Expermental collection to test/validate several concepts at once.
This collection loads all pre-request and test scripts as well as application configuration data at runtime from an SCM (GitHub in this case). This provides several benefits for script editors and testers:
- Maintain all script code in a single location
- Implement Git-flow SDLC backed by the SCM.
- Use your favorite code editor to edit scripts.
- Update scripts for an entire collection by simply pushing to GitHub.
Configuration data for this application are maintained in single collection/environment variables as JSON objects containing multiple properties. This vastly simplifies the management of more complex applications in a couple of important ways:
- Reducing the number of variables to manage in the Postman UX.
- Allow ingestion of complete configuration data with a single
pm.collectionVariable.get()call. - Managed/edit configuration files in your favorite code editor, push to SCM and the your app configuration is automatically updated.
- Leverage configuration data in any number of locations.
The application being used to test these concepts validates request and response body information against an API schema stored in Postman.
- Clone the repo
- Import the
PaymentInitiationcollection from/resources/postman/collections/Payment Initiation - DEV.postman_collection.json - Import the
PaymentInitiationenvironment fromresources/postman/environments/Payment Initiation - DEV.postman_collection.json - Update the Environment with your API Keys and tokens. NOTE: Only set current values to prevent token/key leakage.
GitHub_PAT: Your GitHub Personal Access Token scoped to this repoPostmanAPIKey: Your Postman API key
- Run any of the requests in the collection, test results should be displayed:
The intention is to provide a way to pre-load Pre-Request and Test scripts, as well as any other source code like third party libraries from a GitHub repo into Collection variables at run time. Each request in the collection then need only eval the contents of those variables in order to execute the pre-request and test scripts. The Collection has a single-line pre-request script that evaluates code stored in the code_getGitHubArtifact environment variable. This script is the only code that must be maintained as a variable in the collection, the rest is loaded at runtime from GitHub using this script. The code_getGitHubArtifact connects to GitHub using the configuration variables defined in the [gh_config] collection variable:
{
"slug": "bidnessforb/bian-validation",
"ref": "simplify-variables",
"files": [
{
"path": "src/config/ct_config.json", //The application configuration, see below
"target": "ct_config"
},
{
"path": "src/scripts/request/pre-request.js",
"target": "CodeLibrary_preRequestScript"
},
{
"path": "src/scripts/request/test.js",
"target": "CodeLibrary_testScript"
},
{
"path": "src/CodeLib/Postman/js_yaml.js",
"target": "CodeLibrary_js_yaml"
}
]
}
| Property | Description | Type |
|---|---|---|
slug |
The GitHub repo slug, eg owner/repo |
String |
ref |
The Git REF, generally the branch, from which to retrieve the file. Set to null to default to the default branch |
String or null |
files |
An array of one or more files to retrieve from GitHub | String array |
files.path |
The path to the target file from the root of the repo | String |
target |
The target collection variable to populate with the file retrieved from GitHub. This variable will be updated if it exists or created if it does not | String |
An example gh_config is stored in the repo here
- Clone the repo, if you have not done so already
- Create a branch, e.g.,
update-scripts - Edit your scripts
- Update the value of the
refproperty of thegh_configcollection variable - Commit to Git and push to GitHub
- Run your request, the scripts are updated every time a Request is executed.
This example is validating requests against the Payment Initiation API maintained by BIAN. This API was previously loaded into Postman in the Open Technologies team BIAN Workspace.
The ct_config collection variable contains the various configuration switches consumed by the app.
| Property | Description | Type |
|---|---|---|
api |
Properties necessary to retrieve the subject API from Postman | Object |
api.id |
The Postman UID for the subject API | String |
api.versionID |
The Postman API Version UID for the subject API | String |
api.schemaID |
The Postman API Schema UID for the subject API | String |
mockResponseCode |
Value to use in a dynamically created x-mock-response-code header to prompt the Postman mock server to return a specific response body keyed to that HTTP status |
String |
useMockResponse |
Flag to enable/disable the mock response feature | boolean |
forceValidationConflict |
Whether to simulate a failed validation | boolean |
setAllPropertiesRequired |
Whether to edit the schema on the fly, creating a required element with all listed properties. Helpful when validating against some industry API standards with no required elements against which nearly anything will validate, including an empty body. |
Because the original BIAN API did not have any required properties in its Request and Response body definitions, everything would validate against it, including an empty request. As an interim fix the requireAll function was added to the test script to dynamically update the schema at runtime, making all properties required.
To enable the requirAll feature, set the setAllPropertiesRequired property of the ct_config collection variable to true:
By default the existing Postman Mock Server will return a 200 status code for the requests as currently configured. However, you can specify another HTTP response code to be used via a dynamically set x-mock-response-code header. To use a mock response code:
- Update the
ct_configenvironment variable, setting:mockResponseCodeto the status code you wish to simulate, e.g., 401useMockResponsetotrue
The x-mock-response-code header is created and set dynamically, it doesn't have to already exist on the request, nor will it be persisted with the request after the call.
If desired for demo purposes, you can "fool" the scripts into believing that the response body is invalid. This is done by explicitly setting the expected HTTP status code back to 200, rather than whatever is set in the x-mock-response-header. Thus, if the x-mock-response-header contains a 401, the 401 error body will not validate against the (incorrectly) expected 200 body schema.
To force a conflict:
- Configure a mock response code other than 200.
- Set the
forceValidationConflictproperty of thect_configcollection variable totrue
| Element | Path | Description |
|---|---|---|
| PaymentInitiation Collection | ./resources/postman/collectionsPayment Initiation - DEV.postman_collection.json | The example collection |
| PaymentInitiation Environment | ./resources/postman/collectionsPayment Initiation - DEV.postman_collection.json | The Example environment |
| Test Script | src/scripts/request/test.js | The test script loaded from GitHub and executed for every request in the collection |
| Pre Request Script | src/scripts/request/pre-request.js | The pre-request script loaded from GitHub and executed for every request in the collection |
| code_getGitHubArtifact.js | src/CodeLib/GitHub/code_getGitHubArtifact.js | A reference copy of the code which retrieves aftifacts from GitHub. This file must be maintained in the code_getGitHubArtifact environment variable if any changes are made. |
| js_yaml.js | src/CodeLib/GitHub/js_yaml.js | Source code for the js-yaml YAML -> JSON conversion utility |
|