Web Test Essentials

adding, modifying features

(1) Whether Tab key is supported

(2) Whether the ENTER key is supported

(3) If you do not meet the requirements of the place has the error prompt

(4) After saving, is it also inserted into the database ?

(5) If the field is unique, can be added repeatedly

(6) Modify each edit item in the edit Page list, click Save, do you want to save it successfully?

(7) For required fields, modified to empty, blank space or other special symbols, can be edited successfully

(8) In the input box, enter directly

(9) Whether it can be added continuously

(10) When editing, you should pay attention to the length limit of the edit item, sometimes the length limit is added, but not when editing (adding and modifying rules are consistent)

(11) When added, the field is unique and does not allow repetition, but sometimes, when editing, it can be modified to the same field (the same field includes case sensitivity and input spaces before and after input)

(12) Add content that contains special symbols or spaces

(13) For the image upload function of the edit box, for the picture is not uploaded, to view the editing page, whether the default picture is displayed, if the picture is uploaded, whether it is displayed as uploading pictures?

Remove Features

(1) Enter the correct data before adding a space to see if it can be deleted correctly?

(2) Whether the ENTER key is supported

(3) Is it possible to delete multiple products continuously? When there is only one piece of data, can it be deleted successfully?

(4) After deleting one piece of data, can I add the same data again?

(5) When providing the ability to delete more than one message at a time, be aware that the deleted data is correct?

(6) Do not select any information, directly click the Delete button, see what error message?

(7) When deleting a piece of information, there should be an error message

Registration, Login module

(1) registration succeeded, but login failed: When registering, the password is set to some special symbols, but the login fails

(2) When registering, click the Submit button continuously

(3) After the registration is successful, the page should go to the homepage by login status

(3) When logged in, not case-sensitive, when registering, is a lowercase letter, but log in, with capital letters can also log in

(4) When you log in, the verification code is updated when the page refreshes or re-enters new data

(5) Changes to the password, when the password is changed to a very long, or contain special symbols, can be modified successfully, but can not successfully login.

upload picture test

(1) file type correct, file size appropriate

(2) file type is correct and file size is inappropriate

(3) file type error, file size appropriate

(4) file type and size are appropriate, upload a picture in use

(5) file type and size appropriate, manually enter an existing image address to upload

(6) file type and size appropriate, manually enter a non-existent image address upload

(7) file type and size are appropriate, manually enter the image name to upload

Return key Check

(1) A record has been successfully submitted, returned and then submitted to see if the system has been processed

(2) Check the use of the return key multiple times, where there is a return key, return to the original page repeated multiple times, to see if there will be an error

Enter Check

At the end of the input, press ENTER directly to see how the system processing, will be error

Refresh key Check

In the Web system, use the browser's refresh key to see how the system handles, whether it will error

Direct URL link Check

In the web system, directly enter the URL address of each function page to see how the system handles

other

(1) In the test, there are network-related steps must take into account the situation of the network disconnection

(2) each page has the corresponding page title

(3) When testing the time to consider as far as possible when the page scroll bar (scroll bar up and down), the page display is normal

(4) URL is case-insensitive

in the test, the concurrency scenario is considered

The following two scenarios are summarized:

(1) A field is unique, and when multiple users click to generate the field, check how the system is handled

(2) for e-commerce site, when two or more users concurrent purchase volume is greater than the product inventory, can purchase success

1, the interface test, the main test site interface is consistent with the design, whether there is a typo, the layout of the page is reasonable, the format is correct, whether there is a corresponding error message and so on.

2, ease of testing, mainly to investigate the development of the function is human, whether it is easy to use, whether it conforms to the majority of user habits and so on.

3. Test the tab and enter keys.

third, compatibility test

Compatibility testing not only refers to the interface in different operating systems or browser compatibility, some functional aspects of testing, but also to consider compatibility, such as the Ajax, jquery, JavaScript and other technologies, have to consider the compatibility of different browsers.

Iv. Link Testing

Mainly to ensure the availability and correctness of links, it is also a more important aspect of site testing.

v. Business process Testing

Business process, generally involves multiple modules of data, so in the business process testing, the first to ensure the correctness of a single module function, followed by the data passed between the various modules to test, which is often prone to problems, the test must be designed to test the different data.

Vi. Safety Testing

(1)SQL Injection

(2) XSS cross-site Scripting attack: The program or database does not filter or process some special characters, causing the user

Some of the input destructive script statements can be directly written into the database, the browser will directly execute these script statements, damage the normal display of the website, or the user's information is stolen, when constructing script statements, to ensure the integrity of the script.

document.write ("abc")

<script>alter ("abc") </script>

(3) Enter some symbols after the URL address

(4) Verification Code update problem

The above is a summary of the Web test, I believe there must be some omissions, welcome to correct, Add.

-------------------

To see someone else's things after their own end:

1. If there is one item left on the shopping site, then how many people will deal with it when they click to buy it at the same time.

Search function:

(1) If the long name can be found?

(2) space or empty

(3) The name contains special characters, such as: ' $% & * and spaces, etc.

(4) There are spaces before or after keywords

(5) If a fuzzy query is supported, search for any character in the name to find out

(6) There is no matching condition in the input system

(7) Two query criteria is 2 Select 1, back and forth to choose whether a page error occurred

(8) Input script language, such as: <script>alter ("ABC") </script> etc.

adding, modifying Features

(1) Whether Tab key is supported

Security Testing :

Enter > ' ><script>alert ("XSS") </script> in the input box to execute, record ....

============

In the following summary, enter some special symbols to query, I did not think of:

Query input

(1) Accurate query of single condition respectively

(2) Enter the length of the test, enter the maximum allowable value to query, whether support

(3) Two query criteria is 2 Select 1, back and forth to choose whether a page error occurred

(4) Input characters

(5) Enter special characters

(6) Enter a number

(7) Input Chinese characters

(8) Input relationship expression with, or, XOR, non, equals

(9) Enter a space

(10) The conditions contain spaces

(11) Enter extra long characters

(12) Enter full-width characters

(13) Enter single quotation marks

(14) Enter the data from single quotation marks

(15) Enter double quotation marks

(16) Enter the data from double quotation marks

(17) If fuzzy query is supported, enter some query criteria

(18) There is no matching condition in the input system

　　Query result Check

(1) Search results by what sort of smooth

(2) Whether the query result is based on the field display sorting function

(3) Whether the query results have pagination, if any, the maximum number of records per page

(4) Whether the query results match

(5) Whether the query results are consistent with the database

(6) Whether the query result is a precise query or a fuzzy query

　　UI Validation

(1) text display is correct

(2) Whether the page has typos

(3) Input box size, text size is appropriate

(4) Whether the page is beautiful

(5) Query result field display is consistent with requirements

　　Performance aspects

(1) Whether the query processing time can be accepted

(2) Whether the query time is acceptable when there is large data volume data in the database

(3) When multiple users query at the same time, enter the same or different query criteria system response is timely

Here's what I've summed up:

For query functionality, you can also design a use case from the following areas:

1. Functional considerations: Use of boundary value and equivalence class partitioning method to design case

Boundary Value: Enter the maximum length of text, can you search it out? Enter a space or empty, can you search it out?

Equivalence class: To take into account the input queries of some special symbols.

2. Ease of Use

3, the interface aspect

4, security angle: such as input some scripting language, see whether to execute, mainly anti-XSS attack problem

5, Performance angle: query efficiency, concurrency, response time issues of consideration

==========================

Web security flaws

Now website Development has noticed: landing site into its internal page, directly copy the URL, and then paste into another IE window input, you can bypass direct access to the login. Perhaps business sites are concerned about this, but many industry software is easy to ignore.

Web security flaws may also exist in the Windows Explorer Pop-up Subwindow. Some of the software is not strict design, the main page is closed when the sub-page can also be run, this is an obvious vulnerability, but also greatly increased the probability of the occurrence of errors.
================================

Judgment Order/Logic defect

This problem is very easy to do when you are making multiple input judgments about the interface. For example, judging the chronological order, judging length, judging non-empty and so on. If the operator satisfies only a single condition, the save cannot succeed, and the save is not a problem when the condition is satisfied by the interface from the top order. However, change the order of the inputs and verify the invalidation. For example, after one satisfies the condition, does not save, upside down the above input to the illegal input, then saves, the result can actually also succeed, this is because the original judgment has happened, or according to the sentence order only checks the last Judgment, therefore did not have the error. This error is especially noticeable in the Java scrīpt script page. Being able to save does not guarantee that the data is correct and may cause system crashes or subsequent data errors. So, when testing, do not enter in the normal order, but to disrupt the steps to see if the code is strong, whether there is no error in the judgment logic. Good code should withstand the toss-up, at least when it is saved, and not just the last line of judgment.

==============

Debug statements and redundant information

Maintenance projects and upgrading of the promotion system are most likely to lurk such defects. Typical behavior is not to delete or mask debug statements. Pop-up an interface unfriendly information, will make the unknown truth of the user generated mistaken for the system has been a serious failure, resulting in the distrust of the software. It is also a disadvantage that there are redundant buttons and features that are not needed by the current customer in a corner of the page. The extra function will make the user think it is an extra part to use, the result is conceivable, and the superfluous button will mislead the curious user to operate, generate unnecessary errors.

Also noteworthy is the parameter settings, because there is no actual data, developers in debugging or unit testing , the habitual self-setting and forget to delete, software Testers may ignore this part of the test, may also cause errors at the customer site to affect system release and acceptance.

===========================================================

Non-reproducible failures

The person who is new to the software test or the new developer always asks, is it necessary to record the non-reproducible defects? The answer is yes. The test must truthfully record the occurrence of the problem, may not reproduce, or make non-software system itself problems, but may be behind these contingency is regular, do not record these, it is impossible to find these laws.

===============================================================
The reverse circulation defect of multi-node

Many of the current software likes to use workflow to drive. The problem with workflows is that multiple flow directions can occur. The easy-to-ignore part of the test is the reverse flow of multiple nodes in the workflow. For example, by not involving two branches, but when the process reverses, it may not go back to the previous node but to another node on the same lateral. Software testing should pay particular attention to the design of such use cases. In addition, sometimes the default branch in the forward time there is a default value, such as by default, then save the time to prompt the user whether to pass, otherwise it may be due to the operation of fatigue and go wrong node, causing fallback.

===============================================================

Input box defect

Try to paste the data into the previous input box instead of typing it directly? There may be a problem here. when you press CTRL + V, the input box automatically truncates the input length based on the size of the length. But with the mouse, truncation may fail. One of the testers used this method to enter a Word document, and when it was saved, the database crashed. Some websites login Password * * * Can be copied down, as long as placed in the Clipboard immediately clear text display. (to be noted in future tests)

================================================================

Web Test Essentials