MIS Authorization Test

n/n	Description	Inputs	Expected Result	Step by Step Script	Actual Result
MISAT1	Doctor call WS over correct API-key	WS = GetDrugs() Authorization - Doctor of MSP MSP access_type = broker, Valid API-key = MIS secret, Valid MIS broker_scopes = drugs:read, Valid	Response 200 Get list of drugs	Login as Doctor Call GetDrugs()
MISAT2	Doctor call WS direct	WS = GetDrugs() Authorization - Doctor of MSP MSP access_type = direct, Valid	Response 200 Get list of drugs	Login as Doctor Call GetDrugs()
MISAT3	Doctor call WS over broker without API-key	WS = GetDrugs() Authorization - Doctor of MSP MSP access_type = broker, Valid API-key = missing, Invalid MIS broker_scopes = drugs:read, Valid	Response 401 Message "API-KEY header required !"	Login as Doctor Call GetDrugs()
MISAT4	Doctor call WS over broker with bad API-key	WS = GetDrugs() Authorization - Doctor of MSP MSP access_type = broker, Valid API-key = broken, Invalid MIS broker_scopes = drugs:read, Valid	Response 401 Message "API-KEY header required !"	Login as Doctor Call GetDrugs()
MISAT5	Doctor call WS with bad broker_scopes	WS = GetDrugs() Authorization - Doctor of MSP MSP access_type = broker, Valid API-key = MIS secret, Valid MIS broker_scopes = missing, Invalid	Response 422 Message "Incorrect broker settings!"	Login as Doctor Call GetDrugs()	.
MISAT6	Doctor call WS without needed broker scope	WS = GetDrugs() Authorization - Doctor of MSP MSP access_type = broker, Valid API-key = MIS secret, Valid MIS broker_scopes = empty, Valid	Response 422 Message "Scope is not allowed by broker!"	Login as Doctor Call GetDrugs()	.
MISAT7	HR call WS without scope over broker	WS = GetDrugs() Authorization - HR of MSP Role scope (drugs:read) = missing MSP access_type = broker, Valid API-key = MIS secret, Valid MIS broker_scopes = drugs:read, Valid	Response 403	Login as HR Call GetDrugs()	.
					.

E-Health

MIS Authorization Test

Analytics

Related content