| n/n | Description | Inputs | Expected Result | Step by Step Script | Actual Result |
|---|
| MISAT1 | Doctor call WS over correct API-key | - WS = GetDrugs()
- Authorization - Doctor of MSP
- MSP access_type = broker, Valid
- API-key = MIS secret, Valid
- MIS broker_scopes = drugs:read, Valid
| Response 200 Get list of drugs | - Login as Doctor
- Call GetDrugs()
| |
| MISAT2 | Doctor call WS direct | - WS = GetDrugs()
- Authorization - Doctor of MSP
- MSP access_type = direct, Valid
| Response 200 Get list of drugs | - Login as Doctor
- Call GetDrugs()
| |
| MISAT3 | Doctor call WS over broker without API-key | - WS = GetDrugs()
- Authorization - Doctor of MSP
- MSP access_type = broker, Valid
- API-key = missing, Invalid
- MIS broker_scopes = drugs:read, Valid
|
| - Login as Doctor
- Call GetDrugs()
| |
| MISAT4 | Doctor call WS over broker with bad API-key | - WS = GetDrugs()
- Authorization - Doctor of MSP
- MSP access_type = broker, Valid
- API-key = broken, Invalid
- MIS broker_scopes = drugs:read, Valid
| Response 401 Message "API-KEY header required !" | - Login as Doctor
- Call GetDrugs()
| |
| MISAT5 | Doctor call WS with bad broker_scopes | - WS = GetDrugs()
- Authorization - Doctor of MSP
- MSP access_type = broker, Valid
- API-key = MIS secret, Valid
- MIS broker_scopes = missing, Invalid
| Response 422 Message "Incorrect broker settings!" | - Login as Doctor
- Call GetDrugs()
| |
| MISAT6 | Doctor call WS without needed broker scope | - WS = GetDrugs()
- Authorization - Doctor of MSP
- MSP access_type = broker, Valid
- API-key = MIS secret, Valid
- MIS broker_scopes = empty, Valid
| Response 422 Message "Scope is not allowed by broker!" | - Login as Doctor
- Call GetDrugs()
| |
| MISAT7 | HR call WS without scope over broker | - WS = GetDrugs()
- Authorization - HR of MSP
- Role scope (drugs:read) = missing
- MSP access_type = broker, Valid
- API-key = MIS secret, Valid
- MIS broker_scopes = drugs:read, Valid
| Response 403 | - Login as HR
- Call GetDrugs()
| |
|
|
|
|
| |