Merge branch 'develop' of https://github.com/leapcode/leap_web into feature/expose_admin_in_api

author: NavaL <ayoyo@thoughtworks.com> 2016-07-14 15:44:07 +0200
committer: NavaL <ayoyo@thoughtworks.com> 2016-07-14 15:44:07 +0200
commit: e3c2cb91dfef5c39c608b967e702e9de977d1bd2 (patch)
tree: 154dc28dd986bd6e0a48e933c5da46994ffaa0cb /features/1/authentication.feature
parent: e2f19bcfb6dbce77746c2d61715340525b29a592 (diff)
parent: f09e6ec1337962ab279f021a6a6d0ff30479ebe0 (diff)
1 files changed, 24 insertions, 0 deletions
diff --git a/features/1/authentication.feature b/features/1/authentication.feature
new file mode 100644
index 0000000..52b562f
--- /dev/null
+++ b/features/1/authentication.feature
@@ -0,0 +1,24 @@
+Feature: Authentication
+
+  Authentication is handled with SRP. Once the SRP handshake has been successful a token will be transmitted. This token is used to authenticate further requests.
+
+  In the scenarios MY_AUTH_TOKEN will serve as a placeholder for the actual token received.
+
+  Background:
+    Given I set headers:
+      | Accept        | application/json |
+      | Content-Type  | application/json |
+
+  Scenario: Submitting a valid token
+    Given I authenticated
+    And I set headers:
+      | Authorization | Token token="MY_AUTH_TOKEN" |
+    When I send a GET request to "/1/configs.json"
+    Then the response status should be "200"
+
+  Scenario: Submitting an invalid token
+    Given I authenticated
+    And I set headers:
+      | Authorization | Token token="InvalidToken" |
+    When I send a GET request to "/1/configs.json"
+    Then the response status should be "401"
author	NavaL <ayoyo@thoughtworks.com>	2016-07-14 15:44:07 +0200
committer	NavaL <ayoyo@thoughtworks.com>	2016-07-14 15:44:07 +0200
commit	e3c2cb91dfef5c39c608b967e702e9de977d1bd2 (patch)
tree	154dc28dd986bd6e0a48e933c5da46994ffaa0cb /features/1/authentication.feature
parent	e2f19bcfb6dbce77746c2d61715340525b29a592 (diff)
parent	f09e6ec1337962ab279f021a6a6d0ff30479ebe0 (diff)