LoadFocus now provides easy testing for services that are using OAuth authorization (we support OAuth2.0 as OAuth1.0 was retired in 2012).
We support all the OAuth 2.0 grant types:
- Authorization Code
- Password Credentials
- Client Credentials
- Refresh Token
For testing a service that is behind a login (that has OAuth authorization) the only thing the user needs to do is:
- Go to Services -> Load Testing -> New Test
- On the “New Test” page select the “Authorization type” as OAuth 2.0 and the “Grant type” that is used for OAuth authorization as in the image below
- Once the “Grant type” has been selected you will need to populate the details for that specific grant type (the details can be found either by accessing the interface of the OAuth provider or from the team that is in charge of the OAuth provider integration)
- Once the details are entered the only thing left to do is to enter the APIs that are going to be tested
The call to the authorization server will be done only once before the performance testing of the API endpoints starts. A token will be retrieved from the authorization server and the token is going to be used to make the calls for testing the APIs in the created test configuration.
We are not going to make more than 1 call to the authorization server as that will more likely result in a “429 Too Many Requests” error.
Written by Chris R.
LoadFocus is a cloud testing platform, a load and stress testing tool which provides the infrastructure to run tests with thousands of concurrent users, from multiple cloud locations, in less than a few minutes, keep history of the results, compare different runs to inspect performance improvements or performance degradation. It also supports running JMeter load tests from the cloud and monitoring and audit web and mobile performance.