Wednesday, October 28, 2020

Checklist for Web App Testing

From guru 99

https://www.guru99.com/complete-web-application-testing-checklist.html

While testing the web applications, one should consider the below mentioned template. The below mentioned checklist is almost applicable for all types of web applications depending on the business requirements.

The web application testing checklist consists of-

Usability Testing

Functional Testing

Compatibility Testing

Database Testing

Security Testing

Performance Testing

Now let's look each checklist in detail:


Usability Testing

What is Usability Testing?

Usability testing is nothing but the User-friendliness check.

In Usability testing, the application flow is tested so that a new user can understand the application easily.

Basically, system navigation is checked in Usability testing.

What is the purpose or Goal of Usability testing?

A Usability test establishes the ease of use and effectiveness of a product using a standard Usability test practices.

Example Usability Test Cases

Web page content should be correct without any spelling or grammatical errors

All fonts should be same as per the requirements.

All the text should be properly aligned.

All the error messages should be correct without any spelling or grammatical errors and the error message should match with the field label.

Tool tip text should be there for every field.

All the fields should be properly aligned.

Enough space should be provided between field labels, columns, rows, and error messages.

All the buttons should be in a standard format and size.

Home link should be there on every single page.

Disabled fields should be grayed out.

Check for broken links and images.

Confirmation message should be displayed for any kind of update and delete operation.

Check the site on different resolutions (640 x 480, 600x800 etc.?)

Check the end user can run the system without frustration.

Check the tab should work properly.

Scroll bar should appear only if required.

If there is an error message on submit, the information filled by the user should be there.

Title should display on each web page

All fields (Textbox, dropdown, radio button, etc) and buttons should be accessible by keyboard shortcuts and the user should be able to perform all operations by using keyboard.

Check if the dropdown data is not truncated due to the field size. Also, check whether the data is hardcoded or managed via administrator.

Functional Testing:

What is Functional Testing?

Testing the features and operational behavior of a product to ensure they correspond to its specifications.

Testing that ignores the internal mechanism of a system or component and focuses solely on the outputs generated in response to selected inputs and execution conditions.

What is the purpose or Goal of Functional testing?

The goal of Functional Testing is to verify whether your product meets the intended functional specifications mentioned in your development documentation.

Example Functional Test Scenarios:


Test all the mandatory fields should be validated.

Test the asterisk sign should display for all the mandatory fields.

Test the system should not display the error message for optional fields.

Test that leap years are validated correctly & do not cause errors/miscalculations.

Test the numeric fields should not accept the alphabets and proper error message should display.

Test for negative numbers if allowed for numeric fields.

Test division by zero should be handled properly for calculations.

Test the max length of every field to ensure the data is not truncated.

Test the pop up message ("This field is limited to 500 characters") should display if the data reaches the maximum size of the field.

Test that a confirmation message should display for update and delete operations.

Test the amount values should display in currency format.

Test all input fields for special characters.

Test the timeout functionality.

Test the Sorting functionality.

Test the functionality of the buttons available

Test the Privacy Policy & FAQ is clearly defined and should be available for users.

Test if any functionality fails the user gets redirected to the custom error page.

Test all the uploaded documents are opened properly.

Test the user should be able to download the uploaded files.

Test the email functionality of the system.

Test the Java script is properly working in different browsers (IE, Firefox, Chrome, safari and Opera).

Test to see what happens if a user deletes cookies while in the site.

Test to see what happens if a user deletes cookies after visiting a site.

Test all the data inside combo/list box is arranged in chronological order.

Compatibility Testing:

What is Compatibility testing?


Compatibility testing is used to determine if your software is compatible with other elements of a system with which it should operate, e.g. Browsers, Operating Systems, or hardware.

What is the purpose or Goal of Compatibility testing?


The purpose of Compatibility testing is to evaluate how well software performs in a particular browser, Operating Systems, hardware or software.

Sample Compatibility Test Scenarios:


Test the website in different browsers (IE, Firefox, Chrome, Safari and Opera) and ensure the website is displaying properly.

Test the HTML version being used is compatible with appropriate browser versions.

Test the images display correctly in different browsers.

Test the fonts are usable in different browsers.

Test the java script code is usable in different browsers.

Test the Animated GIF's across different browsers.

Database Testing:

What is Database Testing?


In Database testing backend records are tested which have been inserted through the web or desktop applications. The data which is displaying in the web application should match with the data stored in the Database.

To perform the Database testing, the tester should be aware of the below mentioned points:


The tester should understand the functional requirements, business logic, application flow and database design thoroughly.

The tester should figure out the tables, triggers, store procedures, views and cursors used for the application.

The tester should understand the logic of the triggers, store procedures, views and cursors created.

The tester should figure out the tables which get affected when insert update and delete (DML) operations are performed through the web or desktop applications.

With the help of the above mentioned points, the tester can easily write the test scenarios for Database testing.

Example Test Cases for Database Testing:


Verify the database name: The database name should match with the specifications.

Verify the Tables, columns, column types and defaults: All things should match with the specifications.

Verify whether the column allows a null or not.

Verify the Primary and foreign key of each table.

Verify the Stored Procedure:

Test whether the Stored procedure is installed or not.

Verify the Stored procedure name

Verify the parameter names, types and number of parameters.

Test the parameters if they are required or not.

Test the stored procedure by deleting some parameters

Test when the output is zero, the zero records should be affected.

Test the stored procedure by writing simple SQL queries.

Test whether the stored procedure returns the values

Test the stored procedure with sample input data.

Verify the behavior of each flag in the table.

Verify the data gets properly saved into the database after each page submission.

Verify the data if the DML (Update, delete and insert) operations are performed.

