lucasacchi/mockupAWS
1
0
Fork 0
Code Issues Pull Requests Actions 4 Packages Projects Releases Wiki Activity
Files
a1068ad99ba8a8f18d099d1b8d3d86f0384a99f2
mockupAWS/testing/TESTING_GUIDE.md
Luca Sacchi Ricciardi 38fd6cb562
Some checks failed
CI/CD - Build & Test / Backend Tests (push) Has been cancelled
Details
CI/CD - Build & Test / Frontend Tests (push) Has been cancelled
Details
CI/CD - Build & Test / Security Scans (push) Has been cancelled
Details
CI/CD - Build & Test / Docker Build Test (push) Has been cancelled
Details
CI/CD - Build & Test / Terraform Validate (push) Has been cancelled
Details
Deploy to Production / Build & Test (push) Has been cancelled
Details
Deploy to Production / Security Scan (push) Has been cancelled
Details
Deploy to Production / Build Docker Images (push) Has been cancelled
Details
Deploy to Production / Deploy to Staging (push) Has been cancelled
Details
Deploy to Production / E2E Tests (push) Has been cancelled
Details
Deploy to Production / Deploy to Production (push) Has been cancelled
Details
E2E Tests / Run E2E Tests (push) Has been cancelled
Details
E2E Tests / Visual Regression Tests (push) Has been cancelled
Details
E2E Tests / Smoke Tests (push) Has been cancelled
Details
release: v1.0.0 - Production Ready 
Complete production-ready release with all v1.0.0 features:

Architecture & Planning (@spec-architect):
- Production architecture design with scalability and HA
- Security audit plan and compliance review
- Technical debt assessment and refactoring roadmap

Database (@db-engineer):
- 17 performance indexes and 3 materialized views
- PgBouncer connection pooling
- Automated backup/restore with PITR (RTO<1h, RPO<5min)
- Data archiving strategy (~65% storage savings)

Backend (@backend-dev):
- Redis caching layer with 3-tier strategy
- Celery async jobs with Flower monitoring
- API v2 with rate limiting (tiered: free/premium/enterprise)
- Prometheus metrics and OpenTelemetry tracing
- Security hardening (headers, audit logging)

Frontend (@frontend-dev):
- Bundle optimization: 308KB (code splitting, lazy loading)
- Onboarding tutorial (react-joyride)
- Command palette (Cmd+K) and keyboard shortcuts
- Analytics dashboard with cost predictions
- i18n (English + Italian) and WCAG 2.1 AA compliance

DevOps (@devops-engineer):
- Complete deployment guide (Docker, K8s, AWS ECS)
- Terraform AWS infrastructure (Multi-AZ RDS, ElastiCache, ECS)
- CI/CD pipelines with blue-green deployment
- Prometheus + Grafana monitoring with 15+ alert rules
- SLA definition and incident response procedures

QA (@qa-engineer):
- 153+ E2E test cases (85% coverage)
- k6 performance tests (1000+ concurrent users, p95<200ms)
- Security testing (0 critical vulnerabilities)
- Cross-browser and mobile testing
- Official QA sign-off

Production Features:
 Horizontal scaling ready
 99.9% uptime target
 <200ms response time (p95)
 Enterprise-grade security
 Complete observability
 Disaster recovery
 SLA monitoring

