✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1_3" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ "{connection}" state is open ✓ "{connection.State}" is "open" ✓ I close connection "{connection}" ✓ "{connection}" state is closed

✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1_2" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ we wait for a period of "40" ms ✓ "{connection.State}" is "closed"

✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1_1" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ we wait for a period of "40" ms ✓ "{connection.State}" is "closed"

✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ we wait for a period of "40" ms ✓ "{connection.State}" is "closed"

✓ a cloud api for "{Instance}" in "api" ✓ "report" contains details of SSL Support type "protocols" for "{hostName}" on port "{portNumber}" ✗ "{report}" is an array of objects which doesn't contain any of - Error: unwanted row found in array: map[finding:offered id:TLS1_2] ⊘ "{report}" is an array of objects with at least the following contents (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ "report" contains details of SSL Support type "vulnerable" for "{hostName}" on port "{portNumber}" ✓ "{report}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ "report" contains details of SSL Support type "server-defaults" for "{hostName}" on port "{portNumber}" ✓ "{report}" is an array of objects with at least the following contents

✓ a client connects to "{hostName}" with protocol "http" on port "80" ✓ I refer to "{result}" as "connection" ✓ "{connection}" is not an error ✓ I transmit "GET / HTTP/1.1\r\nHost: {hostName}\r\n\r\n" to "{connection}" ✓ I attach "{connection}" to the test output as "HTTP response" ✗ "{connection.Output}" contains "301" - Error: expected {connection.Output} to contain '301', but got 'HTTP/1.1 400 The account being accessed does not support http. Content-Length: 289 Content-Type: application/xml Server: Microsoft-HTTPAPI/2.0 x-ms-request-id: 0b04e79c-001e-001b-18d6-c11c66000000 Date: Wed, 01 Apr 2026 12:56:11 GMT <?xml version="1.0" encoding="utf-8"?><Error><Code>AccountRequiresHttps</Code><Message>The account being accessed does not support http. RequestId:0b04e79c-001e-001b-18d6-c11c66000000 Time:2026-04-01T12:56:12.3162000Z</Message><AccountName>storagecfitest1775043178</AccountName></Error>' ⊘ I call "{connection}" with "Close" (skipped) ⊘ "{connection.State}" is "closed" (skipped)

✓ "report" contains details of SSL Support type "protocols" for "{hostName}" on port "{portNumber}" ✓ "{report}" is an array of objects with at least the following contents

✓ "{portNumber}" is "443"

✓ "report" contains details of SSL Support type "server-defaults" for "{hostName}" on port "{portNumber}" ✗ "{report}" is an array of objects with at least the following contents - Error: expected row not found: map[finding:required id:clientAuth]

