Moving from UI to API testing

MOVING FROM UI TO API TESTING

Shivani Gaba Senior QA @Xing SE @shivani_gaba_ MOVING FROM UI
TO API TESTING

Ice cream made my day.….. .…..and my testing life too
@shivani_gaba_

> CLIENT SERVER API REQUEST API RESPONSE @shivani_gaba_

EXECUTE THIS! https://giphy.com/gifs/lifetimetv-adorable-babies-l1KVaj5UcbHwrBMqI @shivani_gaba_

Perspective change POSTMAN vOpen-source vEasy to install/setup vConfigure and run
tests vTest on-fly vOffers UI-like feeling @shivani_gaba_

Next REQUEST RESPONSE * 2 3 Personal Information Contact data
Financial data API (Postman) User Interface

BODY METHOD REQUEST/ RESPONSE HEADERS CODE EXECUTION TIME AUTH- 0RISATION
EMBRACE ENDPOINT ENDPOINT METHOD BODY REQUEST/ RESPONSE HEADERS AUTH- 0RISATION CODE EXECUTION TIME @shivani_gaba_

EMBRACE ENDPOINT @shivani_gaba_

https://www.example.com/rest/[email protected] Protocol Endpoint Host Query Parameter URI – Uniform Resource
Identifier @shivani_gaba_

METHOD EMBRACE ENDPOINT @shivani_gaba_

Type Usage URI Examples POST Create/update new resource xing.com/rest/user PATCH
Update existing resource xing.com/rest/user/{user_id} GET Read/retrieve resource xing.com/rest/user/{user_id} DELETE Removal of resource xing.com/rest/user/{user_id} UPDATE CREATE RESTful API common methods @shivani_gaba_

We need to test updating of user‘s data thoroughly http://www.live-karikaturen.ch/downloads/manager-krawatte-aufmerksamkeit/
@shivani_gaba_

STEP1: Create user (POST) STEP2: Validate user details (GET)

STEP3: Update user (PATCH) STEP4: Check user updated (GET)

ENDPOINT METHOD EMBRACE BODY @shivani_gaba_

Next * 2 3 Personal Information Employment Financial data

Request Body Cheat-sheet 2. Invalid/boundary values { “email” : “demo@”
, “phone” : “3233” } 4. Missing mandatory keys { “email” : [email protected] } 5. Client prohibited values { “email”: “[email protected]%” , “phone“ : “abc%” } 3. Empty mandatory field { “email” : “[email protected]” , “phone” : “” } 6. Malformed body format { “email” : “[email protected]” “phone“ : “912454332” } } 7. Invalid format <user> <email>[email protected]</email> <phone>912234356</phone> </user> 8. SQL injection { “email” : “ 'anything' OR 'x‘=‚x‘ " , “phone“ : “myPassword“ } 1. Valid data { “email” : “[email protected]” , “phone” : “912345678” }

BODY METHOD REQUEST/ RESPONSE HEADERS EMBRACE ENDPOINT @shivani_gaba_

@shivani_gaba_

BODY METHOD REQUEST/ RESPONSE HEADERS AUTH- 0RISATION EMBRACE ENDPOINT @shivani_gaba_

@shivani_gaba_

@shivani_gaba_ https://www.zdnet.com/

vAuthorization vAuthentication vResponse on errors/invalid vTokens Quick checks

BODY METHOD REQUEST/ RESPONSE HEADERS CODE AUTH- 0RISATION EMBRACE ENDPOINT

API Response Codes https://melbournechapter.net/explore/road-to-success-clipart/#gal_post_2580_convert-photo-to-clipart-4.png

@shivani_gaba_

When you find a bug on client

3 favourite words… IT DOESN’T WORK @shivani_gaba_

Why it doesn‘t work?

https://pixabay.com/de/detektiv-untersuchung-mann-polizei-311684/

BODY METHOD REQUEST/RES PONSE HEADERS CODE EXECUTION TIME AUTH- 0RISATION
EMBRACE ENDPOINT @shivani_gaba_

@shivani_gaba_

Should we replace UI tests with API test? https://pixnio.com/miscellaneous/hand-sword @shivani_gaba_

Mock API calls X Client Mock API API @shivani_gaba_

A little secret https://pxhere.com/en/photo/1418905 @shivani_gaba_

Documentation (Swagger)

Recommendations • Exploratory testing on API – By James Bach
https://www.developsense.com/blog/2018/07/exploratory-testing-on-an-api-part-1/ • 30 Day of API Testing Challenge - MOT https://club.ministryoftesting.com/t/30-days-of-api-testing-day-6-interesting-blog-post-on-api-testing/19595 • No REST for women – By Anne-Marie Charrett https://mavericktester.com/2018/11/05/rest-apis-written-by-women/ • API, Web Services & Microservices Testing Pathway –Katrina Clookie http://katrinatester.blogspot.com/2015/09/api-web-services-microservices-testing.html @shivani_gaba_

Moving from UI to API testing

Moving from UI to API testing

More Decks by Shivani Gaba

Other Decks in Technology

Featured

Transcript