Test page login is divided into five major aspects: Functional test, interface test, performance test, security test, compatibility test, etc.
Confirm that the landing entrance is a direct landing page or pop-up window input login.
Functional testing:
1. Login Success
Login to page with correct username and password
Page jumps to Site page correctly
2. Login failed
Do not enter the user name and password, directly click the login, related information tips
Correct user name with wrong password login, prompt for password error
Bad user name and bad password logon, prompting user name does not exist
3. Input rule Validation
User name and password input extra long or too short
Login with space or other special characters in user name and password
4. Password display
Password cipher text display
Keyboard case Tips when entering a password
5. Remember the password function
Check Password verification
Error password does not log the function
---------------- Auxiliary test function --------------------
6. Verification Code Input
Verify Login function
Do not enter the verification code can not login and prompt for verification code
Verification Code expiration feature
7. Enter Login
Enter your username and password and press ENTER to login.
8. Register, forget password
Hyperlinks to related pages
Interface test:
1. Enter user name, password two textbox, login button to align
2. Input box height in line with user needs and aesthetic standards
Performance testing
1. Open the Login interface jump function.
2. After the user login interface, page jump function.
Security testing
Whether the cookie generated after successful login is HttpOnly (otherwise easy to be hacked by script)
Whether the user name and password are sent to the Web server in an encrypted manner
Authentication of user names and passwords should be done with server-side authentication , not simply by using JavaScript on the client
User name and password input box, should block SQL injection attack
User name and password of the input box, should prohibit input script (prevent XSS attack)
Number of incorrect login limits (to prevent brute force)
Consider whether multiple users are supported to log on on the same machine
Consider a user logging on on multiple machines
No interface operation after user login automatic fall-off sleep function
Compatibility testing (compatibility test)
Whether the main browser can show normal function (ie,6,7,8,9, Firefox, Chrome, Safari, etc.)
Whether different platforms work properly, such as windows, MAC
Whether the mobile device is working properly, such as the iphone, andriod
Different resolutions
How to test Web login