Security Integration Tests [DRAFT] - fli-iam/shanoir-ng GitHub Wiki

What to test

• Role limitations
• User's data property limitations (study roles)
• Login
• Account request
• Forgotten password

General rules and definitions

Roles

ROLE_ADMIN

Can access to all contents in Shanoir and manages users.

ROLE_EXPERT

The expert role aims to be set to the users that might create research studies and study cards, and define the quality checks. The users with this role may also delete data.

ROLE_USER

This is the basic role in Shanoir. Set this role to the users that are not intended to be responsible for any research study and who don't have a strong knowledge of the Shanoir features. This type of user can download and import data if they are allowed to by the responsible of the research study of the data.

ROLE_GUEST

A guest can only see the data. He can't create any data. There are two possible configurations:

• Challenge – where Guests can download data
• Neuroinfo – where Guests cannot download data

User's data property limitations

Study

• IS_RESPONSIBLE_FOR_THE_RESEARCH_STUDY (Principal Investigator)
• CAN_SEE_DOWNLOAD_IMPORT_DATASETS_AND_MODIFY_THE_STUDY_PARAMETERS
• CAN_SEE_DOWNLOAD_AND_IMPORT_DATASETS
• CANNOT_SEE_OR_DOWNLOAD_DATASETS
• CAN_SEE_AND_DOWNLOAD_DATASETS

API Resctrictions

Notes

To be deleted ?

• studies > CommonApi.java
• datasets > DatasetAcquisitionApi.java