Skip to content

mmed-SaaD/robot-framework-e2e-test-suite

Repository files navigation

๐Ÿš€ Robot Framework E2E Test Suite

A comprehensive QA Automation Framework built with Robot Framework to validate the OWASP Juice Shop application through multiple testing layers including UI, API, Database, Performance, and Security testing.


๐Ÿ“Œ Project Overview

This project demonstrates modern Quality Assurance practices by combining:

  • UI Automation Testing
  • API Testing
  • Database Validation
  • Performance Testing
  • Security Testing
  • CI/CD Automation
  • Automated Reporting

The framework is designed to showcase real-world QA engineering workflows using industry-standard tools.


๐Ÿ“Š Test Execution Summary

Metric Result
Total Tests 202
Passed 167
Failed 35
Pass Rate 82.67%
Execution Time 1h 21m
Framework Robot Framework
Application Under Test OWASP Juice Shop

๐Ÿ›  Technology Stack

Category Tool
Test Framework Robot Framework
UI Testing SeleniumLibrary
API Testing RequestsLibrary
Database Testing DatabaseLibrary
Performance Testing k6
Security Testing OWASP ZAP
Reporting Allure Report
Database SQLite
Containers Docker
CI/CD GitHub Actions
Metrics Storage InfluxDB
Monitoring Grafana

๐Ÿ–ฅ UI Automation Phase

Summary

Metric Result
Total Tests 82
Passed 79
Failed 3

Covered Areas

  • User Registration
  • Login & Logout
  • Product Catalog
  • Product Search
  • Basket Management
  • Checkout Process
  • Address Management
  • Payment Management
  • Order Confirmation
  • Feedback Submission
  • Navigation Validation

Highlights

  • Reusable Keywords
  • Explicit Wait Strategies
  • End-to-End Workflows
  • Positive & Negative Testing
  • Dynamic UI Validation

๐Ÿ”Œ API Automation Phase

Summary

Metric Result
Total Tests 86
Passed 59
Failed 27

Covered Areas

  • Authentication APIs
  • Registration APIs
  • Basket APIs
  • Checkout APIs
  • Product APIs
  • Feedback APIs
  • Negative API Testing
  • Contract Validation

Highlights

  • Status Code Validation
  • Response Schema Validation
  • Negative Testing
  • Data Integrity Verification
  • Security-Oriented API Checks

๐Ÿ—„ Database Automation Phase

Summary

Metric Result
Total Tests 14
Passed 14
Failed 0
Pass Rate 100%

Covered Areas

  • User Data Validation
  • Product Data Validation
  • Basket Data Validation
  • Feedback Validation
  • Query Performance Verification
  • Database Security Validation

Highlights

  • Direct SQL Assertions
  • Data Integrity Checks
  • Parameterized Queries
  • Database Performance Verification

โšก Performance Testing Phase

Performance testing is implemented using k6 and integrated directly into Robot Framework.

Performance metrics are exported to InfluxDB and visualized using Grafana dashboards.

Test Scenarios

Smoke Testing

  • Application availability validation
  • Core endpoint verification
  • Baseline performance metrics

Load Testing

  • Normal traffic simulation
  • Concurrent user validation
  • Throughput analysis

Stress Testing

  • High load simulation
  • Breaking point identification

Spike Testing

  • Sudden traffic surge simulation
  • Recovery validation

Soak Testing

  • Long-duration stability testing
  • Resource consumption analysis

๐Ÿ“ˆ Grafana Dashboards

Smoke Test Dashboard

Add screenshot here

Smoke Dashboard


Load Test Dashboard

Add screenshot here

Load Dashboard


Stress Test Dashboard

Add screenshot here

Stress Dashboard


Spike Test Dashboard

Add screenshot here

Spike Dashboard


Soak Test Dashboard

Add screenshot here

Soak Dashboard


๐Ÿ”’ Security Testing Phase

Security testing is implemented using:

  • OWASP ZAP
  • Robot Framework
  • RequestsLibrary

The objective is to validate and document known vulnerabilities within OWASP Juice Shop.

Summary

Metric Result
Total Tests 15
Passed 10
Failed 5

Security Areas Covered

SQL Injection

  • Authentication bypass testing
  • Input manipulation validation

Cross-Site Scripting (XSS)

  • Reflected XSS
  • Stored XSS
  • Payload execution testing

Broken Access Control

  • Unauthorized endpoint access
  • Resource enumeration

Path Traversal

  • Directory traversal attempts
  • Sensitive file access validation

Malicious File Upload

  • Executable upload attempts
  • Server-side validation testing

Security Scanning

  • OWASP ZAP Spidering
  • Passive Analysis
  • Active Vulnerability Scanning

Note

OWASP Juice Shop is intentionally vulnerable. Security tests are designed to discover and document vulnerabilities while demonstrating security testing methodologies.


