- Enter anything invalid
- Login with valid email and password a user without two factor enabled
- Change password
- Logout
- Login
- Click on Forgot Password
- Redirect to email sent
- Check email and click on link
- Reset password
- Redirect to login
- Use a fake token
- Enter passwords
- Login
- Enter two factor code and click trust computer
- Logout
- Login
- Return immediately to the home page
Note this is not yet working, but will when trust is set in cookies
- Use a fake token
- Enter any code
- Login to get a valid token
- Enter an invalid code
- Set user must change password in fusionauth
- Login
- Change password
- Redirect to home page
- Set user must change password in fusionauth
- Login
- Two factor
- Change password
- (user will be relogged in behind the scenes)
- Redirect to home page
This has not been tested
- Use a fake token
- Enter passwords
- Turn off verification in FusionAuth
- Sign up a new user
- Redirect to Login page with registration success message
- Turn on verification in FusionAuth
- Sign up a new user
- Redirect to email sent
- Check email and click on link
- Redirect to login with email verified message
- Use any invalid token