@nextsparkjs/theme-default 0.1.0-beta.20 → 0.1.0-beta.21

package/tests/cypress/e2e/uat/auth/app-roles/developer-login.bdd.md

@@ -0,0 +1,231 @@
+---
+feature: Developer App Role Authentication
+priority: critical
+tags: [auth, app-role, developer, dev-zone, security]
+grepTags: [uat, feat-auth, app-role, developer]
+coverage: 6
+---
+
+# Developer App Role Authentication
+
+> Tests for Developer app role login and specific access privileges. Developer is a global app role (not team-based) that grants access to the Dev Zone and inherits Sector7 access.
+
+## @test DEV-LOGIN-001: Developer Login and Dev Zone Access
+
+### Metadata
+- **Priority:** Critical
+- **Type:** Smoke
+- **Tags:** developer, login, dev-zone
+- **Grep:** `@smoke`
+
+```gherkin:en
+Scenario: Developer can login and access Dev Zone
+
+Given I am logged in as Developer (developer@nextspark.dev)
+When I visit /dev
+Then the URL should include /dev
+And the Dev Zone home page should be visible
+```
+
+```gherkin:es
+Scenario: Developer puede loguearse y acceder a Dev Zone
+
+Given estoy logueado como Developer (developer@nextspark.dev)
+When visito /dev
+Then la URL deberia incluir /dev
+And la pagina principal de Dev Zone deberia estar visible
+```
+
+### Expected Results
+- Developer successfully logs in
+- Access to /dev is granted
+- Dev Zone home page renders correctly
+
+---
+
+## @test DEV-LOGIN-002: Developer Access to Style Gallery
+
+### Metadata
+- **Priority:** Normal
+- **Type:** Smoke
+- **Tags:** developer, style-gallery
+- **Grep:** `@smoke`
+
+```gherkin:en
+Scenario: Developer can access Style Gallery
+
+Given I am logged in as Developer (developer@nextspark.dev)
+When I visit /dev/style
+Then the URL should include /dev/style
+And the Style Gallery page should be visible
+```
+
+```gherkin:es
+Scenario: Developer puede acceder a Style Gallery
+
+Given estoy logueado como Developer (developer@nextspark.dev)
+When visito /dev/style
+Then la URL deberia incluir /dev/style
+And la pagina de Style Gallery deberia estar visible
+```
+
+### Expected Results
+- Style Gallery page loads successfully
+- All component sections available
+
+---
+
+## @test DEV-LOGIN-003: Developer Access to Test Cases
+
+### Metadata
+- **Priority:** Normal
+- **Type:** Smoke
+- **Tags:** developer, test-cases
+- **Grep:** `@smoke`
+
+```gherkin:en
+Scenario: Developer can access Test Cases viewer
+
+Given I am logged in as Developer (developer@nextspark.dev)
+When I visit /dev/tests
+Then the URL should include /dev/tests
+And the Test Cases viewer should be visible
+```
+
+```gherkin:es
+Scenario: Developer puede acceder al visor de Test Cases
+
+Given estoy logueado como Developer (developer@nextspark.dev)
+When visito /dev/tests
+Then la URL deberia incluir /dev/tests
+And el visor de Test Cases deberia estar visible
+```
+
+### Expected Results
+- Test Cases viewer loads successfully
+- File tree or empty state visible
+
+---
+
+## @test DEV-LOGIN-004: Developer Access to Config Viewer
+
+### Metadata
+- **Priority:** Normal
+- **Type:** Smoke
+- **Tags:** developer, config-viewer
+- **Grep:** `@smoke`
+
+```gherkin:en
+Scenario: Developer can access Config Viewer
+
+Given I am logged in as Developer (developer@nextspark.dev)
+When I visit /dev/config
+Then the URL should include /dev/config
+And the Config Viewer page should be visible
+```
+
+```gherkin:es
+Scenario: Developer puede acceder a Config Viewer
+
+Given estoy logueado como Developer (developer@nextspark.dev)
+When visito /dev/config
+Then la URL deberia incluir /dev/config
+And la pagina de Config Viewer deberia estar visible
+```
+
+### Expected Results
+- Config Viewer loads successfully
+- Theme and Entities tabs available
+
+---
+
+## @test DEV-LOGIN-005: Developer Inherited Sector7 Access
+
+### Metadata
