diff --git a/tests/specs/oidc.spec.ts b/tests/specs/oidc.spec.ts
index 3a584327..ecf266e0 100644
--- a/tests/specs/oidc.spec.ts
+++ b/tests/specs/oidc.spec.ts
@@ -189,6 +189,19 @@ test('Refresh token fails when used for the wrong client', async ({ request }) =
 		})
 		.then((r) => r.text());
 
+	// Perform the exchange
+	const refreshResponse = await request.post('/api/oidc/token', {
+		headers: {
+			'Content-Type': 'application/x-www-form-urlencoded'
+		},
+		form: {
+			grant_type: 'refresh_token',
+			client_id: clientId,
+			refresh_token: refreshToken,
+			client_secret: clientSecret
+		}
+	});
+
 	expect(refreshResponse.status()).toBe(400);
 });
 
diff --git a/tests/specs/user-signup.spec.ts b/tests/specs/user-signup.spec.ts
index 2514f327..b0947fd1 100644
--- a/tests/specs/user-signup.spec.ts
+++ b/tests/specs/user-signup.spec.ts
@@ -160,6 +160,9 @@ test.describe('User Signup', () => {
 
 		await page.getByRole('button', { name: 'Skip for now' }).click();
 
+		await expect(page.getByText('Skip Passkey Setup')).toBeVisible();
+		await page.getByRole('button', { name: 'Skip for now' }).nth(1).click();
+
 		await page.waitForURL('/settings/account');
 		await expect(page.getByText('Passkey missing')).toBeVisible();
 	});