Ready for production deployment! 🚀
2026-04-07 20:14:51 +02:00

234 lines
4.4 KiB
Markdown
Raw Blame History

# Testing Execution Guide
# mockupAWS v1.0.0
This guide provides step-by-step instructions for executing all QA tests for mockupAWS v1.0.0.
## Prerequisites
### Required Tools
- Node.js 20+
- Python 3.11+
- Docker & Docker Compose
- k6 (for performance testing)
- Trivy (for container scanning)
- GitLeaks (for secrets scanning)
### Optional Tools
- Snyk CLI (for dependency scanning)
- SonarScanner (for SAST)
- OWASP ZAP (for DAST)
## Quick Start
```bash
# 1. Start the application
docker-compose up -d
# 2. Wait for services to be ready
sleep 30
# 3. Run all tests
./testing/run-all-tests.sh
```
## Individual Test Suites
### 1. Performance Tests
```bash
cd testing/performance
# Run smoke test
k6 run scripts/smoke-test.js
# Run load tests (100, 500, 1000 users)
k6 run scripts/load-test.js
# Run stress test
k6 run scripts/stress-test.js
# Run benchmark test
k6 run scripts/benchmark-test.js
# Or use the test runner
./scripts/run-tests.sh all
```
### 2. E2E Tests
```bash
cd frontend
# Install dependencies
npm install
# Run all E2E tests
npm run test:e2e:ci
# Run with specific browsers
npx playwright test --project=chromium
npx playwright test --project=firefox
npx playwright test --project=webkit
# Run visual regression tests
npx playwright test --config=playwright.v100.config.ts --project=visual-regression
# Run with UI mode for debugging
npm run test:e2e:ui
```
### 3. Security Tests
```bash
cd testing/security
# Run all security scans
./scripts/run-security-tests.sh
# Individual scans:
# Snyk (requires SNYK_TOKEN)
snyk test --file=../../pyproject.toml
snyk test --file=../../frontend/package.json
# Trivy
trivy fs --severity HIGH,CRITICAL ../../
trivy config ../../Dockerfile
# GitLeaks
gitleaks detect --source ../../ --verbose
# OWASP ZAP (requires running application)
docker run -t ghcr.io/zaproxy/zaproxy:stable zap-baseline.py -t http://host.docker.internal:8000
```
### 4. Unit & Integration Tests
```bash
# Backend tests
cd /home/google/Sources/LucaSacchiNet/mockupAWS
uv run pytest -v
# Frontend tests
cd frontend
npm test
```
## Test Environments
### Local Development
```bash
# Use local URLs
export TEST_BASE_URL=http://localhost:5173
export API_BASE_URL=http://localhost:8000
```
### Staging
```bash
export TEST_BASE_URL=https://staging.mockupaws.com
export API_BASE_URL=https://api-staging.mockupaws.com
```
### Production
```bash
export TEST_BASE_URL=https://app.mockupaws.com
export API_BASE_URL=https://api.mockupaws.com
```
## Test Reports
After running tests, reports are generated in:
- **Performance:** `testing/performance/reports/`
- **E2E:** `frontend/e2e-v100-report/`
- **Security:** `testing/security/reports/`
## CI/CD Integration
### GitHub Actions
```yaml
name: QA Tests
on: [push, pull_request]
jobs:
performance:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run Performance Tests
run: |
docker-compose up -d
sleep 30
cd testing/performance
./scripts/run-tests.sh smoke
e2e:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run E2E Tests
run: |
cd frontend
npm ci
npx playwright install
npm run test:e2e:ci
security:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run Security Tests
run: |
cd testing/security
./scripts/run-security-tests.sh
```
## Troubleshooting
### Performance Tests
- **Issue:** Connection refused
- Solution: Ensure application is running on port 8000
- **Issue:** High memory usage
- Solution: Reduce VUs or run tests sequentially
### E2E Tests
- **Issue:** Tests timeout
- Solution: Increase timeout in playwright config
- **Issue:** Flaky tests
- Solution: Use retry logic, improve selectors
### Security Tests
- **Issue:** Tool not found
- Solution: Install tool or use Docker version
- **Issue:** Permission denied
- Solution: Make scripts executable with `chmod +x`
## Test Data Management
Test data is automatically created and cleaned up during E2E tests. To manually manage:
```bash
# Clean all test data
./testing/scripts/cleanup-test-data.sh
# Seed test data
./testing/scripts/seed-test-data.sh
```
## Support
For issues or questions:
- Performance tests: QA Team
- E2E tests: QA Team
- Security tests: Security Team
- General: DevOps Team
---
**Document Version:** 1.0.0
**Last Updated:** 2026-04-07
Reference in New Issue View Git Blame Copy Permalink