www.getpostman.com
- Probably the most useful Web interface debugging tool out there
- No registration required (multiple terminals can synchronize use cases after registration)
- Free ($60 per year available cloud service, 30 days free trial)
- Keep historical records
- Support recording request
- Chrome based V8 engine, JS scripting (basic support for ES6, browser-related objects and apis and
require()
import
Except, etc) - The same code and use cases can be used for automated interface testing, as described in Newman, its command-line version
- Can generate HTTP request code templates in various languages
- Generate nice online API documentation (MarkDown support)
- Provides a simple version of continuous integration (Monitor function, only supports requests from public IP addresses… Not as useful as Jenkins)
Reasons for choosing it for automated testing:
- Meet most scenarios of Internet companies
- Ultra-light, lower threshold than another popular choice — JMeter, high development efficiency, user-friendly interface
- Development almost one hand, easy to communicate, easy to promote the development of self-testing
- Easy to pull function test pit, easy to hand over when personnel change
Reasons not to pick it:
- Limited functionality: Postman runs in a sandbox, Newman is based on Node.js, but a set of scripts shared on both sides means it can’t do more than Postman and cannot be used in the following scenarios:
- You need to read and write files
- Need to read and write database
- External libraries need to be introduced, such as unusual/custom encryption methods
- The HTTP protocol
- After all, from a debug gadget background, there is a significant gap between mature automated testing frameworks in terms of use case management, code reuse, stability, reporting, and even ease of use, and the user needs to be able to climb out of the hole
- If your project often uses JMeter for interface testing, someone familiar enough with JMeter might consider breaking the script down to the granularity of a single interface and making some effort to automate both functionality and performance rather than maintaining two sets
- If all English and lack of Chinese materials count
The installation
www.getpostman.com/apps
It is recommended to choose Mac/Windows app. Compared with Chrome App, download does not need to climb the wall, and has more powerful functions
The basic use
The official documentation
The tutorial
Postman interface Test Tool, 2016-09-01 (Based on Chrome version of Postman, [postman, 2016-02-29]postman, 2015-09-26 [postman, 2016-02-29] How to write powerful AUTOMATED API tests with Postman, Newman and Jenkins 2015-09-03 How to Write automated Tests for APIs Using Postman – Part 1, How to Write automated Tests for APIs with Postman – Part 2, Writing Automated Tests with Postman – Part 3, 2014-05-09
- Some of the early articles mentioned Jetpack, which used to cost $10 and is now Postman’s own Collection Runner that can execute use cases in bulk
The sample
Postman Echo
Making the perfect HTTP request using Postman Echo, 2015-11-13
Cooper’s Meal Plan
Conditional Workflows in Postman, 2016-03-23
Spotify Playlist Generator
Generate Spotify Playlists using a Postman Collection, 2016-11-09
Postman collection and usage instructions for CurencyCloud
Recording interface
Using Postman Proxy to Capture and Inspect API Calls from iOS or Android Devices 2016-06-26
Interface callers want to test their business logic without the hassle of grabbing Fiddler/Charles packets and filling them in one by one. Turn on the Postman proxy (default port 5555) and set the IP and port for the browser/phone
