Skip to main content
QMSQMS
QMS
  • Welcome to your QMS
  • Quality Manual
  • Procedures
  • Records
  • TF_Legit.Health_Plus
    • Legit.Health Plus TF index
    • Legit.Health Plus STED
    • Legit.Health Plus description and specifications
    • R-TF-001-007 Declaration of conformity
    • GSPR
    • Clinical
    • Design and development
    • Design History File (DHF)
      • Version 1.0.0.0
        • Requirements
        • Test plans
          • PLAN-001 Users submit their credentials to receive an access token
          • PLAN_002 Token expiration in user authentication process
          • PLAN_003 Account lockout for user authentication
          • PLAN_004 Enforcing HTTPS protocol for API communications
          • PLAN_005 Valid SSL/TLS certificates
          • PLAN_006 Rate limiting for anonymous users
          • PLAN_007 Rate limiting for authenticated users
          • PLAN_008 Logging and monitoring of rate limit violations
          • PLAN_009 Validation of request and response data against FHIR schemas
          • PLAN_010 Base64 encoded images are accepted
          • PLAN_011 Non-Base64 encoded images are rejected
          • PLAN_012 Diagnosis support endpoint accepts multiple images
          • PLAN_013 Improved accuracy with multiple images
          • PLAN_014: Password hashing during user registration
          • PLAN_015: Password hash comparison during login
          • PLAN_016: Registration of a new user by authorized individuals
          • PLAN_017 Specification of body zone for scoring systems requiring zone factor
          • PLAN_018 The device's API maintains an uptime of at least 99% over a one-month period
          • PLAN_019 API penetration testing with Intruder.io
        • Test runs
        • 🥣 SOUPs
    • IFU and label
    • Post-Market Surveillance
    • Quality control
    • Risk Management
  • Licenses and accreditations
  • External documentation
  • Procedures
  • Records
  • TF_Legit.Health_Plus
  • Design History File (DHF)
  • Version 1.0.0.0
  • Test plans

Test plans

📄️ PLAN-001 Users submit their credentials to receive an access token

Description

📄️ PLAN_002 Token expiration in user authentication process

Description

📄️ PLAN_003 Account lockout for user authentication

Description

📄️ PLAN_004 Enforcing HTTPS protocol for API communications

Description

📄️ PLAN_005 Valid SSL/TLS certificates

Description

📄️ PLAN_006 Rate limiting for anonymous users

Description

📄️ PLAN_007 Rate limiting for authenticated users

Description

📄️ PLAN_008 Logging and monitoring of rate limit violations

Description

📄️ PLAN_009 Validation of request and response data against FHIR schemas

Description

📄️ PLAN_010 Base64 encoded images are accepted

Description

📄️ PLAN_011 Non-Base64 encoded images are rejected

Description

📄️ PLAN_012 Diagnosis support endpoint accepts multiple images

Description

📄️ PLAN_013 Improved accuracy with multiple images

Description

📄️ PLAN_014: Password hashing during user registration

Description

📄️ PLAN_015: Password hash comparison during login

Description

📄️ PLAN_016: Registration of a new user by authorized individuals

Description

📄️ PLAN_017 Specification of body zone for scoring systems requiring zone factor

Description

📄️ PLAN_018 The device's API maintains an uptime of at least 99% over a one-month period

Description

📄️ PLAN_019 API penetration testing with Intruder.io

Description

Previous
SWR-009- New users of the device are only created by an internal user registration service
Next
PLAN-001 Users submit their credentials to receive an access token
All the information contained in this QMS is confidential. The recipient agrees not to transmit or reproduce the information, neither by himself nor by third parties, through whichever means, without obtaining the prior written permission of Legit.Health (AI LABS GROUP S.L.)