[SECURITY-78] Prepare UI test for new Security app ensuring users can use email addresses as user names Created: 08/Jan/24  Updated: 29/Jan/24

Status: In Progress
Project: Security
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Story Priority: Neutral
Reporter: Matt Rajkovic Assignee: Khayal Musayev
Resolution: Unresolved Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Template:
Acceptance criteria:
Empty
Epic Link: Security maintenance
Team: AdminX
Work Started:

 Description   

Goal

We want to make sure it's always possible for users to use email address as their usernames, including user creation and user login.

Therefore we'd need a UI test which would test the following: 

Testing roles:

  • Roles tab can be opened and lists pre-defined set of roles. 
  • A new role can be created and saved.
  • A role with the same role is created and cannot be saved, as there can't be two roles with the same name.
  • A role can also be edited, renamed and saved (try that several fields can be used and saved). 
  • A user can be created and the role can be assigned to the user. 
  • A group can be created and the role can be assigned to the user. 
  • A role can be deleted. 

Testing groups:

  • Same as for roles above.

Testing users:

  • A user with an email address as username can be created (the email address can contain special characters valid for email addresses, for example, "+" symbol, "@", "." and similar).
  • User with the same name cannot be added to the same realm, even in a sub-folder.
  • User can be edited.
  • User can be deleted.
  • A user just created with an email address as username can subsequently log in after being created.
  • The user is able to edit their profile, their name, their timezone, and other preferences. 

Testing permissions

  • Log in as a user with "smaller" permissions, i.e. Editor role. 
  • You should be able to see some apps that you have permissions for, but not some admin apps, i.e. "JCR App" or "Security". In other words, the user can only see apps which his role allows him to see.

 

Video recording of the session between Evzen, Matt and Khayal: https://magnolia-cms.zoom.us/rec/share/VhRT4eux1hVo8Ot_xMj9ztTjCV7JMbosXdZRL19D7VewEo6qG-qrr8qqP0-trOiK.KycOVCiXVvRu6lJf?startTime=1706520748000


Generated at Mon Feb 12 10:47:41 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.