Support regular expression filter URL, it is recommended that the static resource, traffic statistics and rule out other background processes from time to time request site baidu Google | | Microsoft | making | | qq\.com. * \. (HTML? | js | | CSS PNG | jpe? G | webp | ico) $
You can set the location for saving: If all steps need to perform interface tests, you are advised to directly save them to the target set. If only one or several interfaces are selected from a large number of operations, you are advised to save them to the historical record and save the desired ones to the target set without wasting time
Collection Runner
Running a collection
- Suitable for running/debugging multiple use cases at once
- Suitable for the development of self-test interface performance (such as a cycle of 10000 times), at least the response time and stability have passed the call to others
- Like Newman, it runs in an environment that doesn’t save environment variables by default. Like Newman, it can load data files
【 Special attention 】
There can be no dependencies between collections, between folders in the same collection, between use cases that place folders in the same collection and those that do not
Postman/Newman is written in JS, and the minimum granularity of batch execution is that the single-threaded asynchronous nature of folders means that the order in which folders are executed has nothing to do with the order in which they appear to be sorted
Only use cases in the same folder, or directly in the collection, are executed in the order they appear to be
Each collection measures 1 aspect, and each folder within the collection measures 1 completely independent sub-scenario
In addition
- Currently, only level 1 folders are supported under the collection. It is not recommended to make scenarios too complex, which is difficult to manage use cases
- Currently collections and folders can only be sorted alphabetically, and use cases can be dragged to sort
- Currently, the URL cannot be found. You are advised to use the case name
/path/to/ API interface description
, easy to see and search - If you want to implement automation and continuous integration, you are advised to name collections and folders without Spaces, which is convenient for command line invocation
Process control
Only works in Collection Runner or Newman (send whichever you choose on the normal screen)
/* If you want to execute two use cases in the following order: If (XXX) postman.setNextrequest ('null'); if (XXX) postman.setNextrequest ('null'); // Test postman.setNextrequest (' test case A'); Postman is A global object provided by Postman; postman is A global object provided by postman; postman is A global object provided by postman; postman is A global object provided by postmanCopy the code
assertions
Testing Sandbox built-in objects, methods, variables, and available third-party libraries are introduced to Testing examples Extracting data from Responses and chaining requests, 2014-10-27
In collection Runner /Newman you can see the results visually, but in Collection Runner /Newman there is no way to know whether a run has succeeded or failed without an assertion written in the Tests TAB. To get started, refer to documentation and the code template on the right side of the screen:
tests['Status code is 200'] = responseCode.code === 200; If tests['Response time is less than 200ms'] = responseTime < 200; if tests['Response time is less than 200ms'] = responseTime < 200; tests['Body matches string'] = responseBody.has('xxx'); / / so long as has the specified keyword, in which, there are several no matter tests [' the content-type is present] = postman. GetResponseHeader (' the content-type ') | | false; // If the test value is true, it will be displayed as success in the report. Tests [' [INFO] Request Params: ${JSON. Stringify (request.data)} '] = true; if tests[' [INFO] Request params: ${JSON. // Display all request parameters (useful in automated tests) tests[' run ${iteration + 1} times'] = true; Iteration is a global variable provided by Postman, starting with 0. Iteration is a global variable provided by Postman. Request is a global object provided by Postman (responseCode), responseTime (number), responseBody (string), and Postman (Postman) [Note] If you are doing an automated test, the current interface timeout does not return: // Select * from responseCode (); // select * from responseTime (); // Select * from responseBody (); // Select * from responseCode (); // Select * from responseBody (); // Select * from responseCode (); // Select * from responseBody (); It is recommended that this line not be displayed at this timeCopy the code
about'use strict';
Because Postman provides a lot of global variables, it says ‘use strict’; I’m going to give you a warning where you use these variables and if you have a good habit of not writing it error-prone, it doesn’t matter if you don’t
Retrieves the interface return value
When the returned JSON
let json = JSON.parse(responseBody); Let foobar = json.foo.bar[0].foobar; let foobar = json.foo.bar[0].foobar; / / assume that {" foo ": {" bar" : [{" foobar ": 1}, {2}" baz ":]}} / / want to use in the automatic test can write more: let json. try { json = JSON.parse(responseBody); } catch (err) { tests['Expect response body to be valid JSON'] = false; tests[`Response body: ${responseBody}`] = true; console.error(err); }Copy the code
Returns HTML
Let foo = responsebody. match(/foo/g); // tests['blahblahblah'] = foo[0] === 'bar'; // let foo = 'XXX '; let bar = responseBody.match(new RegExp(`^${foo}.*
, 'g'); // B. 用CheerioJS库: let html = cheerio(responseBody); let titleText = html.find('title').text(); // 取 标签里的文字 </code></pre> <blockquote> <p><a href="http://blog.getpostman.com/2016/08/30/jquery-replaced-by-cheeriojs-in-postman-sandbox/">jQuery replaced by CheerioJS in Postman Sandbox</a>, 2016-08-30</p> </blockquote> <hr> <h3>设置环境变量</h3> <blockquote> <p><a href="https://www.getpostman.com/docs/environments">Setting up an environment with variables</a> </p> </blockquote> <p>Postman的环境变量分为 environment 和 global 2种</p> <p>实际上就是<code>environment</code>、<code>globals</code>这2个全局的对象(字典)里的内容<br> 它们的key作为变量名,value作为变量的值 </p> <h4>environment</h4> <p>满足99%的需要,平时只用它就够了,global留到后文讲</p> <ul> <li>作用域为整个集合</li> <li>能创建多个environment文件,方便切换不同测试环境</li> </ul> <p>在地址栏、header、请求参数、外部数据文件里,用 <code>{{变量名}}</code> 获取环境变量的值<br> 如:<code>{{URL}}/path/to/api</code></p> <p>(更常见的<code>${}</code>在JS的ES6语法里被占用了,Postman只能选这么个奇怪写法)</p> <p>在<code>Pre-request Script</code>和<code>Tests</code>的代码里略有不同:</p> <pre><code>/* 官方提供的方法 */ // 设置 postman.setEnvironmentVariable('variableKey', value); // 注意:通过菜单或以上方法设置的环境变量,值会转成字符串,取的时候要转换 // 获取 let foo = postman.getEnvironmentVariable('variableKey'); // 字符串数字转数字:Number(foo) // 字符串'true' 'false'转布尔值:Boolean(foo) 或 !!foo // 更新 // 就是再设置一次同名的环境变量,换别的值 // 清除环境变量 postman.clearEnvironmentVariable('variableKey'); </code></pre> <pre><code>/* 懒人版 */ // 既然知道实际上是操作 environment 对象,如果你有JS基础,可以直接: // 添加key environment.variableKey = 12345; // 少打字,取出时也不用转换类型 // 获取 let foo = environment.variableKey; // 清除 delete environment.variableKey; // obj.foo = undefined; 的写法无效,Postman把undefined转成了字符串…… // 如果你非要跟自己过不去,用了变量名不允许的字符做key(比如有空格),只能写成 