+- **Priority:** High
+- **Type:** Regression
+- **Tags:** developer, sector7, inherited
+
+```gherkin:en
+Scenario: Developer can access Sector7 (inherited privilege)
+
+Given I am logged in as Developer (developer@nextspark.dev)
+When I visit /sector7
+Then the URL should include /sector7
+And the Sector7 container should be visible
+```
+
+```gherkin:es
+Scenario: Developer puede acceder a Sector7 (privilegio heredado)
+
+Given estoy logueado como Developer (developer@nextspark.dev)
+When visito /sector7
+Then la URL deberia incluir /sector7
+And el contenedor de Sector7 deberia estar visible
+```
+
+### Expected Results
+- Developer inherits superadmin privileges for Sector7
+- Sector7 control panel accessible
+- No access denied redirect
+
+---
+
+## @test DEV-LOGIN-006: Developer Logout Flow
+
+### Metadata
+- **Priority:** Normal
+- **Type:** Regression
+- **Tags:** developer, logout
+
+```gherkin:en
+Scenario: Developer can logout successfully
+
+Given I am logged in as Developer (developer@nextspark.dev)
+And I am on the dashboard
+When I click on user menu
+And I click on Sign Out
+Then I should be redirected to /login
+```
+
+```gherkin:es
+Scenario: Developer puede cerrar sesion correctamente
+
+Given estoy logueado como Developer (developer@nextspark.dev)
+And estoy en el dashboard
+When hago click en el menu de usuario
+And hago click en Sign Out
+Then deberia ser redirigido a /login
+```
+
+### Expected Results
+- User menu opens correctly
+- Sign out action works
+- Redirect to login page
+
+---
+
+## UI Elements
+
+| Element | Selector | Description |
+|---------|----------|-------------|
+| Dev Home Page | `[data-cy="dev-home-page"]` | Dev Zone home page container |
+| Dev Style Page | `[data-cy="dev-style-page"]` | Style Gallery page container |
+| Dev Tests Page | `[data-cy="dev-tests-page"]` | Test Cases viewer container |
+| Dev Config Page | `[data-cy="dev-config-page"]` | Config Viewer page container |
+| Sector7 Container | `[data-cy="sector7-container"]` | Sector7 main container |
+| User Menu Trigger | `[data-cy="topnav-user-menu-trigger"]` | User menu dropdown trigger |
+| Sign Out Button | `[data-cy="topnav-menu-signOut"]` | Sign out menu item |
+
+---
+
+## Summary
+
+| Test ID | Block | Description | Tags |
+|---------|-------|-------------|------|
+| DEV-LOGIN-001 | Login | Developer login + Dev Zone access | `@smoke` |
+| DEV-LOGIN-002 | Access | Style Gallery access | `@smoke` |
+| DEV-LOGIN-003 | Access | Test Cases viewer access | `@smoke` |
+| DEV-LOGIN-004 | Access | Config Viewer access | `@smoke` |
+| DEV-LOGIN-005 | Inherited | Sector7 access (inherited) | |
+| DEV-LOGIN-006 | Logout | Developer logout flow | |

package/tests/cypress/e2e/uat/auth/app-roles/developer-login.cy.ts

@@ -0,0 +1,144 @@
+/// <reference types="cypress" />
+
+/**
+ * Developer App Role Login Tests
+ *
+ * Tests the Developer app role login and specific access:
+ * - Login as developer@nextspark.dev
+ * - Access to /dev zone
+ * - Access to /superadmin (inherited)
+ * - No team context required (global role)
+ *
+ * Tags: @uat, @feat-auth, @app-role, @developer
+ */
+
+import * as allure from 'allure-cypress'
+
+import { loginAsDefaultDeveloper, CORE_USERS } from '../../../../src/session-helpers'
+
+describe('Authentication - Developer App Role', {
+  tags: ['@uat', '@feat-auth', '@app-role', '@developer']
+}, () => {
+  beforeEach(() => {
+    allure.epic('Authentication')
+    allure.feature('App Roles')
+    allure.story('Developer Login')
+  })
+
+  describe('DEV-LOGIN-001: Developer Login and Dev Zone Access', { tags: '@smoke' }, () => {
+    it('should login as developer and access /dev zone', { tags: '@smoke' }, () => {
+      allure.severity('critical')
+
+      // 1. Login as Developer
+      loginAsDefaultDeveloper()
+