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ "{result}" is not an error ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-encryption-check={Timestamp}.txt", and "encryption test data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-encryption-check=1775043464033.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-encryption-check=1775043464033.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:01541a0d-c01e-0049-3bcc-c1608e000000 Time:2026-04-01T11:41:46.0954990Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I refer to "{result}" as "uploadResult" (skipped) ⊘ "{uploadResult.Encryption}" is not null (skipped) ⊘ "{uploadResult.EncryptionAlgorithm}" is "AES256" (skipped) ⊘ I attach "{uploadResult}" to the test output as "Upload Result with Encryption Details" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "{ServiceType}" ✓ I refer to "{result}" as "theService" ✓ I call "{api}" with "GetServiceAPI" using argument "logging" ✓ I refer to "{result}" as "loggingService" ✓ I call "{theService}" with "UpdateResourcePolicy" ✓ "{result}" is not an error ✓ I attach "{result}" to the test output as "Policy Update Result" ✓ we wait for a period of "10000" ms ✓ I call "{loggingService}" with "QueryAdminLogs" using arguments "{ResourceName}" and "{20}" ✓ "{result}" is not an error ✓ I refer to "{result}" as "adminLogs" ✓ I attach "{adminLogs}" to the test output as "Admin Activity Logs" ✓ "{adminLogs}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "logging" ✓ I refer to "{result}" as "loggingService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-read-logging-object={Timestamp}.txt", and "test data for read logging verification" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-read-logging-object=1775043730017.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-read-logging-object=1775043730017.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:015761a3-c01e-0049-6acd-c1608e000000 Time:2026-04-01T11:46:12.0519647Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I refer to "{result}" as "createResult" (skipped) ⊘ I call "{storage}" with "ReadObject" using arguments "{ResourceName}" and "test-read-logging-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "readResult" (skipped) ⊘ I attach "{readResult}" to the test output as "Object Read Result" (skipped) ⊘ we wait for a period of "10000" ms (skipped) ⊘ I call "{loggingService}" with "QueryDataReadLogs" using arguments "{ResourceName}" and "{20}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "readLogs" (skipped) ⊘ I attach "{readLogs}" to the test output as "Data Read Logs" (skipped) ⊘ "{readLogs}" is an array of objects with at least the following contents (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-write-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-access-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-cn05-unauthorized-modify={Timestamp}.txt", and "unauthorized data" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-create-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write-access", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-cn05-authorized-modify={Timestamp}.txt", and "authorized data" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "write-create-object-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-admin-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-admin-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-cn05-unauthorized-admin-container" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-admin-create-bucket-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read-only-admin", "{UID}", and "read" ✓ I refer to "{result}" as "testUserRead" ✓ I attach "{result}" to the test output as "read-only-admin-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-cn05-read-only-create-container" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "read-only-create-bucket-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-admin-access", "{UID}", and "admin" ✓ I refer to "{result}" as "testUserAdmin" ✓ I attach "{result}" to the test output as "admin-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserAdmin}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-cn05-authorized-admin-container" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "admin-create-bucket-result.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "test-cn05-authorized-admin-container" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "GetReplicationStatus" using argument "{ResourceName}" ✓ I refer to "{result}" as "replicationStatus" ✓ I refer to "{replicationStatus.Locations}" as "locations" ✓ I attach "{replicationStatus}" to the test output as "Replication Status" ✓ "{locations}" is an array of objects with length "2" ✓ "{PermittedRegions}" is an array of objects with at least the following contents ✓ "{PermittedRegions}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "GetReplicationStatus" using argument "{ResourceName}" ✓ I refer to "{result}" as "replicationStatus" ✓ I attach "{replicationStatus}" to the test output as "Replication Status" ✓ I refer to "{replicationStatus.Locations}" as "locations" ✓ "{locations}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-access-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ListObjects" using argument "{ResourceName}" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-list-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" ✓ I refer to "{result}" as "testUserRead" ✓ I attach "{result}" to the test output as "read-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I attach "{result}" to the test output as "read-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ListObjects" using argument "{ResourceName}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "read-list-objects-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test content" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775045679389.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-object=1775045679389.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:cc3c542f-e01e-0003-4ad1-c1c301000000 Time:2026-04-01T12:18:41.9538108Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" (skipped) ⊘ I refer to "{result}" as "testUserNoAccess" (skipped) ⊘ I attach "{result}" to the test output as "no-access-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-read-object-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test content" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775045921978.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-object=1775045921978.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:cc3e9db2-e01e-0003-3bd2-c1c301000000 Time:2026-04-01T12:22:44.2775685Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" (skipped) ⊘ I refer to "{result}" as "testUserRead" (skipped) ⊘ I attach "{result}" to the test output as "read-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "read-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "read-read-object-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-access-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-bucket-no-access" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-create-bucket-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I attach "{result}" to the test output as "write-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-bucket-write" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "write-create-bucket-result.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "{result.ID}" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ "{result}" is not an error ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ "{result}" is not an error ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" ✓ I refer to "{result}" as "testUserRead" ✓ I attach "{result}" to the test output as "read-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-write-object={Timestamp}.txt", and "test content" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "read-create-object-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ "{result}" is not an error ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ "{result}" is not an error ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I attach "{result}" to the test output as "write-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-write-object={Timestamp}.txt", and "test content" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "write-create-object-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775047377091.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:42:57.6581812Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 3858917d-2902-4403-9d0a-677daa7c1300 Correlation ID: 1359ebd9-c203-4639-bbb1-7abc9592718c Timestamp: 2026-04-01 12:42:57Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" (skipped) ⊘ I refer to "{result}" as "testUserRead" (skipped) ⊘ I attach "{result}" to the test output as "read-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I call "{storage}" with "SetObjectPermission" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "none" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "set-object-permission-error.txt" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775047378856.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:42:59.3883069Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 41444abc-458f-4080-8fe7-b392563a0c00 Correlation ID: 17343955-f8fa-40ef-9879-8ee3b4aecc30 Timestamp: 2026-04-01 12:42:59Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" (skipped) ⊘ I refer to "{result}" as "testUserNoAccess" (skipped) ⊘ I attach "{result}" to the test output as "no-access-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I call "{storage}" with "SetObjectPermission" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "read" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "set-object-permission-error.txt" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateBucket" using argument "ccc-test-soft-delete" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to create container: failed to create container ccc-test-soft-delete: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:43:00.0975342Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 3b49c722-650d-48c2-bbb1-e11b93120a00 Correlation ID: 464df169-4e47-46f7-8bc9-c7df20aca4f9 Timestamp: 2026-04-01 12:43:00Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I refer to "{result}" as "testBucket" (skipped) ⊘ I attach "{result}" to the test output as "created-bucket.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "ccc-test-soft-delete" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I call "{storage}" with "ListDeletedBuckets" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "deleted-buckets.json" (skipped) ? "{result}" should have length greater than "0" (undefined) ⊘ I call "{storage}" with "RestoreBucket" using argument "ccc-test-soft-delete" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I call "{storage}" with "ListBuckets" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "restored-buckets.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "ccc-test-soft-delete" (skipped) ⊘ "{result}" is not an error (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "GetBucketRetentionDurationDays" using argument "{ResourceName}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to get container properties: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:43:01.7128125Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: d191f517-9b87-4252-9dd1-eb9cc3970900 Correlation ID: d02bebb9-430b-4c07-8e2d-8109c94afcfb Timestamp: 2026-04-01 12:43:01Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I refer to "{result}" as "originalRetention" (skipped) ⊘ I attach "{result}" to the test output as "original-retention-days.txt" (skipped) ⊘ "{result}" should be greater than "0" (skipped) ⊘ I call "{storage}" with "SetBucketRetentionDurationDays" using arguments "{ResourceName}" and "1" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "set-retention-error.txt" (skipped) ⊘ I call "{storage}" with "GetBucketRetentionDurationDays" using argument "{ResourceName}" (skipped) ⊘ "{result}" is not an error (skipped) ? "{result}" should equal "{originalRetention}" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-retention-object={Timestamp}.txt", and "protected data" (skipped) ⊘ I attach "{result}" to the test output as "uploaded-object.json" (skipped) ⊘ I call "{userStorage}" with "GetObjectRetentionDurationDays" using arguments "{ResourceName}" and "test-retention-object={Timestamp}.txt" (skipped) ⊘ "{result}" should be greater than "1" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "immediate-delete-test={Timestamp}.txt", and "test content" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob immediate-delete-test=1775047625583.