Based on past experience, these tests would be nice:
- smoke test to try an API query with a pre-authorized provider (on beta, possibly prod as well)
- smoke test to try /identify with a pre-authorized provider (on beta, possibly prod as well)
- smoke test to try an API query with an owner-only provider (on beta, possibly prod as well)
- browser test to create normal consumer (on CI)
- browser test to create owner-only consumer (on CI)
- maybe security tests? (wrong stage, wrong key, wrong wiki, wrong grant)
@Anomie's Hello World app is probably a good target for the smoke tests.