Details
-
Task
-
Resolution: Done
-
L3 - Default
-
None
-
None
-
Not defined
Description
Most of our Event Process ITs seem to test against missing authentication rather than authorization. We should keep the authentication tests, but also add tests that each endpoint is tested with missing authorization for users/groups
ATs:
- All event based process authorization tests also test for missing authorizations rather than just missing authentication