๐Ÿ“‹ Allure Reporting

The framework automatically generates professional Allure Reports after each execution.

Features

  • Test Overview Dashboard
  • Test Categories
  • Test Suites Breakdown
  • Timeline Visualization
  • Severity Distribution
  • Duration Analysis
  • Failure Investigation
  • Historical Trends

Allure Overview

Insert screenshot: overview.png

Allure Overview

Remarks

  • 202 total test cases executed
  • 167 passed
  • 35 failed
  • 82.67% pass rate
  • 1h 21m execution duration

Allure Graphs

Insert screenshot: graphs.png

Allure Graphs

Remarks

  • Pass/Fail distribution
  • Severity breakdown
  • Duration analysis
  • Execution statistics

Allure Timeline

Insert screenshot: timeline.png

Allure Timeline

Remarks

  • Visual execution flow
  • Long-running test identification
  • Bottleneck analysis

Allure Suites

Insert screenshot: suites.png

Allure Suites

Remarks

Suite Passed Failed
UI 79 3
API 59 27
Database 14 0
Performance 5 0
Security 10 5

๐Ÿš€ GitHub CI/CD Pipeline

The project includes a fully automated GitHub Actions pipeline.

Trigger Events

  • Push to Main Branch
  • Pull Requests
  • Manual Workflow Dispatch

Pipeline Workflow

Developer Push
        โ†“
GitHub Actions
        โ†“
Start Docker Services
        โ†“
Execute UI Tests
        โ†“
Execute API Tests
        โ†“
Execute Database Tests
        โ†“
Execute Performance Tests
        โ†“
Execute Security Tests
        โ†“
Generate Allure Report
        โ†“
Publish Artifacts

CI/CD Features

Automated Infrastructure

  • OWASP Juice Shop Container
  • InfluxDB Container

Automated Testing

  • UI Validation
  • API Validation
  • Database Validation
  • Performance Testing
  • Security Testing

Automated Reporting

  • Allure Results Generation
  • Allure Report Publishing
  • Artifact Storage

Benefits

  • Faster Feedback
  • Consistent Execution Environment
  • Automated Quality Gates
  • Repeatable Test Runs

๐Ÿ“‚ Project Structure

robot-framework-e2e-test-suite
โ”‚
โ”œโ”€โ”€ tests/
โ”‚   โ”œโ”€โ”€ 01_ui/
โ”‚   โ”œโ”€โ”€ 02_api/
โ”‚   โ”œโ”€โ”€ 03_database/
โ”‚   โ”œโ”€โ”€ 04_performance/
โ”‚   โ””โ”€โ”€ 05_security/
โ”‚
โ”œโ”€โ”€ resources/
โ”œโ”€โ”€ core/
โ”œโ”€โ”€ figures/
โ”œโ”€โ”€ juice-shop-db/
โ”œโ”€โ”€ allure-results/
โ”œโ”€โ”€ allure-report/
โ”œโ”€โ”€ .github/
โ”‚   โ””โ”€โ”€ workflows/
โ”‚
โ””โ”€โ”€ README.md

๐ŸŽฏ Current Status

Component Status
UI Testing โœ… Complete
API Testing โœ… Complete
Database Testing โœ… Complete
Performance Testing โœ… Complete
Security Testing โœ… Complete
Allure Reporting โœ… Complete
GitHub CI/CD โœ… Complete

๐Ÿ”ฎ Future Improvements

  • Jenkins Integration
  • Docker Compose Environment
  • Parallel Test Execution
  • Kubernetes Test Environment
  • Historical Trend Analysis
  • Performance Regression Detection
  • Advanced Security Scanning

๐Ÿ‘จโ€๐Ÿ’ป Author

Mohamed Saad BAZOURHI

Junior QA Engineer | Test Automation Engineer | Cybersecurity Graduate

โญ If you found this project useful, consider giving it a star.

About

202 automated tests (167 passing) across UI, API, Database, Performance & Security testing using Robot Framework, Selenium, k6, OWASP ZAP, Allure, Docker & GitHub Actions CI/CD.

Topics

Resources

Stars

1 star

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors