Today, let's test a very common module : Login module . You would say , What's the test , Who can't test . Design test cases based on equivalence classes and boundary values , And verify it ?
Don't worry , Today, let's list the test cases of the login scenario .

one , functional testing

Enter a valid user name and correct password , Verify successful login ;

Enter a valid user name and incorrect password , Failed to verify login , And the prompt information is correct ;

Enter an invalid user name and any password , Failed to verify login , And the prompt information is correct ;

Both user name and password are empty , Failed to verify login , And the prompt information is correct ;

Either user name or password is empty , Failed to verify login , And the prompt information is correct ;

If the login function verification code is enabled , On the premise that the user name and password are correct , Enter the correct verification code , Verify successful login ;

If the login function enables the verification code function , On the premise that the user name and password are correct , Incorrect verification code entered , Failed to verify login , And the prompt information is correct .

If the login function requires a verification code , Can I change the verification code by clicking the verification code picture , Is the replaced verification code available ;

Whether refreshing the page will refresh the verification code ;

If the verification code is time effective , It is necessary to verify the validity of the verification code within and outside the time limit respectively ;

Multiple wrong input verification code , Check whether there is account locking behavior .

two , Interface UI test

1. Is the layout reasonable , Input box , Button alignment

2. Height of input box and button , Whether the length meets the requirements

3. Is the design style of the interface consistent with UI Unified design style

4. The text of the interface is concise and easy to understand , No typos

two , Compatibility test case Under different browsers , Verify the display and functional correctness of the login page ;

Different versions of the same browser , Verify the display and functional correctness of the login page ;

Under different browsers of different mobile device terminals , Verify the display and functional correctness of the login page ;

Under the interface of different resolutions , Verify the display and functional correctness of the login page .

three , Usability test case

Are user names and passwords case sensitive ;

Is the password box on the page encrypted ;

When the user created by the background system logs in successfully for the first time , Prompt to change password ;

Is the function of forgetting user name and password available ;

Does the front page limit the length of user name and password according to the design requirements ;

After the user logs in successfully but the session times out , If you continue, will you be redirected to the user login interface ;

Different levels of users , For example, administrator users and ordinary users , Are the permissions correct after logging in to the system ;

Whether the default focus of the page is located in the input box of the user name ;

Shortcut key Tab and Enter etc. , Whether it can be used normally .

four , Performance test cases

Whether the response time of single user login system meets the requirements “3-5-8” principle . (3s Get a response within , Then the customer feels that the performance of the system is very excellent ; 5s Request responded within , The user will feel pretty good ;
exceed 8s Even longer , Users are likely to lose confidence )

On single user login , Is there a large number of background requests ;

Whether the response time of user login in high concurrency scenario is less than 5 second ;

Whether the monitoring indicators of the server in the high concurrency scenario meet the expectations ;

High concurrency scenario , Are there resource deadlocks and unreasonable resource waiting ;

A large number of users log in and out continuously for a long time , Is there a memory leak on the server side .

five , Security test case

Whether the password uses strong password policy ;

The password cannot contain the user name and the characters in reverse order of the user name ;

Whether the user password database storage is encrypted ;

Whether the user password is encrypted in the interface ;

Is the password valid , Before or after password expiration , Prompt for password change ;

Without logging in , Directly enter the login in the browser URL address , Verify that you are redirected to the user login interface ;

Does the password entry box not support copy and paste ;

Can all the passwords entered in the password input box be viewed in the page source code mode ;

Entering the user name and password in the input box respectively may cause SQL Injected string , Verify the return page of the system ;

Entering the user name and password in the input boxes respectively may cause XSS Cross site scripting attack string , Verify whether the system behavior has been tampered with ;

In case of continuous login failure , Is the account locked for brute force cracking ;

The same user logs in on multiple browsers of the same terminal , Verify whether the mutex of login function meets the design expectation ;

The same user logs in on the browsers of multiple terminals successively , Verify that the login is mutually exclusive .

Is there a login operation log , Prevent repudiation .

Whether the sensitive information of password and user name in the background operation log is desensitized Users at different levels token Can I access the contents of other levels of user permissions after exchange .

Technology
©2019-2020 Toolsou All rights reserved,
C++ of string of compare usage MySQL Basics Commonly used sentence ( Add / delete / modify query )C Language of a Gobang game implementation QT5.9 Use of learning notes QSqlQuery Method of Qt Getting Started tutorial 【 Basic controls 】QCalendarWidget calendar control java Polymorphic array of web Front end signature plug-in _signature_pad Plug in implements electronic signature function centos7 install RabbitMqspringboot use redis Experiment 4 Automated test tools - software test