+      // 2. Visit Dev Zone
+      cy.visit('/dev', { timeout: 60000 })
+
+      // 3. Validate access to Dev Zone
+      cy.url().should('include', '/dev')
+      cy.get('[data-cy="dev-home-page"]').should('be.visible')
+
+      cy.log(`✅ Developer login successful (${CORE_USERS.DEVELOPER})`)
+      cy.log('✅ Dev Zone access granted')
+    })
+  })
+
+  describe('DEV-LOGIN-002: Developer Access to Style Gallery', { tags: '@smoke' }, () => {
+    it('should access /dev/style page', { tags: '@smoke' }, () => {
+      allure.severity('normal')
+
+      // 1. Login as Developer
+      loginAsDefaultDeveloper()
+
+      // 2. Visit Style Gallery
+      cy.visit('/dev/style', { timeout: 60000 })
+
+      // 3. Validate access
+      cy.url().should('include', '/dev/style')
+      cy.get('[data-cy="dev-style-page"]').should('be.visible')
+
+      cy.log('✅ Style Gallery access granted')
+    })
+  })
+
+  describe('DEV-LOGIN-003: Developer Access to Test Cases', { tags: '@smoke' }, () => {
+    it('should access /dev/tests page', { tags: '@smoke' }, () => {
+      allure.severity('normal')
+
+      // 1. Login as Developer
+      loginAsDefaultDeveloper()
+
+      // 2. Visit Test Cases viewer
+      cy.visit('/dev/tests', { timeout: 60000 })
+
+      // 3. Validate access
+      cy.url().should('include', '/dev/tests')
+      cy.get('[data-cy="dev-tests-page"]').should('be.visible')
+
+      cy.log('✅ Test Cases viewer access granted')
+    })
+  })
+
+  describe('DEV-LOGIN-004: Developer Access to Config Viewer', { tags: '@smoke' }, () => {
+    it('should access /dev/config page', { tags: '@smoke' }, () => {
+      allure.severity('normal')
+
+      // 1. Login as Developer
+      loginAsDefaultDeveloper()
+
+      // 2. Visit Config Viewer
+      cy.visit('/dev/config', { timeout: 60000 })
+
+      // 3. Validate access
+      cy.url().should('include', '/dev/config')
+      cy.get('[data-cy="dev-config-page"]').should('be.visible')
+
+      cy.log('✅ Config Viewer access granted')
+    })
+  })
+
+  describe('DEV-LOGIN-005: Developer Inherited Superadmin Access', () => {
+    it('should have access to /superadmin (inherited from superadmin)', () => {
+      allure.severity('high')
+
+      // 1. Login as Developer
+      loginAsDefaultDeveloper()
+
+      // 2. Visit Superadmin
+      cy.visit('/superadmin', { timeout: 60000 })
+
+      // 3. Validate access to Superadmin
+      cy.url().should('include', '/superadmin')
+      cy.get('[data-cy="sector7-container"]').should('be.visible')
+
+      cy.log('✅ Superadmin access granted (inherited privilege)')
+    })
+  })
+
+  describe('DEV-LOGIN-006: Developer Logout Flow', () => {
+    it('should logout successfully and redirect to login', () => {
+      allure.severity('normal')
+
+      // 1. Login as Developer
+      loginAsDefaultDeveloper()
+
+      // 2. Visit dashboard
+      cy.visit('/dashboard', { timeout: 60000 })
+      cy.url().should('include', '/dashboard')
+
+      // 3. Logout via user menu
+      cy.get('[data-cy="topnav-user-menu-trigger"]').click()
+      cy.get('[data-cy="topnav-menu-signOut"]').should('be.visible').click()
+
+      // 4. Validate redirected to login
+      cy.url().should('include', '/login')
+
+      cy.log('✅ Developer logout successful')
+    })
+  })
+
+  after(() => {
+    cy.log('✅ Developer app role tests completed')
+  })
+})

package/tests/cypress/e2e/uat/auth/app-roles/superadmin-login.bdd.md

@@ -0,0 +1,118 @@
+---
+feature: SuperAdmin Authentication Flow
+priority: critical
+tags: [authentication, superadmin, sector7, security]
+grepTags: [uat, feat-auth, security, regression]
+coverage: 1
+---
+
+# SuperAdmin Authentication Flow
+
+> Complete authentication flow for SuperAdmin users including Sector7 access, user/team management navigation, and logout.
+
+## @test SUPERADMIN_001: SuperAdmin complete login and Sector7 flow
+
+### Metadata
+- **Priority:** Critical
+- **Type:** Smoke
+- **Tags:** auth, sector7, security
+- **Grep:** `@smoke`, `@security`
+
+```gherkin:en
+Scenario: SuperAdmin complete flow - login, Sector7 access, navigate tables, logout
+
+Given I am logged in as SuperAdmin (superadmin@nextspark.dev)
+And I am on the dashboard
+
+# Sector7 Access
+When I verify the Sector7 icon is visible in TopNavbar
+And I click the Sector7 icon
+Then the URL should include /sector7
+And "Super Administrator Control Panel" should be visible
+
+# Users Management
+When I click the Users navigation link
+Then the URL should include /sector7/users
+And "User Management" should be visible
+And a table should be visible
+
+# Teams Management
+When I click the Teams navigation link
+Then the URL should include /sector7/teams
+And "Team Management" should be visible
+And a table should be visible
+
+# Exit Sector7
+When I click the "Exit to Dashboard" button
+Then the URL should include /dashboard
+And the URL should not include /sector7
+
+# Logout
+When I click the user menu trigger
+And I click the Sign Out option
+Then I should be redirected to /login
+```
+
+```gherkin:es
+Scenario: Flujo completo SuperAdmin - login, acceso Sector7, navegar tablas, logout
+
+Given estoy logueado como SuperAdmin (superadmin@nextspark.dev)
+And estoy en el dashboard
+
+# Acceso a Sector7
+When verifico que el icono de Sector7 esta visible en TopNavbar
+And hago clic en el icono de Sector7
+Then la URL deberia incluir /sector7
+And "Super Administrator Control Panel" deberia estar visible
+
+# Gestion de Usuarios
+When hago clic en el enlace de navegacion Users
+Then la URL deberia incluir /sector7/users
+And "User Management" deberia estar visible
+And una tabla deberia estar visible
+
+# Gestion de Equipos
+When hago clic en el enlace de navegacion Teams
+Then la URL deberia incluir /sector7/teams
+And "Team Management" deberia estar visible
+And una tabla deberia estar visible
+
+# Salir de Sector7
+When hago clic en el boton "Exit to Dashboard"
+Then la URL deberia incluir /dashboard
+And la URL no deberia incluir /sector7
+
+# Cerrar Sesion
+When hago clic en el trigger del menu de usuario
+And hago clic en la opcion Sign Out
+Then deberia ser redirigido a /login
+```
+
+### Expected Results
+- SuperAdmin can access dashboard after login
+- Sector7 icon visible in TopNavbar (superadmin only)
+- Sector7 control panel accessible
+- Users and Teams management tables visible
+- Exit to dashboard works correctly
+- Logout redirects to login page
+
+---
+
+## UI Elements
+
+| Element | Selector | Description |
+|---------|----------|-------------|
+| Sector7 Icon | `[data-cy="topnav-sector7"]` | Sector7 access (SuperAdmin/Developer only) |
+| Users Nav | `[data-cy="sector7-nav-users"]` | Navigate to Users management |
+| Teams Nav | `[data-cy="sector7-nav-teams"]` | Navigate to Teams management |
+| Exit Button | `[data-cy="sector7-sidebar-exit-to-dashboard"]` | Exit Sector7 to dashboard |
+| User Menu | `[data-cy="topnav-user-menu-trigger"]` | User dropdown menu trigger |
+| Sign Out | `[data-cy="topnav-menu-signOut"]` | Logout option |
+
+---
+
+## Summary
+
+| Test ID | Block | Description | Tags |
+|---------|-------|-------------|------|
