Testcase 01 FEA102
| Test Case description | Verify secure user authentication for Tukko |
| Test Case ID | TC102-001 |
| Author/Designer | Stefano Confalone |
| Date of creation | 19.02.2024 |
| Class | functional acceptance |
Test description / objective
The objective of this test is to verify that users are able to create an account to Tukko, log in with it and security measurements such as password hashing work.
Links to requirements or other sources
- Requirements: SEC-REQ-0002
- Use case: UC003
- Feature: Compare different LAM stations side by side
Test pre-state * Start
Test steps
- User opens up Tukko
- User selects "Log in" option in Tukko's interface
- User does not have an account so they create one
- Userdata is stored in MongoDB
Test end-state
- Ensure that user is able to authenticate to Tukko and userdata is securely stored in MongoDB
To be taken into account during test
- Possible changes in Tukko's interface
Test result (Pass/Fail Criteria)
-
PASS: Log in form works, Rest API works (userdata is stored in MongoDB), passwords are hashed
-
FAIL: User can't authenticate to Tukko and userdata has security vulnerabilities