7. How do you test data validation using the Fake REST API?
Answer: By checking:
- Field types (e.g., strings for names, integers for IDs)
- Required fields
- Length constraints
- Boundary value conditions
8. What kind of security tests can you perform on a REST API?
Answer:
- Validate authentication (e.g., token-based access)
- Test HTTPS enforcement
- Perform penetration testing for SQL injection, XSS, CSRF, etc.
9. How do you test for rate limiting in APIs?
Answer: Send rapid, repeated requests to the API and validate if it returns 429 Too Many Requests or any configured rate-limiting response.
10. What is regression testing in API Testing?
Answer: Regression testing ensures new updates or code changes don’t affect the existing functionality. Previous test cases are re-executed after every release.
11. What strategies do you use to create test data?
Answer:
- Manual entry
- Automation scripts (e.g., in Python or Java)
- Using Mock APIs
- Using real-time sanitized production data
12. What are the common HTTP status codes used in API testing?
Answer:
- 200 OK
- 201 Created
- 400 Bad Request
- 401 Unauthorized
- 403 Forbidden
- 404 Not Found
- 500 Internal Server Error
👉The Next Questions-3: API TEST PLAN