environment['variableKey'] // 只要没跟自己过不去,可以用ES6的对象解构语法一次取多个: let {key1, key2, key3} = environment; </code></pre> <p>【注意】 </p> <p>在Postman主界面运行过后,通过代码设置的环境变量会存到IndexedDB,跟在菜单里设置一样,用例跑完不消失 </p> <p>但在collection runner或Newman跑则是默认不保存,跑完就消失,做自动化测试时要注意</p> <hr> <h3>动态请求参数</h3> <p>在runner里循环发n次请求/做自动化测试时,有些接口不适合写死参数 </p> <ol> <li>Postman有以下内建变量,适合一次性使用:</li> </ol> <pre><code>{{$guid}} // 生成GUID {{$timestamp}} // 当前时间戳 {{$randomInt}} // 0-1000的随机整数 </code></pre> <ol> <li>参数依赖上一个请求的返回:</li> </ol> <p>上个请求的<code>Tests</code>里提取参数存环境变量,这个请求里用<code>{{变量名}}</code>取值</p> <ol> <li>参数每次都不同,但之后的断言或别的请求里可能还要用:</li> </ol> <p>在<code>Pre-request Script</code>里写代码处理,存为环境变量,参数里用<code>{{变量名}}</code>取值</p> <p>例如</p> <pre><code>const randomInt = (min, max) => Math.floor(Math.random() * (max - min + 1)) + min; // 随机整数 const getRandomValue = list => list[randomInt(0, list.length - 1)]; // 随机选项 // 随机手机 environment.randomMobile = `18${randomInt(100000000, 999999999)}`; // 随机设备名 environment.randomDevice = getRandomValue(['ios', 'android']); </code></pre> <p>Postman目前没有很方便的重用代码的手段,编辑框也不是IDE,没智能提示,尽量别整那么复杂</p> <hr> <h3>调试</h3> <p><code>cmd + alt + c</code>(Windows <code>ctrl + alt + c</code>)打开Postman控制台,可以看请求和响应内容</p> <p>用<code>console.log()</code>打印,到控制台看<br> 或<code>tests['这里拼出你想看的字符串'] = true</code>在界面/报告看断言</p> <hr> <h3>mock</h3> <blockquote> <p><a href="http://blog.getpostman.com/2016/01/26/using-a-mocking-service-to-create-postman-collections/">Using a mocking service to create Postman Collections</a>,2016-01-26</p> </blockquote> <hr> <h3>global</h3> <p><strong>不做自动化测试可以跳过这段</strong></p> <p>跟environment几乎完全一样,在地址栏、header、请求参数、外部数据文件里也是<code>{{}}</code>调用,除了:</p> <ul> <li>只有1个global文件</li> <li>菜单藏得较深,在生成的API文档里也不解析,决定了它不适合做参数化</li> <li>environment和global同名时,优先用environment</li> </ul> <p>global只建议用在1种场景:<strong>定义公共函数</strong></p> <p>先正常地写好函数,再用<a href="http://tool.lu/js/">在线压缩工具</a>压成一行<br> 在菜单里选 Bulk Edit,以每行一对 key:value 的形式编辑,变量名做key,函数做value</p> <pre><code>assertNotTimeout:var hasResponse=postman.getResponseHeader('Content-Type')?true:false; if(!hasResponse) tests['服务端在超时前没返回任何数据,请检查相关服务、网络或反向代理设置(以下跳过其他断言)']=false; logParams:if(hasResponse) tests[`[INFO] 请求参数(超时没返回时不解析):${JSON.stringify(request.data)}`]=true; getResponseJson:try{if(hasResponse) var json=JSON.parse(responseBody);}catch(err){ tests['服务端没返回合法的JSON格式,请检查相关服务、网络或反向代理设置(以下跳过其他断言)']=false; tests[`[INFO] 返回:${responseBody}`]=true; console.error(err);} assertType:var assertType=(name,value,type)=>{let isType=(type==='array')? Array.isArray(value):typeof value===type; tests[`${name}为${type}(实际值:${value})`]=isType;}; assertEqual:var assertEqual=(name,actual,expected)=>{tests[`${name}等于${expected}(实际值:${actual})`]=actual===expected;}; assertNotEqual:var assertNotEqual=(name,actual,expected)=>{tests[`${name}不等于${expected}(实际值:${actual})`]=actual!==expected;}; // 注意在这里定义变量只有 var 的作用域够大,用 let 或 const 的话eval后就销毁了 </code></pre> <p>假设返回 <code>{"name":"张三","userType":1,"settings":[]}</code>,在<code>Tests</code>里一上来就写:</p> <pre><code>eval(globals.assertNotTimeout); // 判断是否超时(通过有没有Content-Type请求头),超时则断言失败 eval(globals.logParams); // 如果不超时,显示发出的请求参数 eval(globals.getResponseJson); // 如果不超时,解析返回的JSON对象,赋给json变量,返回值不合法则断言失败 // 下面定义了3个公共函数,免得每次断言都要写一大串: eval(globals.assertType); eval(globals.assertEqual); eval(globals.assertNotEqual); // 上面3个基本满足日常使用需要 if (json) { assertType('用户名', json.name, 'string'); // 在报告中显示为: '用户名为string,(实际值:张三)' assertType('设置', json.settings, 'array'); // JS里其实没有array类型(数组是object),这里做了处理,让报告更好懂 assertEqual('用户类型', json.userType, 1); // 显示为: '用户类型等于1,(实际值:1)' assertNotEqual('用户类型', json.userType, 2); // 显示为: '用户类型不等于2,(实际值:1)' } </code></pre> <p>在官方给出更方便的重用代码的方法前,这是除了复制粘贴外唯一的重用方法<br> 如果不做自动化测试,且断言写得很简单,不建议这么搞 </p> <p>如果不幸跳了自动化的坑,通常一个项目会有100~200个接口要做自动化测试,要仔细比较哪种方法成本更高<br> 定义函数前要仔细考虑好,万一中途要改参数和返回值,已经写好的n份也得改……</p> <p>建议定义的公共函数不超过个位数,并保留好没压缩的版本,不然别人没法接手</p> <blockquote> <p><a href="http://blog.getpostman.com/2015/09/29/writing-a-behaviour-driven-api-testing-environment-within-postman/">Writing a behaviour driven API testing environment within Postman</a></p> </blockquote> <pre><code>// 如果确实要在代码里设global // 官方的: postman.setGlobalVariable('variableKey', value); // 同样存成字符串 let bar = postman.getGlobalVariable('variableKey'); postman.clearGlobalVariable('variableKey'); // 或者自己操作 globals 对象 </code></pre> <hr> <h3>数据文件</h3> <p><strong>不做自动化测试可以跳过这段</strong></p> <blockquote> <p><a href="https://www.getpostman.com/docs/multiple_instances">Using data variables to run a collection multiple times</a><br> <a href="http://blog.getpostman.com/2014/10/28/using-csv-and-json-files-in-the-postman-collection-runner/">Using CSV and JSON data files in the Postman Collection Runner</a>, 2014-10-28 <a href="http://blog.getpostman.com/2014/02/20/using-variables-inside-postman-and-collection-runner/">Using variables inside Postman and Collection Runner</a>, 2014-02-20</p> </blockquote> <p>在collection runner或命令行的Newman里可以加载数据文件 </p> <pre><code>/* JSON格式 */ // 文件里有且只有1个数组,每个对象算1条用例(在Postman里的全局变量叫做data) // key作为变量名,value作为变量的值 // 文件里依然可以用 {{}} 拿到环境变量,注意不要把自己绕进去: // 如果是Pre-request Script里生成的环境变量,直接写进请求参数,不用经这里 [ {"mobile": "17000000001", "pwd": "123456"}, {"mobile": "17000000002", "pwd": "654321"}, {"mobile": "17000000003", "pwd": ""}, {"mobile": "{{ADMIN_MOBILE}}", "pwd": "{{ADMIN_PWD}}"} ] // 显然,这是json文件,并不能在里面写代码(除非你蛋疼在value里写字符串然后在用例里eval) // 用例的请求参数里依然用 {{key}} 拿到数据文件里的值,代码里则是 data.key // 如果key跟environment/globals里的key重名,这里的 > environment > globals /* CSV格式 */ // 第1行变量名,下面是值,每行1条用例,没有空格 // 没JSON格式的数据文件灵活 mobile,pwd 17000000001,123456 17000000002,654321 17000000003, </code></pre> <p>【注意】</p> <p><strong>谨慎使用</strong>。这东西增加了调试和定位问题的复杂性,也就大大增加了维护成本<br> 而它带来的收益并不明显:</p> <ol> <li>针对单个接口的简单压力测试</li> </ol> <p>Postman不是正经的压测工具,既然选择了它就是图简单方便<br> 像JMeter那样用CSV文件做数据源的意义不大,还得另外写程序/脚本生成这样的文件,时间上不划算<br> 直接用代码生成数据就好,不差那一两毫秒</p> <ol> <li>数据驱动测试:一条用例测多种参数组合,包括合法和非法值,避免复制粘贴n条略有不同的</li> </ol> <p>很诱人,但是</p> <ul> <li>产品设计时有考虑异常情况吗?</li> <li>需求来源是否统一?</li> <li>需求是否足够稳定?</li> <li>整个项目有统一的异常处理规范还是看开发个人习惯?</li> </ul> <p>如果不确定有些输入要不要/怎么处理,意味着改动可能会非常大<br> 今天非法,明天变合法,后天又变非法 </p> <p>如果冒烟用例用在持续集成,有测试不通过会阻止发布,会严重干扰正常发版,也影响大家对自动化测试的信心</p> <p>此外</p> <ul> <li>内部的基础组件为了不同项目通用,可能会允许看起来相当没道理的值</li> <li>不对外暴露的接口为了性能,可能会有意去掉所有校验</li> </ul> <p>不要因为所谓“测试思维”,就在不了解的情况下为了测试而测试<br> 这种力气留到探索性测试和安全测试,自动化测试还是要讲求稳定和省事</p> <p>此外</p> <ul> <li>为了能匹配正常和异常情况(和具体哪一种异常情况),断言必须写得比平时复杂</li> <li>然后你会希望把断言条件也写进数据文件里,一种格式,eval后到处通用</li> <li>然后数据文件的格式会变得远比上面的示例复杂</li> <li>然后你会准备一键生成模板的脚本,批量修改的脚本,封装Newman的脚本,一个框架的雏形……别问我怎么知道的</li> </ul> <p>然后你回过头发现,一开始不用数据文件不就省事多了?! </p> <hr> <h3>收费功能</h3> <p>目前管理员不能解散自己创建的团队,不能删别人创建的环境变量模板,几乎残废<br> 不是太推荐交钱</p> <h4>团队协作</h4> <blockquote> <p><a href="http://blog.getpostman.com/2016/10/27/new-more-useful-activity-feed-in-postman-collections/">New, More Useful Activity Feed in Postman Collections</a>, 2016-10-27<br> <a href="http://blog.getpostman.com/2016/03/10/environment-sharing/">Announcing: Environment Sharing!</a>, 2016-03-10</p> </blockquote> <h4>让用户自己跑测试</h4> <p>例如你要发布SDK,页面里可以带上跑Postman测试的按钮</p> <blockquote> <p><a href="http://blog.getpostman.com/2016/01/28/the-run-in-postman-button-for-improved-documentation/">Call for Partners: The Run in Postman Button for API documentation</a></p> </blockquote> </article>Copy the code
Copy the code