The Life-Long Journey of Learning!

LetXPath is an open-source project, it is used to find the XPath & CSS in a single click with code snippets based on the element type. Watch the Video to know more:   https://www.youtube.com/watch?v=91HXmTwr3eQ&feature=youtu.be   Good Feature is  XPath with driver code snippets is generated automatically.

According to  RFC Standard 7519 , JSON Web Token is pronounced as "Jot". JWT is used to represent as self-contained session of authenticated user and the roles of the user. It has set of claims that encodes users identity, users permission and digitally signed to protect the content. Example of JSON Web Token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9 . eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ . SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c It has three parts and separated by two dots. First Part:  Header Second Part: Payload Third Part: Signature JSON Web Token Decoder: https://jwt.io/   Understanding the Decoded Information: Header: Algorithm and Token Type Payload: Data      Sub is compulsory: To whom the token refers to     iat    : Issued at Time.

 I have attended the #testflix conference on 28th Nov, 2020 Post-Conference, Got the reference links from Sang Bui. Below are Reference Links: https://blog.restcase.com/api-development-with-design-first-approach/ https://cheatsheetseries.owasp.org/cheatsheets/REST_Security_Cheat_Sheet.html  https://github.com/shieldfy/API-Security-Checklist Based on above references, prepared the Security Testing Checklist for APIs. 5 Different Areas Covered in API Security Checklist. a. Authorization b. Access c. Input d. Processing e. Output f. CI/CD Learnt new topics while reading the references and still more to learn. Other References, which helped in understanding the Security Testing Checklist: https://www.youtube.com/watch?v=bNCZzfBMkcc  https://www.youtube.com/watch?v=5TXtLEk-QiM  https://www.templarbit.com/blog/2018/01/10/api-security-checklist/ I thank The Test Tribe community and Sang Bui for the TestFlix Talk. https://www.thetesttribe.com/testflix/

A tool is something which helps you to be productive while you are working. Recently, I had used this Chrome Extension: META SEO Inspector This tool helped me to find the issues on webpage. a. Meta Description b. URLs - Internal / External URLs. Chrome Extension: https://chrome.google.com/webstore/detail/meta-seo-inspector/ibkclpciafdglkjkcibmohobjkcfkaef?hl=en  This tool helps to find any page contents that are usually not visible, but can reveal interesting site properties.

I was learning about Accessibility Testing last week. My Inspiration to learning on A11y is Michael Larsen (https://www.mkltesthead.com) Accessibility  Standards:   WCAG, W3C Standards,  Section 508, European Accessibility Standard EN 301 549 Why Accessibility Testing? There are different types of disabilities, the users can get impacted. Visual - Blindness, Low Vision, Color Blindness Hearing - Mild to Moderate to Severe Physical - Limited Hand Movement, Muscular Dystrophy, No Limb, Hand or Fingers  - Not able to use mouse or use touch screen. Cognitive - Autism, Mental Challenges. Speech - Accessibility Testing Check: Keyboard Only  Compatibility https://www.w3.org/WAI/perspective-videos/keyboard/   Physical and Vision Challenges: Mouse Testing : Use a tab key on keyboard, no additional software required. Navigate entire the webpage using tab key. Tab and Shift Tab will take you through Next and Previous Controls on the screen Enter or Spacebar for S...

Every day, when I start my day, as a software tester, I feel I wish know more about. Different technologies Frameworks Tools Testing Methodologies Non-Functional Testing - Security / Performance Testing Usability Testing Testing Techniques User Experience Testing Linux DevOps or CloudOps New Technologies: AI/ML Testing is like an ocean. Every day, when I encounter a new problem. I wish that I know more about it.   Acknowledge with your friends/team members on your limited knowledge and Appreciate other people's knowledge. I believe in one thing since start of my career,  "Learn Everyday Something New Every Day" - Be Consistent in your learning, Perfectionism is not the goal. A Simple way to make a note of what you want to learn:

As many of us will be working on the Agile projects, and we attend retrospective meetings with all stakeholders. I found this template is very useful to use/make notes every day. This can be used for your sprints or project release.           RETRO 😦 RE-INFORCE Things that went well, that were positive that will need attention and effort to keep doing or to amplify. EXPLORE Evaluate an existing experiment or discuss something that could use improvement. TRY Any new ideas for things to try that might improve the way the group works REMOVE Suggestions for anything to stop doing, This includes behavior, process, policies, meetings Observe Anything that group is unsure of but wants to actively monitor. This should include any active experiments but also the impacts or interactions of any behavior, processes, policies, meetings, structures, that affect the group of its people This was inspired from  https://blog.scatterspoke.com/yet-another-retro-format/  ...

I started reading it again from first, as I did not complete this book reading earlier. This blog post summarizes the Chapter 1 - "Fundamentals of Testing" from BUDDHA IN TESTING, written by Pradeep Soundararajan . If you are new to testing or experienced in Testing, This book is for you. This book summarizes every test activity starting from         Testing         Automation In Testing         Test Coverage         Testability         Functional Testing         Performance Testing         Regression Testing         Unit Testing 3 Big Ideas 1. Test Coverage is not Test Case Coverage 2. "Testability - Whenever you find a bug in production - Ask "Did we make this testable?""  and "Impact Mapping and Risk Ass...

Below are few resources we can use for practicing API Testing.                                   https://jsonplaceholder.typicode.com/ https://fakerestapi.azurewebsites.net/ https://reqres.in/ https://any-api.com/ https://rapidapi.com/ https://www.onlinetool.in/fake-rest-api https://gorest.co.in/ https://swapi.dev/ https://dog.ceo/dog-api/ https://httpbin.org/ Recently, I read the post from Alan Richardson,  Thingifier Practice REST API Testing    https://apithingifier.herokuapp.com/ REST API Testing with VTiger CRM -  https://www.vtiger.com/docs/rest-api-for-vtiger   If you know any other sample APIs for testing practice, please comment.

In Part-1: We have configured postman collection to run through newman.  https://testingeduindia.blogspot.com/2020/07/running-postman-collections-through.html I have tried a tool to generate html report after running the tests through newman using  newman-reporter-htmlextra This was developed by Danny Dainton.  Github:  https://github.com/DannyDainton/newman-reporter-htmlextra/ A HTML reporter for Postman's Command Line Runner, Newman. Includes Non Aggregated Runs broken down by Iterations, Skipped Tests, Console Logs and the handlebars helpers module for better custom templates. This reporter comes with a dashboard style summary landing page and a set of different tabs which contain the detailed request information. There are also a few optional configuration flags available, to tailor the final report in a number of different ways. Installation Steps: In the command prompt, run the below command. npm install -g newman-reporter-htmlextra This is to install newman-re...