Test case: Control access to the server
Test Case ID | TC407 |
Test case designer | Sanni Rummakko |
Creation date | 17.03.2024 |
Classification | Security |
Origin | FEA407 |
Test description / objective
The objective of this test is to verify the implementation of controlling access to the server according to the planned specifications.
Pre-state
Make sure the server is configured and available for testing.
Test Steps
Step | Verify | Some notes |
---|---|---|
1. | Access server login page | Ensure the login page is accessible |
2. | Attempt to access restricted server resources without appropriate permissions | Make sure that access is denied |
3. | Attempt to access server resources with appropriate permissions | Verify that access is granted |
4. | Log out from the server | Confirm successful logout |
End-State
The server should have controlled access, allowing only authorized users to access restricted resources while denying unauthorized access.
Determination of test result (Pass / Fail Criteria)
-
PASS condition: The server successfully controls access, granting access to authorized users and denying access to unauthorized users.
-
FAIL condition: The server fails to control access, either allowing unauthorized access to restricted resources or denying access to authorized users.