Skip to end of metadata
Go to start of metadata
| n/n | Description | Inputs | Expected Result | Step by Step Script | Actual Result | Actual GraphQL Result |
|---|
| RPAMT1 | NHS Admin call reset person authentication method | - Authorization - NHS Admin
- scope Valid
(person:reset_authentication_method) - Person.id - Valid
- Person.status = ACTIVE - Valid
- Person.authentication_methods [0].type = OTP- Valid
| Response 200 Saved in DB `mpi.persons.authentication_methods` value = "[ { “type”: “NA” }. ]" | - Login as NHS admin
- Call ResetPerson AuthenticationMethod()
| | 200 |
| RPAMT2 | Doctor call WS direct | - Authorization - Doctor
- scope missing (person:reset_authentication_method)
- Person.id - Valid
- Person.status = ACTIVE - Valid
| Response 403
| - Login as Doctor
- Call ResetPerson AuthenticationMethod()
| | 401 |
| RPAMT3 | NHS Admin call reset person authentication method with bad person_id | - Authorization - NHS Admin
- scope Valid
(person:reset_authentication_method) - Person.id - Invalid
| Response 404 Not found | - Login as NHS admin
- Call ResetPerson AuthenticationMethod()
| | 404,
Person not found |
| RPAMT4 | NHS Admin call reset person authentication method with bad status of person | - Authorization - NHS Admin
- scope Valid
(person:reset_authentication_method) - Person.id - Valid
- Person.status = INACTIVE - Invalid
| Response 409 Not found | - Login as NHS admin
- Call ResetPerson AuthenticationMethod()
| | 404,
Person not found
As we show inactive persons it would be better to return FORBIDDEN |
| RPAMT5 | Reset reseted auth method | - Authorization - NHS Admin
- scope Valid
(person:reset_authentication_method) - Person.id - Valid
- Person.status = Active
- Auth method = NA
| 200 | - Login as NHS admin
- Call ResetPerson AuthenticationMethod()
|
| 200 |