Something that is untested is broken.
This quote comes from an unknown source; however, it’s not entirely true but most of it is right. Untested applications are always an unsafe bet to make. While the developers are confident about their work, in real world things work out differently; hence it’s always a good idea to test the application throughout. Untested applications also make it hard to improve the existing code. However with automated tests, it’s always easy to make changes and instantly know when something breaks. So testing not just only ensures if the application is behaving the way it is expected to, it also facilitates continuous development.
This chapter covers automated unit testing of REST APIs, and before we get into the actual implementation, we’ll look into what unit testing is and the principles behind.
Introduction
Most software developers out there are usually already familiar with the term “unit testing,” but for those who are not, unit testing revolves around the concept of breaking a large set of code into individual units to be tested in isolation. So typically in such a case, a larger set of code is software, and individual components are the units to be tested in isolation. Thus in our case, a single API request is a unit to be tested. Unit testing is the first level of software development and is usually done by software developers.
- 1.
Unit tests are simple tests for a very narrow block of code, serving as a building block of the bigger spectrum of the application testing.
- 2.
Being narrowly scoped, unit tests are the easiest to write and implement.
- 3.
Unit tests increase confidence in modifying the code and are also the first point of failure if implemented correctly prompting the developer about parts of logic breaking the application.
- 4.
Writing unit tests makes the development process faster, since it makes developers to do less of fuzzy testing and helps them catch the bugs sooner.
- 5.
Catching and fixing bugs in development using unit tests is easier and less expensive than doing it after the code is deployed in production.
- 6.
Unit tests are also a more reliable way of testing in contrast to manual fuzz tests.
Setting Up Unit Tests
So, in this section, we’ll jump right into the action and start on implementing the tests; for the same we’ll use a library called unittest2 which is an extension to the original unit testing framework of Python called unittest.
This shall install unittest2 for us; next we’ll set up a base test class that we’ll import in all our test files. This base class will set up the base for the tests and initiate the test client as the name suggests. So go ahead and create a file called test_base.py in utils folder.
Notice that we won’t configure the SQLAlchemy URI here, which we’ll do in test_base.py
Here we are creating the SQLAlchemy sqlite database on the fly using tempfile.
What we just created previously is called a stub, which is a module that acts as a temporary replacement for a called module providing the same output as the actual product.
So the preceding method will run before every test is run and it spawns a new test client. We’ll import this method in all the tests we create. A test is recognized by all the methods in the class which starts with test_ prefix. Here we’ll have a unique database URL every time since we have configured tempfile, and we’ll postfix it with a timestamp and then we have configured TESTING= True in app config which will disable error catching to enable better testing, and then finally we run db.create_all() to create the DB tables for the application.
Next we have defined another method tearDown which will remove the current database file and use a fresh database file for every test.
Unit Testing User Endpoints
So now we’ll start writing the tests, and the first step to it is by creating a folder called tests in api directory where we’ll create all our test files. So go ahead and create tests folder and create our first test file called test_users.py.
Once done, we’ll define another method to create users using the SQLAlchemy model to facilitate testing.
Add this code to the file which will import our base test class and set up the test client and call create_users() method to create the users. Notice that in create_users() method, we have created one verified and one unverified user so that we can cover up all the test cases. Now we can start writing our unit tests. Add the following code inside TestUsers() class.
Add the following code inside the TestUsers class, and we should have our first unit test in which we create a user object and post the user to login endpoint. Once we receive the response, we’ll use assertion to check if we got the expected status code and access_token in the response. An assertion is a boolean expression which will be true unless there is a bug or the conditional statement doesn’t match. Unit test provides a list of assertion methods we can use to validate our tests.
But assertEqual(), assertNotEqual(), assertTrue(), and assertNotTrue() cover most of it.
Here assertEqual() and assertNotEqual() match for values, and assertTrue() and assertNotTrue() check if the value of passed variable being a boolean.
Now let’s run our first test, so just open your terminal and activate your virtual environment.
Running unit tests
So this was one way of running our unit tests, and before we process further with writing more tests, I’d like to introduce you to another extension to unittest library called nose which makes testing easier, so let’s go ahead and install nose.
And now once we have nose, let’s see how we can use nose to run our tests since moving on we’ll use nose to run all our tests.
Running unit tests with nose
As you can see in the preceding figure, we can run our tests using a simple nosetest command. Next let’s write unit tests for user model again.
So our goal here is to cover all the scenarios and check the application behavior in each of the scenarios; next we’ll test login API when the user is not verified and when wrong credentials are submitted.
In the preceding code, in test_login_user_wrong_credentials method , we check for 401 status code in the response as we are supplying wrong credentials, and in test_login_unverified_user() method, we are trying to login with an unverified user which shall throw 400 error.
The preceding code will request the Create user endpoint with a new user object and shall be able to do so and respond with a 201 status code.
Nosetests on test_users.py
So these are all the tests we want to cover with user model; next we can move on to authors and books.
Now we have the base of our author unit tests, and we can add the following test cases which should be self-explanatory.
Authors test
So now you can run authors test like in the previous figure, and it should all pass like in that figure; next we’ll move to books model test.
Test Coverage
So now we have learned to write test cases for our application, and the goal of the unit tests is to test as much code as possible, so we have to make sure every function with all its branches are covered, and the closer you get to 100%, the more comfortable you will be before making changes. Test coverage is an important tool to use in development; however, 100% coverage doesn’t guarantee no bugs.
Nose library has a built-in plugin that works with coverage module, so to run test coverage, you need to add two more parameters to the terminal while running nosetests.
Test coverage
As you can see, we have got a significant amount of code test coverage, and you can cover all other edge cases to achieve 100% test coverage.
The preceding command will generate the HTML format result of test coverage, and now you should see a folder called cover in your working directory; open the folder, and open index.html using your browser to see the test coverage report in HTML.
Test coverage report in HTML
Conclusion
So this is it for this chapter; we have learned the basics of unit testing, implemented test cases for our application, and covered unit tests for all our routes and integrated test coverage using nose testing library. This covers our development journey of this application. In the next chapter, we’ll discuss about deployment and deploy our application on various cloud service providers.