Automated Testing

This is done through behat acceptance tests

Once your containers are up, in your VM run ...

> docker compose run --rm test /data/run-integration-tests.sh

Or, if you need to run just one of the tests, run ...

> docker compose run --rm test bash

then

$ vendor/bin/behat features/mfa.feature:7

The tests are found in /features. They are similar to the manual tests listed below.

Manual Testing

See Local Testing for instructions to set up your local development environment.

Main SP authenticates through Main Idp. Third SP is also authenticated. Second SP must re-authenticate.

Ensure main SP goes to discovery page and can login through the main IdP

Kill all your cookies for ssp*
Browse to http://ssp-sp1.local:8081/module.php/core/authenticate.php
Click on ssp-hub-custom-port
This should redirect to http://ssp-hub.local/module.php/sildisco/disco.php?entityID=ssp-hub.local&...
Select IdP 1
This should redirect to http://ssp-idp1.local:8085/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp1 using "sildisco_password" as the password (without the quotation marks).
This should return you to the main SP at http://ssp-sp1.local:8081/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Ensure third SP is also authenticated

Browse to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub
This should get you to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Ensure second SP is forced to authenticate

Browse to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub
This should redirect to http://ssp-idp2.local:8086/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp2 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes (but there are none).

Ensure third SP is still authenticated

Browse to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub
This should get you to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Second SP authenticates through Second Idp. Main SP is forced to discovery page but is also authenticated. Third SP must re-authenticate.

Ensure second SP can login through the second IdP

Kill all your cookies for ssp*
Browse to http://ssp-sp2.local:8082/module.php/core/authenticate.php
Click on ssp-hub-custom-port
This should redirect to http://ssp-idp2.local:8086/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp2 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes (but there are none).

Ensure main SP goes to discovery page but is authenticated

Browse to http://ssp-sp1.local:8081/module.php/core/authenticate.php
Click on ssp-hub-custom-port
This should redirect to http://ssp-hub.local/module.php/sildisco/disco.php?entityID=ssp-hub.local&...
Select IdP 2
This should return you to the main SP at http://ssp-sp1.local:8081/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes (but there are none).

Ensure third SP is forced to authenticate

Browse to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub
This should redirect to http://ssp-idp1.local:8085/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp1 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Third SP authenticates through Main Idp. Main SP is forced to discovery page but is also authenticated. Second SP must re-authenticate.

Ensure third SP can login through the main IdP

Kill all your cookies for ssp*
Browse to http://ssp-sp3.local:8083/module.php/core/authenticate.php
Click on ssp-hub-custom-port
This should redirect to http://ssp-idp1.local:8085/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp1 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Ensure main SP goes to discovery page but is authenticated

Browse to http://ssp-sp1.local:8081/module.php/core/authenticate.php?as=ssp-hub
This should redirect to http://ssp-hub.local/module.php/sildisco/disco.php?entityID=ssp-hub.local&...
Select IdP 1
This should get you to http://ssp-sp1.local:8081/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Ensure second SP is forced to authenticate

Browse to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub
This should redirect to http://ssp-idp2.local:8086/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp2 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes (but there are none).

Main SP authenticates through Second Idp. Second SP is also authenticated. Third SP must re-authenticate.

Ensure main SP goes to discovery page and can login through the second IdP

Kill all your cookies for ssp*
Browse to http://ssp-sp1.local:8081/module.php/core/authenticate.php
Click on ssp-hub-custom-port
This should redirect to http://ssp-hub.local/module.php/sildisco/disco.php?entityID=ssp-hub.local&...
Select IdP 2
This should redirect to http://ssp-idp2.local:8086/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp2 using "sildisco_password" as the password (without the quotation marks).
This should return you to the main SP at http://ssp-sp1.local:8081/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes (but there are none).

