23. ● What endpoints are available?
● What HTTP verbs can I use with those endpoints?
● Are any of the verbs limited by authorization?
● Which fields are required in the requests?
● What are the validation limits on the fields?
● What response codes should I expect for a successful request?
● What response codes should I expect for an unsuccessful
request?
● What sort of error messages will be returned in the body of an
unsuccessful request?
24. ● Sending a request with the wrong HTTP verb
● Sending a request with the wrong endpoint
● Sending a request with the wrong headers
● Sending a request with missing headers
● Sending a request without the proper authorization
● Requesting data for a record that does not exist
● Sending a request with a body that has missing required fields
● Sending a request with a body that has invalid field values
25. API testing Pros
● Localization
● Time saving
● Large volume data
● Wider negative testing opportunity
● Reliability
● Testing Intelligence
34. Tools
● Fiddler
● Postman
● SOAPUI
Resources to practice GET
● https://swapi.co/
● https://developer.nytimes.com/
● http://webservicex.com/api
● http://httpbin.org
35. Resources to practice POST
Example:
POST
http://restapi.demoqa.com/customer/register
Body
{
"FirstName": "Dudu",
"LastName": "Dodi",
"UserName": "Domo",
"Password": "qwerty",
"Email": "domo@gmail.com"
}