Check the length of every field: The field length in the back end and front end must be same.

Verify the database names of QA, UAT and production. The names should be unique.

Verify the encrypted data in the database.

Verify the database size. Also test the response time of each query executed.

Verify the data displayed on the front end and make sure it is same in the back end.

Verify the data validity by inserting the invalid data in the database.

Verify the Triggers.


What is Security Testing?

Security Testing involves the test to identify any flaws and gaps from a security point of view.


Sample Test Scenarios for Security Testing:


Verify the web page which contains important data like password, credit card numbers, secret answers for security question etc should be submitted via HTTPS (SSL).

Verify the important information like password, credit card numbers etc should display in encrypted format.

Verify password rules are implemented on all authentication pages like Registration, forgot password, change password.

Verify if the password is changed the user should not be able to login with the old password.

Verify the error messages should not display any important information.

Verify if the user is logged out from the system or user session was expired, the user should not be able to navigate the site.

Verify to access the secured and non-secured web pages directly without login.

Verify the “View Source code” option is disabled and should not be visible to the user.

Verify the user account gets locked out if the user is entering the wrong password several times.

Verify the cookies should not store passwords.

Verify if, any functionality is not working, the system should not display any application, server, or database information. Instead, it should display the custom error page.

Verify the SQL injection attacks.

Verify the user roles and their rights. For Example, the requestor should not be able to access the admin page.

Verify the important operations are written in log files, and that information should be traceable.

Verify the session values are in an encrypted format in the address bar.

Verify the cookie information is stored in encrypted format.

Verify the application for Brute Force Attacks

What is Performance Testing?

Performance Testing is conducted to evaluate the compliance of a system or component with specified performance requirements.


General Test scenarios:


To determine the performance, stability and scalability of an application under different load conditions.

To determine if the current architecture can support the application at peak user levels.

To determine which configuration sizing provides the best performance level.

To identify application and infrastructure bottlenecks.

To determine if the new version of the software adversely had an impact on response time.

To evaluate product and/or hardware to determine if it can handle projected load volumes.

How to do Performance testing? By Manual Testing or by Automation

Practically it is not possible to do the Performance Testing manually because of some drawbacks like:

More number of resources will be required.

Simultaneous actions are not possible.

Proper system monitoring is not available.

Not easy to perform the repetitive task.

Hence to overcome the above problems we should use Performance Testing tool. Below is the list of some popular testing tools.

Apache JMeter

Load Runner

Borland Silk Performer.

Rational Performance Tester

WAPT

NEO LOAD

Tuesday, October 6, 2020

What is back-end Testing?

 


https://www.guru99.com/frontend-testing-vs-backend-testing.html

Backend testing is a type of testing that checks the Application and Database layer of a 3 Tier Architecture.

API Testing -> Business Layer

Database Testing -> Database Layer

Database Testing

 It means that data entered in the front end will be checked in the back-end database. 

Databases are checked for ACID properties, CRUD operations, their Schema, Business rule conformance. Databases is also checked for Security and Performance.

In back-end testing, there is no need to use the GUI. You can directly pass the data using a browser with the parameters required for the function to get the response in some default format. For Example, XML or JSON. You also connect to the database directly and verify the data using SQL queries.

  • Structural testing deals with the database inner structure (i.e. metadata). It involves validation of Tables and all the other database objects that aren’t directly accessible by users, like Columns, Keys, Indexes, Schema, Triggers, Functions, etc. It can also involve testing your DB servers.
  • Functional testing focuses on the way data is mapped from the frontend to the database. (e.g. whether clicking a button correctly affects the related tables/columns).
  • Non-functional testing checks how the database performs under the expected loads and extreme levels of stress. Security tests also belong here 



What is DOM, Shadow DOM and Virtual DOM?

 https://www.blog.duomly.com/what-is-the-difference-between-shadow-dom-and-virtual-dom/

DOM - Document Object Module

Shadow DOM - DOM components

Virtual DOMVirtual DOM is a concept of DOM used by React.js and Vue.js. In Virtual DOM concept copy of DOM is saved in the memory and while any change is done in the DOM, it’s compared to find differences. Then browser knows which elements were changed and can update only those part of the application to avoid re-rendering all the DOM.


What is Context Driven Testing

https://context-driven-testing.com/

Context Driven Testing is a mindset shift (or School of testing) developed by Cem Kaner, James Bach & Bret Pettichord. Details about it can be found in their famous book: Lessons Learned in Software Testing.

There are 7 basic principles to it. The following are directly picked from their book:

#1) The value of any practice depends on its context.

#2) There are good practices in context, but there are no best practices.

#3) People, working together, are the most important part of any project’s context.

#4) Projects unfold over time in ways that are often not predictable.

#5) The product is a solution. If the problem isn’t solved, the product doesn’t work.

#6) Good software testing is a challenging intellectual process.

#7) Only through judgment and skill, exercised cooperatively throughout the entire project, are we able to do the right things at the right times to effectively test our products.


Context-driven testers choose their testing objectives, techniques, and deliverables (including test documentation) by looking first to the details of the specific situation, including the desires of the stakeholders who commissioned the testing. The essence of context-driven testing is project-appropriate application of skill and judgment. The Context-Driven School of testing places this approach to testing within a humanistic social and ethical framework.

Ultimately, context-driven testing is about doing the best we can with what we get. Rather than trying to apply “best practices,” we accept that very different practices (even different definitions of common testing terms) will work best under different circumstances.


API interview questions

  https://www.katalon.com/resources-center/blog/web-api-testing-interview-questions/ Top 50+ Web API Testing Interview Questions [Ultimate l...