Ensure second SP is also authenticated

Browse to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub
This should get you to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Ensure third SP is forced to authenticate

Browse to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub
This should redirect to http://ssp-idp1.local:8085/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp1 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Ensure second SP is still authenticated

Browse to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub
This should get you to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Second SP authenticates through Second Idp. Main SP is forced to discovery page, chooses main IdP and must authenticate.

Ensure second SP can login through the second IdP

Kill all your cookies for ssp*
Browse to http://ssp-sp2.local:8082/module.php/core/authenticate.php
Click on ssp-hub-custom-port
This should redirect to http://ssp-idp2.local:8086/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp2 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp2.local:8082/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes (but there are none).

Ensure main SP goes to discovery page and must authenticate when choosing the main Idp

Browse to http://ssp-sp1.local:8081/module.php/core/authenticate.php
Click on ssp-hub-custom-port
This should redirect to http://ssp-hub.local/module.php/sildisco/disco.php?entityID=ssp-hub.local&...
Select IdP 1
This should redirect to http://ssp-idp1.local:8085/module.php/core/loginuserpass.php?AuthState=...
Login as sildisco_idp1 using "sildisco_password" as the password (without the quotation marks).
This should get you to http://ssp-sp3.local:8083/module.php/core/authenticate.php?as=ssp-hub and show your saml attributes.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

functional_testing.md

functional_testing.md

Automated Testing

Manual Testing

Main SP authenticates through Main Idp. Third SP is also authenticated. Second SP must re-authenticate.

Ensure main SP goes to discovery page and can login through the main IdP

Ensure third SP is also authenticated

Ensure second SP is forced to authenticate

Ensure third SP is still authenticated

Second SP authenticates through Second Idp. Main SP is forced to discovery page but is also authenticated. Third SP must re-authenticate.

Ensure second SP can login through the second IdP

Ensure main SP goes to discovery page but is authenticated

Ensure third SP is forced to authenticate

Third SP authenticates through Main Idp. Main SP is forced to discovery page but is also authenticated. Second SP must re-authenticate.

Ensure third SP can login through the main IdP

Ensure main SP goes to discovery page but is authenticated

Ensure second SP is forced to authenticate

Main SP authenticates through Second Idp. Second SP is also authenticated. Third SP must re-authenticate.

Ensure main SP goes to discovery page and can login through the second IdP

Ensure second SP is also authenticated

Ensure third SP is forced to authenticate

Ensure second SP is still authenticated

Second SP authenticates through Second Idp. Main SP is forced to discovery page, chooses main IdP and must authenticate.

Ensure second SP can login through the second IdP

Ensure main SP goes to discovery page and must authenticate when choosing the main Idp

Files

functional_testing.md

Latest commit

History

functional_testing.md

File metadata and controls

Automated Testing

Manual Testing

Main SP authenticates through Main Idp. Third SP is also authenticated. Second SP must re-authenticate.

Ensure main SP goes to discovery page and can login through the main IdP

Ensure third SP is also authenticated

Ensure second SP is forced to authenticate

Ensure third SP is still authenticated

Second SP authenticates through Second Idp. Main SP is forced to discovery page but is also authenticated. Third SP must re-authenticate.

Ensure second SP can login through the second IdP

Ensure main SP goes to discovery page but is authenticated

Ensure third SP is forced to authenticate

Third SP authenticates through Main Idp. Main SP is forced to discovery page but is also authenticated. Second SP must re-authenticate.

Ensure third SP can login through the main IdP

Ensure main SP goes to discovery page but is authenticated

Ensure second SP is forced to authenticate

Main SP authenticates through Second Idp. Second SP is also authenticated. Third SP must re-authenticate.

Ensure main SP goes to discovery page and can login through the second IdP

Ensure second SP is also authenticated

Ensure third SP is forced to authenticate

Ensure second SP is still authenticated

Second SP authenticates through Second Idp. Main SP is forced to discovery page, chooses main IdP and must authenticate.

Ensure second SP can login through the second IdP

Ensure main SP goes to discovery page and must authenticate when choosing the main Idp