EVE SSO Test Plan

EVE SSO Test Plan

This public plan shows the no-secret route checks WarpIntel uses before first EVE login testing. It is a review surface only: proof target routes are displayed for operators and monitors, but this page does not start OAuth, exchange codes, call EVE or CCP, or expose private EVE data.

Gatedisabled

Still locked before public login.

First LoginpublicData

First sign-in stays public identity only.

Proof Targets10

10 are marked no-OAuth in the public test plan.

Private Data10

Every proof target excludes private EVE data.

Owner Review6

Account boundary, callback, credential storage, scope, smoke, and tracker checks stay explicit.

Rollback Paths3

Wrong app, callback drift, and unexpected OAuth behavior have stop paths.

Activation Criteria7/7

0 required gate(s) still block public sign-in.

Runtime GuardEnforced

Login checks run before state cookies and provider redirects.

Step 1

EVE SSO readiness JSON

Public no-secret readiness feed returns the current launch gate.

Route
/api/auth/eve/readiness
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 2

Session preview

Signed-out session preview returns safe app-local state only.

Route
/api/auth/eve/session?returnTo=/dashboard
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 3

Login gate

Login remains inside WarpIntel until callback, credentials, publicData, and feature flag are ready.

Route
/api/auth/eve/login?returnTo=/dashboard
Run Phase
pre-activation-gate
Safety
No OAuth, no private data
Step 4

publicData consent preview

First-login publicData consent can be reviewed before OAuth starts.

Route
/api/auth/eve/consent-preview?scopes=publicData&returnTo=/dashboard
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 5

Permission preview page

User-facing permission preview renders the first-login scope safely.

Route
/permissions/preview?scopes=publicData&returnTo=/dashboard
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 6

Bad-state callback smoke

Callback state failure redirects safely without token exchange.

Route
/api/auth/eve/callback?code=smoke&state=bad
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 7

Logout control

Logout clears app-local auth state and returns through a safe redirect.

Route
/api/auth/eve/logout
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 8

Disconnect control

Disconnect stays safe when unauthenticated and does not expose token state.

Route
/api/auth/eve/disconnect
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 9

Account export guard

Account export is protected and returns unauthorized when signed out.

Route
/api/account/export
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
Step 10

Account delete guard

Account deletion is protected and redirects safely when signed out.

Route
/api/account/delete
Run Phase
public-no-secret-smoke
Safety
No OAuth, no private data
project-owner

WarpIntel Account Boundary Review

Confirm the EVE Developer application, callback, and credentials belong to WarpIntel only and no separate-project account is used.

Evidence
EVE Developer Portal application review
operator

Callback And Domain Review

Confirm the production callback exactly matches https://warpintel.app/api/auth/eve/callback before OAuth can start.

Evidence
protected setup packet
operator

Credential Storage Review

Confirm client credentials are stored only in protected project systems and are never copied into chat, logs, docs, screenshots, or public pages.

Evidence
protected credentials and environment review
project-owner

First Login Scope Review

Confirm first sign-in asks only for publicData and private feature scopes remain user-consent gated until the feature needs them.

Evidence
consent preview
build-team

Controlled Login Smoke Review

Run one controlled production publicData sign-in test after the feature flag is enabled and verify public health stays no-secret.

Evidence
production live sign-in test notes
operator

Tracker Record

Record only secret-free commit, deployment, callback, scope, and smoke outcomes in the WarpIntel tracker.

Evidence
project tracker
Rollback

Wrong EVE App Or Account

Wrong account or application state stops activation before users can start OAuth.

Safe Action
Stop activation, keep EVE login hidden, rotate or remove the mismatched runtime values, and restage the WarpIntel-only app before retrying.
Rollback

Callback Or Scope Drift

Callback or first-login scope drift rolls the lane back to preview-only consent review.

Safe Action
Disable the EVE SSO feature flag, keep consent previews public-only, and correct the callback or scope approval before another test.
Rollback

Unexpected OAuth Or Private Data Exposure

Unexpected OAuth, token, or private-data exposure returns EVE SSO to the locked public readiness state.

Safe Action
Disable login, clear runtime EVE credentials if needed, verify no-store public health and live smoke, and review logs without publishing sensitive values.

Public Boundary

The public EVE SSO test plan exposes route labels, expected outcomes, gate counts, owner-review labels, rollback summaries, and no-secret safety booleans only. It does not start OAuth, call EVE or CCP, exchange codes, read private EVE data, mutate providers, write database rows, write cookies, expose token values, or expose account payloads.

EVE SSO ReadinessLaunch ChecklistPermission Activation PlanTest Plan JSONStatusHealth JSON