Date:25.07.2016 |
Short description: Demonstrate how to do RBAC with Spring Security on a Spring Boot RESTful interface |
|
Pre – conditions: |
|
Step | Action | Expected system response | Comment |
1 | http://localhost:8080/ it is not protected Open Postman. Enter: Method: Get Authentication: no authentication |  | Should appear: Status 200 OK |
2 | http://localhost:8080/api/foos/count is available for authenticated users (regular user and admin) - without any login Method: Get Authentication: no auhentication
| | Should appear: Status 401 Unauthorized |
3 | http://localhost:8080/api/foos/count is available for authenticated users (regular user and admin) - regukar user Method: Get Authentication: user/password
| | Should appear: Status 200 OK |
4 | http://localhost:8080/api/foos/count is available for authenticated users (regular user and admin) - admin Method: Get Authentication: admin/password | | Should appear: Status 200 OK |
5 | http://localhost:8080/weather/Gdynia only admin has access - whithout any login Method: Get Authentication: no authentication
| | Should appear: Status 401 Unauthorized |
6 | http://localhost:8080/weather/Gdynia only admin has access - regular user Method: Get Authentication: user/password | | Should appear: Status 401 Unauthorized |
7 | http://localhost:8080/weather/Gdynia only admin has access - regular user Method: Get Authentication: admin/password | | Should appear: Status 200 OK |
8 | Method: Get Authentication: no auhentication
| | Should appear: Status 200 OK |
| |||
|---|---|---|---|
Post – conditions:
|