azaion/admin
1
0
Fork 0
mirror of https://github.com/azaion/admin.git synced 2026-06-21 09:31:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
5224a1258914f9360b7e5ca4db9cccd286160749
admin/_docs/_autodev_state.md
T
Oleksandr Bezdieniezhnykh 5224a12589 [AZ-557] Fix MfaLoginTests AC1/AC2/AC7 seed ordering 
UserService.ValidateUser calls RegisterSuccessfulLogin on a successful
password verify, which resets FailedLoginCount=0 even on the MFA path
(the reset happens inside ValidateUser before the MFA branch returns
the step-1 token). Seeding the counter before /login was therefore a
no-op — the threshold-1 seed was wiped before the wrong-TOTP request
got a chance to trip the lockout.

Move SetLockoutUntil to AFTER step 1 succeeds in AC1, AC2, AC7. AC7
now also genuinely exercises MfaService's own counter reset on a
correct TOTP, instead of being satisfied by the password-success reset.

Co-authored-by: Cursor <cursoragent@cursor.com>
2026-05-14 10:13:23 +03:00

17 lines
324 B
Markdown
Raw Blame History

# Autodev State
## Current Step
flow: existing-code
step: 11
name: Run Tests
status: in_progress
sub_step:
phase: 2
name: run
detail: "scripts/run-tests.sh (docker-compose, ~6 min)"
leftovers_to_replay:
- _docs/_process_leftovers/2026-05-14_suite_infra_jwt_secret_drift.md
retry_count: 0
cycle: 2
tracker: jira
Reference in New Issue View Git Blame Copy Permalink