Force users to login via email address instead of username #89
Description
Summary
As a user, I want to login with my email address so that I can be better protected against malicious login attempts
Acceptance Criteria
Scenario: User supplies correct email address and password
Given that I am on the sign-in page
When I enter my email address and password correctly
And click ‘Sign In’
Then I am taken to the dashboard
Scenario: User supplies invalid email address
Given that I am on the sign-in page
When I enter a malformed email address
and click ‘Sign In’
Then I see an error message ‘Sorry, that doesn't appear to be a valid email address.”
Scenario: User supplies incorrect email address or password
Given that I am on the sign-in page
When I enter my email address or password incorrectly
and click ‘Sign In’
Then I see an error message ‘Sorry, either the email address or password you entered is incorrect.”