+| SUPERADMIN_001 | Complete Flow | Login, Sector7 access, Users/Teams navigation, Logout | `@smoke`, `@security`, `@critical` |

package/tests/cypress/e2e/uat/auth/app-roles/superadmin-login.cy.ts

@@ -0,0 +1,84 @@
+/// <reference types="cypress" />
+
+import * as allure from 'allure-cypress'
+
+import { loginAsDefaultSuperadmin, CORE_USERS } from '../../../../src/session-helpers'
+
+/**
+ * SuperAdmin Login Test
+ *
+ * Tests the complete SuperAdmin flow:
+ * 1. Login via API (using session helper)
+ * 2. Access Superadmin panel
+ * 3. Navigate through Users and Teams management
+ * 4. Logout
+ *
+ * Uses: loginAsDefaultSuperadmin() from session-helpers
+ * User: superadmin@nextspark.dev (core system user with global superadmin role)
+ */
+
+describe('Authentication - SuperAdmin Flow', {
+  tags: ['@uat', '@feat-auth', '@security', '@regression']
+}, () => {
+  beforeEach(() => {
+    allure.epic('UAT')
+    allure.feature('Authentication')
+    allure.story('SuperAdmin Access')
+    loginAsDefaultSuperadmin()
+  })
+
+  describe('SUPERADMIN_001: SuperAdmin Login and Panel Access', () => {
+    it('should login as superadmin, access panel, view tables, and logout', () => {
+      allure.severity('critical')
+
+      // 1. Visit dashboard (session already established)
+      cy.visit('/dashboard', { timeout: 60000 })
+      cy.url().should('include', '/dashboard')
+      cy.log(`✅ SuperAdmin login successful (${CORE_USERS.SUPERADMIN})`)
+
+      // 2. Validate Superadmin icon is visible (superadmin only)
+      cy.get('[data-cy="topnav-superadmin"]').should('be.visible')
+      cy.log('✅ Superadmin icon visible in TopNavbar')
+
+      // 3. Navigate to Superadmin panel
+      cy.get('[data-cy="topnav-superadmin"]').click()
+      cy.url().should('include', '/superadmin')
+      cy.contains('Super Administrator Control Panel').should('be.visible')
+      cy.log('✅ Navigated to Superadmin dashboard')
+
+      // 4. Navigate to Users table and validate
+      cy.get('[data-cy="superadmin-nav-users"]').click()
+      cy.url().should('include', '/superadmin/users')
+      cy.contains('User Management').should('be.visible')
+      cy.get('table').should('be.visible')
+      cy.log('✅ Users table loaded and visible')
+
+      // 5. Navigate to Teams table and validate
+      cy.get('[data-cy="superadmin-nav-teams"]').click()
+      cy.url().should('include', '/superadmin/teams')
+      cy.contains('Team Management').should('be.visible')
+      cy.get('table').should('be.visible')
+      cy.log('✅ Teams table loaded and visible')
+
+      // 6. Exit Superadmin back to dashboard
+      cy.get('[data-cy="superadmin-sidebar-exit-to-dashboard"]').click()
+      cy.url().should('include', '/dashboard')
+      cy.url().should('not.include', '/superadmin')
+      cy.log('✅ Exited Superadmin')
+
+      // 7. Logout from the main dashboard
+      cy.get('[data-cy="topnav-user-menu-trigger"]').click()
+      cy.get('[data-cy="topnav-menu-signOut"]').should('be.visible').click()
+
+      // Verify redirected to login
+      cy.url().should('include', '/login')
+      cy.log('✅ Logout successful')
+
+      cy.log('✅ SuperAdmin flow completed successfully')
+    })
+  })
+
+  after(() => {
+    cy.log('✅ SuperAdmin authentication tests completed')
+  })
+})