Merge pull request #13 from NHSDigital/NPA-1868-set-oath-scope-to-nhs-p9

NPA-1868 Set OAUTH Scope to NHS Login p9

Author: samuel-hollow1-nhsd

proxies/live/apiproxy/policies/OAuthV2.VerifyAccessTokenAppLevel3OrCis2Aal3.xml

@@ -0,0 +1,4 @@
+<OAuthV2 async="false" continueOnError="false" enabled="true" name="VerifyAccessTokenUserNhsLoginP9">
+  <Operation>VerifyAccessToken</Operation>
+  <Scopes>urn:nhsd:apim:user-nhs-login:P9:validated-relationships-service-api</Scopes>
+</OAuthV2>

proxies/live/apiproxy/policies/OAuthV2.VerifyAccessTokenUserNhsLoginP9.xml

@@ -2,7 +2,7 @@
   <PreFlow>
     <Request>
       <Step>
-        <Name>OauthV2.VerifyAccessTokenAppLevel3OrCis2Aal3</Name>
+        <Name>VerifyAccessTokenUserNhsLoginP9</Name>
       </Step>
       <Step>
         <Name>FlowCallout.ApplyRateLimiting</Name>

proxies/live/apiproxy/targets/target.xml

@@ -72,23 +72,3 @@ def test_wait_for_status(nhsd_apim_proxy_url, status_endpoint_auth_headers):
 def test_app_level0(nhsd_apim_proxy_url, nhsd_apim_auth_headers):
     resp = requests.get(f"{nhsd_apim_proxy_url}", headers=nhsd_apim_auth_headers)
     assert resp.status_code == 401  # unauthorized
-
-
-@pytest.mark.skip(reason="TBC: Are we supporting Application level 3 access to the API?")
-@pytest.mark.nhsd_apim_authorization({"access": "application", "level": "level3"})
-def test_app_level3(nhsd_apim_proxy_url, nhsd_apim_auth_headers):
-    resp = requests.get(f"{nhsd_apim_proxy_url}", headers=nhsd_apim_auth_headers)
-    assert resp.status_code == 200
-
-
-@pytest.mark.skip(reason="Requires API key to be shared with proxy and decision on endpoint and user to use")
-@pytest.mark.nhsd_apim_authorization(
-    {
-        "access": "patient",
-        "level": "P9",
-        "login_form": {"username": "TBC"}
-    }
-)
-def test_nhs_login_p9(nhsd_apim_proxy_url, nhsd_apim_auth_headers):
-    resp = requests.get(f"{nhsd_apim_proxy_url}", headers=nhsd_apim_auth_headers)
-    assert resp.status_code == 200