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:47:05.8871394Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 550a146d-f6f6-46d2-9c81-25bc40b31400 Correlation ID: 60f6ce1c-b476-4280-98e1-8147e334e9cb Timestamp: 2026-04-01 12:47:05Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "immediate-delete-test={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "immediate-delete-error.txt" (skipped) ? "{result}" should contain "retention" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "retention-period-test={Timestamp}.txt", and "compliance data" ✓ I call "{storage}" with "GetObjectRetentionDurationDays" using arguments "{ResourceName}" and "retention-period-test={Timestamp}.txt" ✗ "{result}" should be greater than "1" - Error: cannot parse {result} as number: strconv.ParseFloat: parsing "failed to get blob properties: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:47:06.8390040Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: be413971-b288-4230-b8f9-e878dec90200 Correlation ID: cdddabc4-4461-4934-9e83-9dbb7012824f Timestamp: 2026-04-01 12:47:06Z\nRun the command below to authenticate interactively; additional arguments may be added as needed:\naz logout\naz login\n": invalid syntax ⊘ I attach "{result}" to the test output as "retention-period-days.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "protected-object={Timestamp}.txt", and "immutable data" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "protected-object.json" (skipped) ⊘ I call "{userStorage}" with "DeleteObject" using arguments "{ResourceName}" and "protected-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "delete-protected-error.txt" (skipped) ? "{result}" should contain one of "retention, locked, immutable, protected" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "admin-protected-object={Timestamp}.txt", and "compliance data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob admin-protected-object=1775047870175.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:51:10.5202132Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: c8b0ad53-b2aa-41f1-9eaa-28edc48e1100 Correlation ID: 7a9326df-c55e-4404-ab53-d3845da3a1f7 Timestamp: 2026-04-01 12:51:10Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "admin-protected-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "admin-delete-protected-error.txt" (skipped) ? "{result}" should contain "retention" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "modify-test-object={Timestamp}.txt", and "original content" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "original-object.json" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "modify-test-object={Timestamp}.txt", and "modified content" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "modify-protected-error.txt" (skipped) ? "{result}" should contain one of "retention, locked, immutable, protected, exists" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "readable-protected-object={Timestamp}.txt", and "readable data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob readable-protected-object=1775048113297.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:55:13.9190839Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 4b424c6c-3463-4e07-bf59-5f8f12901500 Correlation ID: c8892b37-dd92-4234-9963-a8c8ce74dfd1 Timestamp: 2026-04-01 12:55:13Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" (skipped) ⊘ I refer to "{result}" as "testUserRead" (skipped) ⊘ I attach "{result}" to the test output as "read-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "readable-protected-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "readResult" (skipped) ⊘ I attach "{result}" to the test output as "read-protected-object.json" (skipped) ⊘ "{readResult.Name}" is "readable-protected-object={Timestamp}.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "IsBucketVersioningEnabled" using argument "{ResourceName}" ✓ "{result}" is true ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "versioned-object.txt", and "test content" ✓ I refer to "{result}" as "createdObject" ✗ "{createdObject.VersionID}" contains "20" - Error: expected {createdObject.VersionID} to contain '20', but got '<nil>' ⊘ I attach "{result}" to the test output as "versioned-object.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "original content" ✓ I refer to "{result.VersionID}" as "version1" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "modified content" ✓ I refer to "{result.VersionID}" as "version2" ? "{version1}" is not equal to "{version2}" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "original content" ✓ I refer to "{result.VersionID}" as "version1" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "modified content" ✓ I refer to "{result.VersionID}" as "version2" ✓ I call "{storage}" with "ReadObjectAtVersion" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "{version1}" ✓ I attach "{result}" to the test output as "original-content.json" ✗ "{result.Data}" contains "original content" - Error: expected {result.Data} to contain 'original content', but got '<nil>' ⊘ I call "{storage}" with "ReadObjectAtVersion" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "{version2}" (skipped) ⊘ "{result.Data}" contains "modified content" (skipped) ⊘ I attach "{result}" to the test output as "modified-content.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "recover-deleted-object={Timestamp}.txt", and "data to retain" ✓ I refer to "{result.VersionID}" as "retainedVersionId" ✓ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "recover-deleted-object={Timestamp}.txt" ✓ I call "{storage}" with "ReadObjectAtVersion" using arguments "{ResourceName}", "recover-deleted-object={Timestamp}.txt", and "{retainedVersionId}" ✗ "{result.Data}" contains "data to retain" - Error: expected {result.Data} to contain 'data to retain', but got '<nil>' ⊘ I attach "{result}" to the test output as "recovered-deleted-version.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "list-deleted-versions-object={Timestamp}.txt", and "versioned data" ✓ I refer to "{result.VersionID}" as "listedVersionId" ✓ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "list-deleted-versions-object={Timestamp}.txt" ✓ I call "{storage}" with "ListObjectVersions" using arguments "{ResourceName}" and "list-deleted-versions-object={Timestamp}.txt" ✗ "{result}" is an array of objects with at least the following contents - Error: field {result} is not an array ⊘ I attach "{result}" to the test output as "versions-after-delete.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1_3" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ "{connection}" state is open ✓ "{connection.State}" is "open" ✓ I close connection "{connection}" ✓ "{connection}" state is closed

✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1_2" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ we wait for a period of "40" ms ✓ "{connection.State}" is "closed"

✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1_1" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ we wait for a period of "40" ms ✓ "{connection.State}" is "closed"

✓ a cloud api for "{Instance}" in "api" ✓ an openssl s_client request using "tls1" to "{portNumber}" on "{hostName}" protocol "{protocol}" ✓ I refer to "{result}" as "connection" ✓ we wait for a period of "40" ms ✓ "{connection.State}" is "closed"

✓ a cloud api for "{Instance}" in "api" ✓ "report" contains details of SSL Support type "protocols" for "{hostName}" on port "{portNumber}" ✗ "{report}" is an array of objects which doesn't contain any of - Error: unwanted row found in array: map[finding:offered id:TLS1_2] ⊘ "{report}" is an array of objects with at least the following contents (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ "report" contains details of SSL Support type "vulnerable" for "{hostName}" on port "{portNumber}" ✓ "{report}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ "report" contains details of SSL Support type "server-defaults" for "{hostName}" on port "{portNumber}" ✓ "{report}" is an array of objects with at least the following contents

✓ a client connects to "{hostName}" with protocol "http" on port "80" ✓ I refer to "{result}" as "connection" ✓ "{connection}" is not an error ✓ I transmit "GET / HTTP/1.1\r\nHost: {hostName}\r\n\r\n" to "{connection}" ✓ I attach "{connection}" to the test output as "HTTP response" ✗ "{connection.Output}" contains "301" - Error: expected {connection.Output} to contain '301', but got 'HTTP/1.1 400 The account being accessed does not support http. Content-Length: 289 Content-Type: application/xml Server: Microsoft-HTTPAPI/2.0 x-ms-request-id: 0b04e79c-001e-001b-18d6-c11c66000000 Date: Wed, 01 Apr 2026 12:56:11 GMT <?xml version="1.0" encoding="utf-8"?><Error><Code>AccountRequiresHttps</Code><Message>The account being accessed does not support http. RequestId:0b04e79c-001e-001b-18d6-c11c66000000 Time:2026-04-01T12:56:12.3162000Z</Message><AccountName>storagecfitest1775043178</AccountName></Error>' ⊘ I call "{connection}" with "Close" (skipped) ⊘ "{connection.State}" is "closed" (skipped)

✓ "report" contains details of SSL Support type "protocols" for "{hostName}" on port "{portNumber}" ✓ "{report}" is an array of objects with at least the following contents

✓ "{portNumber}" is "443"

✓ "report" contains details of SSL Support type "server-defaults" for "{hostName}" on port "{portNumber}" ✗ "{report}" is an array of objects with at least the following contents - Error: expected row not found: map[finding:required id:clientAuth]

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ "{result}" is not an error ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-encryption-check={Timestamp}.txt", and "encryption test data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-encryption-check=1775043464033.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-encryption-check=1775043464033.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:01541a0d-c01e-0049-3bcc-c1608e000000 Time:2026-04-01T11:41:46.0954990Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I refer to "{result}" as "uploadResult" (skipped) ⊘ "{uploadResult.Encryption}" is not null (skipped) ⊘ "{uploadResult.EncryptionAlgorithm}" is "AES256" (skipped) ⊘ I attach "{uploadResult}" to the test output as "Upload Result with Encryption Details" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "{ServiceType}" ✓ I refer to "{result}" as "theService" ✓ I call "{api}" with "GetServiceAPI" using argument "logging" ✓ I refer to "{result}" as "loggingService" ✓ I call "{theService}" with "UpdateResourcePolicy" ✓ "{result}" is not an error ✓ I attach "{result}" to the test output as "Policy Update Result" ✓ we wait for a period of "10000" ms ✓ I call "{loggingService}" with "QueryAdminLogs" using arguments "{ResourceName}" and "{20}" ✓ "{result}" is not an error ✓ I refer to "{result}" as "adminLogs" ✓ I attach "{adminLogs}" to the test output as "Admin Activity Logs" ✓ "{adminLogs}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "logging" ✓ I refer to "{result}" as "loggingService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-read-logging-object={Timestamp}.txt", and "test data for read logging verification" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-read-logging-object=1775043730017.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-read-logging-object=1775043730017.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:015761a3-c01e-0049-6acd-c1608e000000 Time:2026-04-01T11:46:12.0519647Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I refer to "{result}" as "createResult" (skipped) ⊘ I call "{storage}" with "ReadObject" using arguments "{ResourceName}" and "test-read-logging-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "readResult" (skipped) ⊘ I attach "{readResult}" to the test output as "Object Read Result" (skipped) ⊘ we wait for a period of "10000" ms (skipped) ⊘ I call "{loggingService}" with "QueryDataReadLogs" using arguments "{ResourceName}" and "{20}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "readLogs" (skipped) ⊘ I attach "{readLogs}" to the test output as "Data Read Logs" (skipped) ⊘ "{readLogs}" is an array of objects with at least the following contents (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-write-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-access-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-cn05-unauthorized-modify={Timestamp}.txt", and "unauthorized data" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-create-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write-access", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-cn05-authorized-modify={Timestamp}.txt", and "authorized data" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "write-create-object-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-admin-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-admin-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-cn05-unauthorized-admin-container" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-admin-create-bucket-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read-only-admin", "{UID}", and "read" ✓ I refer to "{result}" as "testUserRead" ✓ I attach "{result}" to the test output as "read-only-admin-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-cn05-read-only-create-container" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "read-only-create-bucket-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-admin-access", "{UID}", and "admin" ✓ I refer to "{result}" as "testUserAdmin" ✓ I attach "{result}" to the test output as "admin-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserAdmin}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-cn05-authorized-admin-container" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "admin-create-bucket-result.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "test-cn05-authorized-admin-container" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "GetReplicationStatus" using argument "{ResourceName}" ✓ I refer to "{result}" as "replicationStatus" ✓ I refer to "{replicationStatus.Locations}" as "locations" ✓ I attach "{replicationStatus}" to the test output as "Replication Status" ✓ "{locations}" is an array of objects with length "2" ✓ "{PermittedRegions}" is an array of objects with at least the following contents ✓ "{PermittedRegions}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "GetReplicationStatus" using argument "{ResourceName}" ✓ I refer to "{result}" as "replicationStatus" ✓ I attach "{replicationStatus}" to the test output as "Replication Status" ✓ I refer to "{replicationStatus.Locations}" as "locations" ✓ "{locations}" is an array of objects with at least the following contents

