Projects:Password Policy/QA
Contents |
Testing
Acceptance Tests
In order to ensure implementation works as intended, the following acceptance tests are made in pi-smoke:
- CheckPasswordFromLoginPage.java
- CheckPasswordFromUserProfile.java
To verify the POS implementation, a test case was created in pi-mobile:
- ChangeExpiredPassword.java
In addition, this new feature required to update test NAV0050 since the new password introduced in the tests did not meet the security requirements and hence fails.
Unit testing
Password validation class (PasswordStrengthChecker.java), was developed using a TestCase that verifies that is works properly given a number of example passwords.
Performance
This project has virtually no impact in system performance since it only adds a check in password change process that verifies that the new password meets a fixed set of criteria. All these checks consists of searchs of regular expressions in the new password, which it should not be significantly large.
Code review
https://docs.google.com/spreadsheets/d/1VX7w33pevIRnQ20aT7Uy5gX3WgoKMIMXLS9IwhZMFY4