lsm/Orchard
1
0
Fork 0
mirror of https://github.com/OrchardCMS/Orchard.git synced 2025-12-03 12:03:51 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
Files
f86c4b1375e6ca3874355417a76d7515e28b695d
Orchard/src/Orchard.Specs/PermissionModel.feature

28 lines
896 B
Gherkin
Raw Normal View History

Adding SpecFlow bindings for integration testing user's permissions Enables automated testing of urls and redirects with querystring Adds bindings for: -Creating account with a fixed set of permissions -Login of a user -Success criteria for seeing text on a page -Success criteria for being denied access to a page --HG-- branch : dev extra : rebase_source : 66e7b33cf7a596050d27eda6351605ed86420af2
2010-12-14 17:50:47 -08:00
Feature: Addition
In order to prevent security model regressions
As a user with specific permissions
I should to be granted or denied access to various actions
@security
Scenario: Login can be automated
Given I have installed Orchard
And I have a user "bob" with permissions "AccessFrontEnd"
When I go to "users/account/logoff"
And I go to "users/account/logon"
And I fill in
| name | value |
| userNameOrEmail | bob |
| password | qwerty123! |
And I hit "Sign In"
And I am redirected
Then I should see "Welcome, <strong>bob</strong>!"
@security
Scenario: Anonymous user can see the home page but not the dashboard
Given I have installed Orchard
And I have a user "bob" with permissions "AccessFrontEnd"
When I sign in as "bob"
Then I should see "this is the homepage of your new site" when I go to "/"
And I should be denied access when I go to "admin"
Reference in New Issue Copy Permalink