Hi, is there a good pattern for handling form + session based authentication in tests - or should it be disabled for tests?