Test Plans / Admin / Login

Admin Panel Login Test Plan

Email + Password authentication flow for admin/staff users

Version: 1.0
Last Updated: December 10, 2025
Total Test Cases: 10

Overview

The admin panel uses traditional email and password authentication. Only users with admin or staff roles can access the panel. The login page uses Material UI components and integrates with React Admin's authentication system.

Authentication Flow

Enter Email
Enter Password
Submit
Validate
Dashboard
Security Note: Only admin and staff users can access this panel. Customer accounts will be rejected even with valid credentials.

UI Reference

Admin Login Screen

Admin Login UI (Material Design)
Admin Panel
Sign in to your account
Enter your email and password to access the admin panel
Email
Password visibility_off
SIGN IN
Only admin and staff users can access this panel

Error State Example

Login Error Display
Admin Panel
Sign in to your account
Enter your email and password to access the admin panel
Invalid email or password
admin@example.com
******** visibility
SIGN IN

Test Data

Valid Admin/Staff Credentials

Email Password Role Notes
admin@bizplaza.in Admin@123 Admin Full access to all features
staff@bizplaza.in Staff@123 Staff Limited access based on permissions

Invalid Test Credentials

Email Password Expected Result
customer@example.com Customer@123 Rejected - customer role not allowed
admin@bizplaza.in wrongpassword Invalid credentials error
nonexistent@email.com anypassword Invalid credentials error
Note: Test credentials may vary by environment. Check with your team lead for current valid test accounts.

Test Cases: Valid Login Scenarios

TC-AD-LOGIN-001 Successful Admin Login
High

Objective: Verify that an admin user can successfully log in to the admin panel.

  1. Navigate to the admin login page
    • Login page loads with BizPlaza logo
    • "Admin Panel" subtitle is displayed
    • Email and Password fields are visible
    • "SIGN IN" button is disabled (empty fields)
  2. Enter valid admin email: admin@bizplaza.in
    Email is entered in the field
  3. Enter valid password: Admin@123
    "SIGN IN" button becomes enabled
  4. Click the "SIGN IN" button
    • Loading spinner appears on button
    • Button becomes disabled during request
  5. Wait for authentication to complete
    • User is redirected to admin dashboard
    • Success notification appears: "Login successful"
    • Sidebar navigation is visible
    • User info shown in top-right corner
TC-AD-LOGIN-002 Successful Staff Login
High

Objective: Verify that a staff user can successfully log in to the admin panel.

  1. Navigate to the admin login page
    Login page loads
  2. Enter staff email: staff@bizplaza.in
    Email is entered
  3. Enter staff password: Staff@123
    Password is entered, "SIGN IN" button enabled
  4. Click "SIGN IN" button
    • User is redirected to admin dashboard
    • Menu items may be limited based on staff permissions
TC-AD-LOGIN-003 Password Visibility Toggle
Medium

Objective: Verify the password visibility toggle works correctly.

  1. Navigate to the admin login page
    Login page loads, password field shows visibility_off icon
  2. Enter a password: TestPassword123
    Password is masked (shown as dots/asterisks)
  3. Click the visibility icon (eye icon)
    • Password becomes visible as plain text
    • Icon changes to visibility (open eye)
  4. Click the visibility icon again
    • Password is masked again
    • Icon changes back to visibility_off (closed eye)

Test Cases: Input Validation

TC-AD-LOGIN-004 Empty Email Validation
Medium

Objective: Verify that empty email shows appropriate error.

  1. Navigate to the admin login page
    Login page loads
  2. Leave email field empty, enter password: anypassword
    "SIGN IN" button remains disabled
  3. Try to submit by pressing Enter in password field
    • Form does not submit
    • Error message appears: "Please enter your email address"
TC-AD-LOGIN-005 Invalid Email Format Validation
Medium

Objective: Verify that invalid email formats are rejected.

  1. Navigate to the admin login page
    Login page loads
  2. Enter invalid email: notanemail
    Text is entered in email field
  3. Enter password and click "SIGN IN"
    Error message: "Please enter a valid email address"
  4. Try email without domain: admin@
    Error message: "Please enter a valid email address"
  5. Try email without @ symbol: admin.bizplaza.in
    Error message: "Please enter a valid email address"
TC-AD-LOGIN-006 Empty Password Validation
Medium

Objective: Verify that empty password shows appropriate error.

  1. Navigate to the admin login page
    Login page loads
  2. Enter valid email: admin@bizplaza.in, leave password empty
    "SIGN IN" button remains disabled
  3. Try submitting the form
    Error message: "Please enter your password"
TC-AD-LOGIN-007 Short Password Validation
Low

Objective: Verify that passwords less than 6 characters are rejected.

  1. Navigate to the admin login page
    Login page loads
  2. Enter email: admin@bizplaza.in
    Email is entered
  3. Enter short password: 12345 (5 characters)
    Password is entered
  4. Click "SIGN IN" button
    Error message: "Password must be at least 6 characters"

Test Cases: Error Handling

TC-AD-LOGIN-008 Invalid Credentials Error
High

Objective: Verify proper error handling for invalid credentials.

  1. Navigate to the admin login page
    Login page loads
  2. Enter email: admin@bizplaza.in
    Email is entered
  3. Enter wrong password: WrongPassword123
    Password is entered
  4. Click "SIGN IN" button
    • Red error alert appears at top of form
    • Error message: "Invalid email or password"
    • User remains on login page
    • Form fields retain their values
TC-AD-LOGIN-009 Customer Account Rejection
High

Objective: Verify that customer accounts cannot access admin panel.

  1. Navigate to the admin login page
    Login page loads
  2. Enter customer email: customer@example.com
    Email is entered
  3. Enter valid customer password
    Password is entered
  4. Click "SIGN IN" button
    • Error message appears indicating unauthorized access
    • User is NOT logged in
    • Remains on login page
Security: Error message should be generic to prevent account enumeration attacks. Don't reveal whether the email exists or what role it has.
TC-AD-LOGIN-010 Error Clears on Input Change
Low

Objective: Verify that error messages clear when user starts typing.

  1. Trigger an error by submitting invalid credentials
    Error message is displayed
  2. Start typing in the email field
    Error message disappears
  3. Trigger error again
    Error message is displayed again
  4. Start typing in the password field
    Error message disappears

Pre-Test Checklist

Environment URLs

Environment Admin URL Notes
Local http://localhost:4001 Default local dev port
Development https://dev-admin.bizplaza.in Dev environment
Staging https://staging-admin.bizplaza.in Pre-production testing

Related Test Plans