WEB APPLICATION TOOL
Postman
3.1 Introduction
Postman is a web-based application that allows developers to test and document APIs (Application Programming Interfaces). It provides a user-friendly interface for sending HTTP requests and viewing the responses. Some of the features of Postman include the ability to save and organise requests, create automated test scripts, and generate API documentation.
Postman was first released in 2012 as a Chrome browser extension but has since evolved into a full-featured web application that can also be used as a desktop application through native apps for Windows, Mac, and Linux. It is a popular tool among developers for its ease of use and powerful functionality and is widely used in development teams to test, debug, and document APIs. It also supports GraphQL APIs.
Postman is available in both a free and a paid version. The free version offers a limited set of features, while the paid version, called Postman Pro, includes additional features such as collaboration and team management tools.
3.2 Installation and Demo Manual
3.2.1 Installation
1. First, Download the Postman https://www.postman.com/downloads/
2. After the download is completed, just run the application. You can create an account or sign in also you can skip the create an account and sign in process.
3.2.2 Demo Manual
Working with GET Requests
In the workspace
- Set your HTTP request to GET.
- In the request URL field, input link
- Click Send
- You will see 200 OK Message
- There should be 10 user results in the body which indicates that your test has run successfully.
Working with POST Requests
Click a new tab to create a new request
Set your HTTP request to POST and Input the same link in request url: https://jsonplaceholder.typicode.com/users
switch to the Body tab
Click raw and Select JSON
Write the code in the body ,ensure that the code has been correctly paired curly with braces and brackets.
Click Send. and it will Status: 201 Created should be displayed Posted data are showing up in the body
3.3 Analysis on CIA
Postman is a web application that allows developers to test and document APIs (Application Programming Interfaces). It provides a user-friendly interface for sending HTTP requests and viewing the responses.
In terms of CIA (Confidentiality, Integrity, and Availability), Postman provides:
Confidentiality: Postman allows developers to test APIs with varying levels of access permissions, by allowing them to test their APIs with different authentication methods and access tokens. This allows developers to ensure that the API's access controls are properly implemented and only authorised users can access the API's endpoints.
Integrity: Postman allows developers to test the integrity of the API by allowing them to send requests to the API and check the responses. Developers can use this feature to ensure that the API is working as intended and that it returns the expected data. Postman also allows developers to check headers and statuses codes, which could give an indication if the API is working as expected.
Availability: Postman allows developers to test their APIs and ensure that they are working correctly. Developers can use Postman to check the availability of their API by sending requests and checking the responses. By using Postman, developers can quickly identify and troubleshoot any issues with the API, thereby increasing its availability.
In addition to that, Postman also allows developers to schedule their request and test the API at a specific time, which can be useful to test the availability of the API in different time zones or to run tests at a specific time.
However, it's worth noting that the security of an API can also be impacted by how it's implemented, configured, and tested. Developers should make sure that the APIs are configured and tested with security in mind and avoid hardcoding secret or sensitive data into the request payloads or storing them in the environment variables of the Postman.
Comments
Post a Comment