✓ a cloud api for "{Instance}" in "api" ✓ no-op required

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-access-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ListObjects" using argument "{ResourceName}" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-list-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" ✓ I refer to "{result}" as "testUserRead" ✓ I attach "{result}" to the test output as "read-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I attach "{result}" to the test output as "read-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ListObjects" using argument "{ResourceName}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "read-list-objects-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test content" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775045679389.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-object=1775045679389.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:cc3c542f-e01e-0003-4ad1-c1c301000000 Time:2026-04-01T12:18:41.9538108Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" (skipped) ⊘ I refer to "{result}" as "testUserNoAccess" (skipped) ⊘ I attach "{result}" to the test output as "no-access-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-read-object-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test content" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775045921978.txt: PUT https://storagecfitest1775043178.blob.core.windows.net/ccc-test-container-1775043178/test-object=1775045921978.txt -------------------------------------------------------------------------------- RESPONSE 403: 403 This request is not authorized to perform this operation using this permission. ERROR CODE: AuthorizationPermissionMismatch -------------------------------------------------------------------------------- <?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationPermissionMismatch</Code><Message>This request is not authorized to perform this operation using this permission. RequestId:cc3e9db2-e01e-0003-3bd2-c1c301000000 Time:2026-04-01T12:22:44.2775685Z</Message></Error> -------------------------------------------------------------------------------- ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" (skipped) ⊘ I refer to "{result}" as "testUserRead" (skipped) ⊘ I attach "{result}" to the test output as "read-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "read-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "read-read-object-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" ✓ I refer to "{result}" as "testUserNoAccess" ✓ I attach "{result}" to the test output as "no-access-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-bucket-no-access" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "no-access-create-bucket-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I attach "{result}" to the test output as "write-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateBucket" using argument "test-bucket-write" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "write-create-bucket-result.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "{result.ID}" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ "{result}" is not an error ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ "{result}" is not an error ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" ✓ I refer to "{result}" as "testUserRead" ✓ I attach "{result}" to the test output as "read-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-write-object={Timestamp}.txt", and "test content" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "read-create-object-error.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ "{result}" is not an error ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ "{result}" is not an error ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I attach "{result}" to the test output as "write-storage-service.json" (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-write-object={Timestamp}.txt", and "test content" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "write-create-object-result.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775047377091.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:42:57.6581812Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 3858917d-2902-4403-9d0a-677daa7c1300 Correlation ID: 1359ebd9-c203-4639-bbb1-7abc9592718c Timestamp: 2026-04-01 12:42:57Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" (skipped) ⊘ I refer to "{result}" as "testUserRead" (skipped) ⊘ I attach "{result}" to the test output as "read-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I call "{storage}" with "SetObjectPermission" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "none" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "set-object-permission-error.txt" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "test data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob test-object=1775047378856.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:42:59.3883069Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 41444abc-458f-4080-8fe7-b392563a0c00 Correlation ID: 17343955-f8fa-40ef-9879-8ee3b4aecc30 Timestamp: 2026-04-01 12:42:59Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-no-access", "{UID}", and "none" (skipped) ⊘ I refer to "{result}" as "testUserNoAccess" (skipped) ⊘ I attach "{result}" to the test output as "no-access-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserNoAccess}", and "{false}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I call "{storage}" with "SetObjectPermission" using arguments "{ResourceName}", "test-object={Timestamp}.txt", and "read" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "set-object-permission-error.txt" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "test-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateBucket" using argument "ccc-test-soft-delete" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to create container: failed to create container ccc-test-soft-delete: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:43:00.0975342Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 3b49c722-650d-48c2-bbb1-e11b93120a00 Correlation ID: 464df169-4e47-46f7-8bc9-c7df20aca4f9 Timestamp: 2026-04-01 12:43:00Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I refer to "{result}" as "testBucket" (skipped) ⊘ I attach "{result}" to the test output as "created-bucket.