TC_A_02_CSMS — Basic Authentication - Username does not equal ChargingStationId
TC_A_02_CSMS — Basic Authentication - Username does not equal ChargingStationId
Source: OCPP 2.0.1 Part 6 — Test Cases (Core & Advanced Security, FINAL, 2023-06-30) — Functional block A. Security, page 328.
Identification
| Field | Value |
|---|---|
| Test case name | Basic Authentication - Username does not equal ChargingStationId |
| Test case Id | TC_A_02_CSMS |
| Use case Id(s) | A00 |
| Requirement(s) | A00.FR.204 |
| System under test | CSMS |
| Functional block | A. Security |
Description
The Charging Station uses Basic authentication to authenticate itself to the CSMS, when using security profile 1 or 2.
Purpose
To verify whether the CSMS is able to validate the (invalid) Basic authentication credentials provided by the Charging Station at the connection request.
Prerequisite(s)
The CSMS supports security profile 1 and/or 2
Before (Preparations)
Configuration State:
- N/a
Memory State:
- N/a
Reusable State(s):
- N/a
Main (Test scenario)
| Charging Station | CSMS |
|---|---|
| 1. The OCTT sends a HTTP upgrade request with an Authorization header, containing a username/password combination.; Note(s):; - The Authorization header is formatted as follows: AUTHORIZATION: Basic <Base64 encoded(<Configured ChargingStationId> + Invalid:<Configured basicAuthPassword>)> | 2. The CSMS validates the username/password combination AND rejects the connection upgrade request. |
Tool validations
N/a
Post scenario validations
- N/a