Development/Functional testing/Access control tests

From AtoM wiki
Revision as of 15:51, 10 July 2014 by Dan (talk | contribs) (Migrate basic page content from Qubit wiki; edit for relevance to 2.x)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Main Page > Development > Development/Functional testing > Access control tests

These tests help determine that AtoM's user, group, and permissions management modules function as expected. For more information on the expected behaviors of each, see the "Manage user accounts and user groups" and "Edit user permissions" pages in the ADMINISTER section of our AtoM User Manual.

Create groups

  • Administrators can navigate to group edit screen by clicking Admin > Groups
  • Administrator can edit and save changes to administrator, anonymous and authenticated groups but can't delete them
  • Administrator can edit and save changes to contributor, editor and translator groups and can delete them
  • Administrator can edit data in all fields
  • Administrator can delete permissions #4724
  • Administrator can add a new group
  • Adding a user to a group causes the user to have the permissions assigned to the group
  • Editing permissions for a user overrides permissions inherited from the group for that user

Edit user basic information

  • Administrators can navigate to user edit screen by clicking admin > users > add new or admin > users > (user name) > edit
  • Administrator can create and edit data in all fields in Basic info area
  • Clicking Create or Save opens the user show screen with all changes saved
  • Clicking Cancel opens the user show screen with no changes saved

Edit user permissions

  • Administrator can assign the user to one or more groups
  • Administrator does not have to assign the user to a group
  • All scenarios described at http://ica-atom.org/doc/UM-7.2_1.0.9 can be run successfully

Hierarchy treeview

  • Only authenticated users with update permission can drag and drop information objects within the information object hierarchy treeview
  • Users who have update permission only for specified repositories can drag and drop information objects linked to those repositories only

View drafts

  • Unauthenticated users do not retrieve draft information objects in search or browse results
  • Unauthenticated users do not see draft descriptions listed in context menu boxes of repository or actor show screens
  • For unauthenticated users, directly entering a url for a draft description forwards to an access denied page
  • On informationobject/browse page, authenticated users see only published fonds and draft fonds to which they have view draft permissions
  • Search results by authenticated users only show published descriptions and draft fonds to which they have view draft permissions
  • On repository/show page, authenticated users see only published fonds and draft fonds to which they have view draft permissions
  • For authenticated users, directly entering a url for a draft description forwards to "permission denied" page if user does not have view draft access to resource

Translate

  • Translate group grants ability to translate to all languages - issues #3667 and #4279
  • Administrator group grants ability to translate to all languages
  • Other users can only translate to languages specified in "Allowed languages for translation" field in Access control div of user edit screen (at this time, this function does not seem to be working properly in 1.3, but it cannot be properly tested until the above issues are resolved)
Retrieved from "http://wiki.accesstomemory.org/index.php?title=Development/Functional_testing/Access_control_tests&oldid=159"

Account

Page

Search