Sha256: b639b494dfad67340ec0124b80fc315488bfcef342581232d8bddffb0d050082
Contents?: true
Size: 1.99 KB
Versions: 29
Compression:
Stored size: 1.99 KB
Contents
require_relative 'smart_invalid_token_refresh_test'
module ONCCertificationG10TestKit
class BaseTokenRefreshGroup < Inferno::TestGroup
title 'Token Refresh'
description %(
# Background
The #{title} Sequence tests the ability of the system to successfuly
exchange a refresh token for an access token. Refresh tokens are typically
longer lived than access tokens and allow client applications to obtain a
new access token Refresh tokens themselves cannot provide access to
resources on the server.
Token refreshes are accomplished through a `POST` request to the token
exchange endpoint as described in the SMART App Launch Framework.
# Test Methodology
This test attempts to exchange the refresh token for a new access token
and verify that the information returned contains the required fields and
uses the proper headers.
For more information see:
* [The OAuth 2.0 Authorization
Framework](https://tools.ietf.org/html/rfc6749)
* [Using a refresh token to obtain a new access token
(STU1)](http://hl7.org/fhir/smart-app-launch/1.0.0/index.html#step-5-later-app-uses-a-refresh-token-to-obtain-a-new-access-token)
* [Using a refresh token to obtain a new access token
(STU2)](http://hl7.org/fhir/smart-app-launch/STU2/app-launch.html#refresh-access-token)
)
id :g10_token_refresh
test from: :smart_token_refresh,
id: :g10_token_refresh_without_scopes,
config: {
options: { include_scopes: false }
}
test from: :smart_token_refresh_body,
id: :g10_token_refresh_body_without_scopes
test from: :smart_token_refresh,
title: 'Server successfully refreshes the access token when optional scope parameter provided',
id: :g10_token_refresh_with_scopes,
config: {
options: { include_scopes: true }
}
test from: :smart_token_refresh_body,
id: :g10_token_refresh_body_with_scopes
end
end
Version data entries
29 entries across 29 versions & 1 rubygems