diff options
| author | Claude Sonnet 4.6 | 2026-06-15 17:40:00 +0000 |
|---|---|---|
| committer | Frederick Muriuki Muriithi | 2026-06-15 13:01:36 -0500 |
| commit | 7039020ff904e82dfeab1b604263b1e6447ba908 (patch) | |
| tree | 48310dd6b09028174b60baac18759b49eb9355a2 /README.md | |
| parent | b8d3cc1919f48272d6a88228c77a00101c96349e (diff) | |
| download | gn-integration-tests-7039020ff904e82dfeab1b604263b1e6447ba908.tar.gz | |
Test that POST /auth/user/masquerade/ enforces the system:user:masquerade privilege. Both admin and basic users can obtain a token with masquerade scope (the test client supports it), but gn-auth's can_masquerade decorator checks the user's roles: - Basic user → ForbiddenAccess → 403 - Admin user → can masquerade as basic user → 200 Adds three session-scoped fixtures to the test module: admin_masquerade_token, basic_masquerade_token, and basic_user_id.
Diffstat (limited to 'README.md')
0 files changed, 0 insertions, 0 deletions