µ }vo zw }u z v ]À ^}lÁ d vpperidotsystems.com/resources/educational_erp_casestudy.pdf · api...
TRANSCRIPT
Educa�onal ERP ComprehensiveSo�ware Tes�ng
Certification
EXAMINATION
About Client Client is a leading educational software and solutions company, focusing on adding value to educational institutions based on speed, e�ciency, reliability and optimality. With Educational ERP products, Customized Solutions and Consultancy, our client empowerseducational institutions to equip e�ective learning, teaching and administration capabilities.
Client Requirement
Client has developed Educational ERP products to automate and streamline all administrative tasks of schools, colleges anduniversities. These ERP products bring seamless interaction among students, teachers, parents and institution management for improved productivity, e�ciency and transparency. Institution management can make e�ective decision making with the insights provided by these ERP products.
Client has a manual testing practice for functional testing and looking to automate it for faster time-to-market. Alongside, client wanted their ERP products to undergo Performance Testing and Security Testing to ensure its overall quality.
The following are the few areas which made Comprehensive Software Testing an essential for client Educational ERP:
• Manual Testing practice has been tedious and time consuming, soclient wanted to automate all the repetitive activities to save timeand e�ort.
• Client has been struggling with the performance of all the portalsand they wanted to improve overall ERP performance for speci�cuser load.
• Client has been concerned about data security and wanted the ERPto be secured against all cyber threats or attacks.
Pain Areas:
We have thoroughly understood client requirement and pain areas and planned a test strategy which addresses all their Software Testing needs.
Client has 5000+ existing manual test cases and work�ows of the ERP are also complex, so Test Automation life cycle will have a longer duration. Hence, we proposed to perform Performance Testing in parallel to Automation Testing.
Whether it is Automation Testing or Performance Testing, we need a proper understanding of their ERP to perform e�ectual testing. There are three portals – Student & Parent portal, Faculty portal and Admin portal, and there are modules that support administrative activities from Admissions to Examination, Fees Management and certi�cates & documents management.
As ERP has complex work�ows, we need to login to more than one portal to complete end-to-end scenarios.
We believe that the e�ectiveness of automated tests depends on understanding of manual test cases. So, the foremost thing we have done is understanding existing manual test cases. Having a clear understanding of ERP, work�ows and test cases, we have decided to develop a Selenium based hybrid Test Automation framework,including TestNG and ExtendReports.
Proposed Solution
OurUnderstanding:
AutomationTesting:
• The Educational ERP front-end was built on advanced JS, so wehave added our in-house Object Identi�cation methodology tothe framework and ensured that we were able to identify theobjects.
• It was a challenge to automate end-to-end scenarios, where thework�ow continues across di�erent portals.
• Due to complex work�ows, we have faced challenge in TestSuite creation.
We were able to mitigate all these challenges with our unparalleled expertise and experience in Test Automation and our hybrid Selenium based framework.
Test Project
Object Repository
Reusable Methods
Configura�on File
Test Data Test Cases
Test Suite
Test Execu�on
Test Repor�ng
API Integra�ons -Bug, No�fica�ons
The framework we developed is data driven, modular driven and semibehavioral driven.
Challenges we Faced:
• Improved speed and accuracy of functional testing
• Regression Testing reduced from 5 days to less than a day
• Upto 90% time saving on repetitive testing
• 8x improvement in defect detection
• Achieving 100% test coverage before major release
• Improvement in time-to-market
• Improvement in response time from 20 seconds to 5 seconds forlogin scenarios with 1000 concurrent users
• Improvement in throughput from 3/1sec to 10/1sec
• Overall 125% performance improvement with Database queryand API level suggestions
• Suggested horizontal scaling due to high CPU and memoryutilizations error rate
Coming to performance requirement, client wanted scalability up to 3000 concurrent users with 1000 concurrent users as performance benchmark.
We have chosen JMeter as the load testing tool for load testing. With initial load tests, we have identi�ed heavy response times, so we provided a few suggestions at the application level. Development team at client has implemented these suggestions and we have pro-ceeded with next stage of load tests.
We have performed endurance test for 7 hours with 500 concurrent users. All the performance issues and bottlenecks identi�ed atapplication level are reported along with suggestions forimprovement.
Outcome:
PerformanceTesting:
Outcome:
By understanding the client functional testing and performance testing requirements, we have delivered client-centric Automation Testing and Performance Testing services. A signi�cant improvement in functional accuracy, and performance of client Education ERP has been observed at the end of the project.
Leveraging OWSAP Top 10 guidelines, we have performedVulnerability Scanning and Assessment to identify vulnerabilities, and Penetration Testing to analyze the Security Risk of the vulnerability.
105 vulnerabilities were found with our Vulnerability Scanning, and we assessed 46 vulnerabilities were Cross Site Scripting. After per-forming Penetration Testing, we have identi�ed 50 Security Risks which must be mitigated at the earliest. They were 4 Unrestricted File Upload Risks, and another two major risks include unauthorized access to Java Servlets Source Code and retrieval absolute path of the Web Server installation.
We have submitted a comprehensive VAPT report which included all the vulnerabilities, security risks, causes and remediations.
• All the 50 Security Risks were mitigated with our remediationplan and suggestions
• Unauthorized access to source code and Server Path disclosureissues were mitigated
• Overall security of the ERP has been improved
Conclusion
Security Testing:
Outcome:
Clic
Test
Con
�den
tial
Are you looking for an independent software testing vendor to improve your software or application quality
Just drop us a line at [email protected] or visit us at www.peridotsystems.com