summaryrefslogtreecommitdiff
path: root/features/unauthenticated.feature
diff options
context:
space:
mode:
Diffstat (limited to 'features/unauthenticated.feature')
-rw-r--r--features/unauthenticated.feature29
1 files changed, 29 insertions, 0 deletions
diff --git a/features/unauthenticated.feature b/features/unauthenticated.feature
new file mode 100644
index 0000000..120274b
--- /dev/null
+++ b/features/unauthenticated.feature
@@ -0,0 +1,29 @@
+Feature: Unauthenticated API endpoints
+
+ Most of the LEAP Provider API requires authentication.
+ However there are a few exceptions - mostly prerequisits of authenticating. This feature and the authentication feature document these.
+
+ Background:
+ Given I set headers:
+ | Accept | application/json |
+ | Content-Type | application/json |
+
+ @tempfile
+ Scenario: Fetch provider config
+ Given the provider config is:
+ """
+ {"config": "me"}
+ """
+ When I send a GET request to "/provider.json"
+ Then the response status should be "200"
+ And the response should be:
+ """
+ {"config": "me"}
+ """
+
+ Scenario: Authentication required for all other API endpoints
+ When I send a GET request to "/1/configs"
+ Then the response status should be "401"
+ And the response should have "error" with "not_authorized_login"
+ And the response should have "message"
+