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "ccc-test-soft-delete" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I call "{storage}" with "ListDeletedBuckets" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "deleted-buckets.json" (skipped) ? "{result}" should have length greater than "0" (undefined) ⊘ I call "{storage}" with "RestoreBucket" using argument "ccc-test-soft-delete" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I call "{storage}" with "ListBuckets" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "restored-buckets.json" (skipped) ⊘ I call "{storage}" with "DeleteBucket" using argument "ccc-test-soft-delete" (skipped) ⊘ "{result}" is not an error (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "GetBucketRetentionDurationDays" using argument "{ResourceName}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to get container properties: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:43:01.7128125Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: d191f517-9b87-4252-9dd1-eb9cc3970900 Correlation ID: d02bebb9-430b-4c07-8e2d-8109c94afcfb Timestamp: 2026-04-01 12:43:01Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I refer to "{result}" as "originalRetention" (skipped) ⊘ I attach "{result}" to the test output as "original-retention-days.txt" (skipped) ⊘ "{result}" should be greater than "0" (skipped) ⊘ I call "{storage}" with "SetBucketRetentionDurationDays" using arguments "{ResourceName}" and "1" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "set-retention-error.txt" (skipped) ⊘ I call "{storage}" with "GetBucketRetentionDurationDays" using argument "{ResourceName}" (skipped) ⊘ "{result}" is not an error (skipped) ? "{result}" should equal "{originalRetention}" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "test-retention-object={Timestamp}.txt", and "protected data" (skipped) ⊘ I attach "{result}" to the test output as "uploaded-object.json" (skipped) ⊘ I call "{userStorage}" with "GetObjectRetentionDurationDays" using arguments "{ResourceName}" and "test-retention-object={Timestamp}.txt" (skipped) ⊘ "{result}" should be greater than "1" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "immediate-delete-test={Timestamp}.txt", and "test content" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob immediate-delete-test=1775047625583.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:47:05.8871394Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 550a146d-f6f6-46d2-9c81-25bc40b31400 Correlation ID: 60f6ce1c-b476-4280-98e1-8147e334e9cb Timestamp: 2026-04-01 12:47:05Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "immediate-delete-test={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "immediate-delete-error.txt" (skipped) ? "{result}" should contain "retention" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "retention-period-test={Timestamp}.txt", and "compliance data" ✓ I call "{storage}" with "GetObjectRetentionDurationDays" using arguments "{ResourceName}" and "retention-period-test={Timestamp}.txt" ✗ "{result}" should be greater than "1" - Error: cannot parse {result} as number: strconv.ParseFloat: parsing "failed to get blob properties: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:47:06.8390040Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: be413971-b288-4230-b8f9-e878dec90200 Correlation ID: cdddabc4-4461-4934-9e83-9dbb7012824f Timestamp: 2026-04-01 12:47:06Z\nRun the command below to authenticate interactively; additional arguments may be added as needed:\naz logout\naz login\n": invalid syntax ⊘ I attach "{result}" to the test output as "retention-period-days.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I attach "{result}" to the test output as "write-user-identity.json" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "protected-object={Timestamp}.txt", and "immutable data" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "protected-object.json" (skipped) ⊘ I call "{userStorage}" with "DeleteObject" using arguments "{ResourceName}" and "protected-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "delete-protected-error.txt" (skipped) ? "{result}" should contain one of "retention, locked, immutable, protected" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "admin-protected-object={Timestamp}.txt", and "compliance data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob admin-protected-object=1775047870175.