You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: stepup/tests/behat/features/sfo_gssp_fallback.feature
+10-2Lines changed: 10 additions & 2 deletions
Original file line number
Diff line number
Diff line change
@@ -3,15 +3,23 @@ Feature: A user authenticates with a service provider configured for second-fact
3
3
As a user
4
4
I must verify the second factor without authenticating with an identity provider
5
5
6
-
Scenario: A user logs in using SFO using a GSSP token
6
+
Scenario: A user logs in using SFO using a GSSP token to an institution with GSSP fallback enabled
7
7
Given a service provider configured for second-factor-only with loa 1.5
8
8
And a user "jane-a1" identified by "urn:collab:person:institution-a.example.com:jane-a1" from institution "institution-a.example.com" with UUID "00000000-0000-4000-8000-000000000001"
9
9
When I start an SFO authentication for "urn:collab:person:institution-a.example.com:jane-a1" with GSSP extension subject "jane-a1@institution-a.example.com" and institution "institution-a.example.com"
10
10
And I verify the azuremfa gssp second factor with email address "jane-a1@institution-a.example.com"
11
11
Then I am logged on the service provider
12
12
13
-
Scenario: A user cancels SFO authn with a gssp token
13
+
Scenario: A user cancels SFO authn with a GSSP token
14
14
Given a service provider configured for second-factor-only with loa 1.5
15
15
When I start an SFO authentication for "urn:collab:person:institution-a.example.com:jane-a1" with GSSP extension subject "jane-a1@institution-a.example.com" and institution "institution-a.example.com"
16
16
And I cancel the "azuremfa-gssp" second factor authentication
17
17
Then I see an error at the service provider
18
+
19
+
Scenario: A user logs in using SFO using a GSSP token to an institution with GSSP fallback disabled
20
+
Given a service provider configured for second-factor-only with loa 1.5
21
+
And a user "jane-b1" identified by "urn:collab:person:institution-b.example.com:jane-b1" from institution "institution-b.example.com" with UUID "00000000-0000-4000-8000-000000000002"
22
+
When I start an SFO authentication for "urn:collab:person:institution-b.example.com:jane-b1" with GSSP extension subject "jane-b1@institution-b.example.com" and institution "institution-b.example.com"
0 commit comments