HomeModulesModule 10
10

Admin Panel

3 test cases · 14 verification points
UAT-10.1

Admin Access Control

Critical
Precondition: One admin account and one non-admin account

Steps

  1. Log in as a non-admin user, try to access /admin
  2. Log in as an admin user, access /admin

Verify (4 checks)

  • Non-admin user is blocked from accessing admin panel (403 or redirect)
  • Admin user can access the admin panel
  • Admin panel shows user management section
  • Admin panel shows audit logs
ScoreTesterDateNotes
___ ___ ___ ___
UAT-10.2

User Management

High
Precondition: Logged in as admin

Steps

  1. Navigate to Admin > Users
  2. View the user list
  3. Change a user's role

Verify (6 checks)

  • All registered users are listed
  • Each user shows: name, email, role, creation date
  • Can change a user's role (user -> admin, admin -> user)
  • Role change takes effect immediately
  • Audit log entry is created for the role change
  • Cannot remove admin role from the last admin (safety check)
ScoreTesterDateNotes
___ ___ ___ ___
UAT-10.3

Audit Logs

Medium
Precondition: Logged in as admin, some actions have been performed

Steps

  1. Navigate to Admin > Audit Logs
  2. Review the log entries

Verify (4 checks)

  • Audit logs are displayed in reverse chronological order
  • Each entry shows: timestamp, user, action, target, IP address
  • Actions logged include: role changes, document deletions, admin access
  • Logs cannot be modified or deleted by any user
ScoreTesterDateNotes
___ ___ ___ ___
← Module 9: Settings Module 11: Notifications →