MAGETWO-50608: [Github][Security] Able to brute force API token access

Oleksii Korshenko · Sergey Nosov · commit ae1c1388eb2e · 2016-03-26T17:25:14.000+02:00
- fixed rest tests
diff --git a/dev/tests/api-functional/testsuite/Magento/Integration/Model/AdminTokenServiceTest.php b/dev/tests/api-functional/testsuite/Magento/Integration/Model/AdminTokenServiceTest.php
@@ -62,7 +62,7 @@ public function setUp()
      */
     public function testCreateAdminAccessToken()
     {
-        $adminUserNameFromFixture = 'adminUser';
+        $adminUserNameFromFixture = 'webapi_user';
 
         $serviceInfo = [
             'rest' => [
@@ -143,7 +143,7 @@ public function validationDataProvider()
      */
     public function testThrottlingMaxAttempts()
     {
-        $adminUserNameFromFixture = 'adminUser';
+        $adminUserNameFromFixture = 'webapi_user';
 
         $serviceInfo = [
             'rest' => [
@@ -181,11 +181,11 @@ public function testThrottlingMaxAttempts()
     }
 
     /**
-     * @magentoApiDataFixture Magento/User/_files/user_with_role.php
+     * @magentoApiDataFixture Magento/Webapi/_files/webapi_user.php
      */
     public function testThrottlingAccountLockout()
     {
-        $adminUserNameFromFixture = 'adminUser';
+        $adminUserNameFromFixture = 'webapi_user';
 
         $serviceInfo = [
             'rest' => [
