Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> Testing >> Manual Testing
  2. Suggest New Category

Which method of testing we use to test LOGIN page?

Question Posted / shweta chaudhari

Answer Posted / shweta chaudhari

Hiiie All,

Security Testing:

1. For Incorrect combination of username and password or
Correct username and empty password or Correct password and
empty username,must display error message "Incorrect
combination of username and password" and both the fields
must cleared and cursor focus to Username field.

2. Correct login, logout and go back with the browser
button: After login with valid credentials click on back
button. Expected: The page should be expired. Should display
Username & Password fields empty and cursor focus in
Username field). Also, same with Forward button.

3. Go directly to a page without use of the login function:
Login with a correct combination of username and password.
Go to a specific page behind the login functions that
requires the login. Copy and paste the URL and logout. Now
you start the test and you paste the address in the URL
field (without using the login page).

4. Check the sustainability of the session

5. Check if the login function is already HTTPS: The ‘S’
from HTTPS stands for Secure. This means the message is
encrypted during transport. If the login page is HTTP and
the conversation after login is HTTPS the first step is
unsecure. Because the message is in plain text the first
request to the server.

6. Multiple times incorrect password: An application where a
lock of account doesn’t occur is capable for a brute force
attack. This is an attack where hackers try to guess your
username or password. They use a tool that systematically
try all options. So locking accounts after 3 or 10 times a
incorrect combination is required.

GUI Testing:

1. All the labels, text boxes and buttons must properly placed.

2. Check the spelling of each and everything in login page.

Following are the standard Username and Password requirements:

Requirements for Password Field:

a. Password must accept all the special characters except
&*<>|;"=./
b. Password should not accept all lower or all Upper case.
c. Password must contain minimum of 6 characters.
d. Password should start with alphabet.
e. Password should not allow special character like space " ".
f. Password field should not blank.

Requirements for Username Field:

a. Usernames must be three to eight characters in length,
and all characters must be lowercase
b. Usernames must contain only the characters a-z and 0-9.
The first character cannot be a number.
c. Acceptable characters include letters, numbers, and the
symbols "@. _"
d. No spaces or other characters are allowed. Your username
is not case sensitive; "A12B34CD" is the same as "a12b34cd".

******END******

Is This Answer Correct ?    7 Yes 0 No



Post New Answer       View All Answers


Please Help Members By Posting Answers For Below Questions

What is the difference between system testing and integration testing?

1233

need testing projects where can i find them

2262

Explain the difference between severity and priority.

1188

whats the reason to display the password(not in encrypted form) in the script in load runner but not in QTP?

1984

Please explain me v-model clearly i want to know how it works and want to know how it use in real time on a project please tell me its urgent and important for me understand .Please tell me my mail id is Chiku_69@yahoo.in Thank u

2663

why QA team is necessary for an organization?

3133

diff b/w desktop based testing & web application testing

2108

What is difference between Manual testing and Pega/BPM testing?

8254

Can you please explain me how to do testing of an E-insurance project end to end process..

2725

Describe a past experience with implementing a test harness in the development of software.

4064

Can you explain tpa analysis?

1168

Hi everyone, My name is Salil Mishra. I am having 1.7 years of experience in manual testing. But as i m 2008 passout, there are limited position for me in the companies. Please help me out in getting a good job guys..I f you find something then please mail me at salilmishra29@gmail.com

2006

how to generate id in testdirector? a) Td id 1 b) td id 2 c) td id 3 d) td id 4 which is correct answer please any one of the tell me and mail me

2339

what does 80hz refresh rate indicates?

2946

In Manual testing how to test proxy servers? can u please explain with example?

2188