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:51:10.5202132Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: c8b0ad53-b2aa-41f1-9eaa-28edc48e1100 Correlation ID: 7a9326df-c55e-4404-ab53-d3845da3a1f7 Timestamp: 2026-04-01 12:51:10Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "admin-protected-object={Timestamp}.txt" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "admin-delete-protected-error.txt" (skipped) ? "{result}" should contain "retention" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-write", "{UID}", and "write" ✓ I refer to "{result}" as "testUserWrite" ✓ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserWrite}", and "{true}" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: Error calling {api}.GetServiceAPIWithIdentity: reflect: Call using *fmt.wrapError as type *iam.Identity ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "modify-test-object={Timestamp}.txt", and "original content" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I attach "{result}" to the test output as "original-object.json" (skipped) ⊘ I call "{userStorage}" with "CreateObject" using arguments "{ResourceName}", "modify-test-object={Timestamp}.txt", and "modified content" (skipped) ⊘ "{result}" is an error (skipped) ⊘ I attach "{result}" to the test output as "modify-protected-error.txt" (skipped) ? "{result}" should contain one of "retention, locked, immutable, protected, exists" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{api}" with "GetServiceAPI" using argument "iam" ✓ I refer to "{result}" as "iamService" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "readable-protected-object={Timestamp}.txt", and "readable data" ✗ "{result}" is not an error - Error: expected {result} to not be an error, but got: failed to upload blob readable-protected-object=1775048113297.txt: AzureCLICredential: ERROR: AADSTS700024: Client assertion is not within its valid time range. Current time: 2026-04-01T12:55:13.9190839Z, assertion valid from 2026-04-01T11:32:59.0000000Z, expiry time of assertion 2026-04-01T11:37:59.0000000Z. Review the documentation at https://learn.microsoft.com/entra/identity-platform/certificate-credentials . Trace ID: 4b424c6c-3463-4e07-bf59-5f8f12901500 Correlation ID: c8892b37-dd92-4234-9963-a8c8ce74dfd1 Timestamp: 2026-04-01 12:55:13Z Run the command below to authenticate interactively; additional arguments may be added as needed: az logout az login ⊘ I call "{iamService}" with "ProvisionUserWithAccess" using arguments "test-user-read", "{UID}", and "read" (skipped) ⊘ I refer to "{result}" as "testUserRead" (skipped) ⊘ I attach "{result}" to the test output as "read-user-identity.json" (skipped) ⊘ I call "{api}" with "GetServiceAPIWithIdentity" using arguments "object-storage", "{testUserRead}", and "{true}" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "userStorage" (skipped) ⊘ I call "{userStorage}" with "ReadObject" using arguments "{ResourceName}" and "readable-protected-object={Timestamp}.txt" (skipped) ⊘ "{result}" is not an error (skipped) ⊘ I refer to "{result}" as "readResult" (skipped) ⊘ I attach "{result}" to the test output as "read-protected-object.json" (skipped) ⊘ "{readResult.Name}" is "readable-protected-object={Timestamp}.txt" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "IsBucketVersioningEnabled" using argument "{ResourceName}" ✓ "{result}" is true ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "versioned-object.txt", and "test content" ✓ I refer to "{result}" as "createdObject" ✗ "{createdObject.VersionID}" contains "20" - Error: expected {createdObject.VersionID} to contain '20', but got '<nil>' ⊘ I attach "{result}" to the test output as "versioned-object.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "original content" ✓ I refer to "{result.VersionID}" as "version1" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "modified content" ✓ I refer to "{result.VersionID}" as "version2" ? "{version1}" is not equal to "{version2}" (undefined)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "original content" ✓ I refer to "{result.VersionID}" as "version1" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "modified content" ✓ I refer to "{result.VersionID}" as "version2" ✓ I call "{storage}" with "ReadObjectAtVersion" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "{version1}" ✓ I attach "{result}" to the test output as "original-content.json" ✗ "{result.Data}" contains "original content" - Error: expected {result.Data} to contain 'original content', but got '<nil>' ⊘ I call "{storage}" with "ReadObjectAtVersion" using arguments "{ResourceName}", "version-test-object={Timestamp}.txt", and "{version2}" (skipped) ⊘ "{result.Data}" contains "modified content" (skipped) ⊘ I attach "{result}" to the test output as "modified-content.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "recover-deleted-object={Timestamp}.txt", and "data to retain" ✓ I refer to "{result.VersionID}" as "retainedVersionId" ✓ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "recover-deleted-object={Timestamp}.txt" ✓ I call "{storage}" with "ReadObjectAtVersion" using arguments "{ResourceName}", "recover-deleted-object={Timestamp}.txt", and "{retainedVersionId}" ✗ "{result.Data}" contains "data to retain" - Error: expected {result.Data} to contain 'data to retain', but got '<nil>' ⊘ I attach "{result}" to the test output as "recovered-deleted-version.json" (skipped)

✓ a cloud api for "{Instance}" in "api" ✓ I call "{api}" with "GetServiceAPI" using argument "object-storage" ✓ I refer to "{result}" as "storage" ✓ I call "{storage}" with "CreateObject" using arguments "{ResourceName}", "list-deleted-versions-object={Timestamp}.txt", and "versioned data" ✓ I refer to "{result.VersionID}" as "listedVersionId" ✓ I call "{storage}" with "DeleteObject" using arguments "{ResourceName}" and "list-deleted-versions-object={Timestamp}.txt" ✓ I call "{storage}" with "ListObjectVersions" using arguments "{ResourceName}" and "list-deleted-versions-object={Timestamp}.txt" ✗ "{result}" is an array of objects with at least the following contents - Error: field {result} is not an array ⊘ I attach "{result}" to the test output as "versions-after-delete.json" (skipped)