You are on page 1of 22

ABDUL

TC_1: Login [RPI_user] Preconditions: Homepage Sequence of Actions: Select “login”. Enter a correct RPI username and password of a generic user. Select “login”. Available “home”, “logout”, “upload”, “projects”, “search”, “settings”, and “about”. Not Available “Moderate”.

TC_2: Login [Moderator] Preconditions: Homepage Sequence of Actions: Select “login”. Enter a correct RPI username and password of a moderator. Select “login”. Available “home”, “logout”, “upload”, “projects”, “search”, “settings”, “about”, and “moderate”.

TC_3: Login [Admin] Preconditions: Homepage
TC 1

ABDUL

Sequence of Actions: Select “login”. Enter a correct RPI username and password of an admin. Select “login”. Available “home”, “logout”, “upload”, “projects”, “search”, “settings”, “about”, and “moderate”

TC_4: Login [wrong username/password] Preconditions: Homepage Sequence of Actions: Select “login”. Enter an incorrect username and password. Select “login”. Display try login again

TC_5: Logout [all] Preconditions: logged into any page Sequence of Actions: Select “logout”. Display CAS logged out successfully page.

TC

2

'CS2 HW1-9'. TC_7: Search [Title/Title Ascending] Preconditions: Search page Sequence of Actions: Enter “Turkeys”. TC 3 .ABDUL TC_6: Search [School/Downloads Descending] Preconditions: Search page Sequence of Actions: Enter “Science”. 'influenza Virus Ecology'. List 'SDD Exam'. Select “School”. 'MIPS diagrams'. Select “Title”. 'PISA project'. List 'Turkeys'. Select “Download Descending”. TC_8: Search [Date/Title Descending] Preconditions: Search page Sequence of Actions: Enter “2009”. Select “Download Descending”.

Select “Class”. Select “Major”. Select “Date Ascending”. 'Water as a natural resource'. Select “Date Descending”. 'CS2 HW1-9'.ABDUL Select “Title”. 'Influenza Virus Ecology'. 'Statue of Liberty'. 'PISA project'. TC_10: Search [Major/Date Descending] Preconditions: Search page Sequence of Actions: Enter “”. Select “Title Descending”. 'SDD Exam'. 'Barcelona Church'. 'MIPS diagrams'. TC 4 . 'Brick Break'. 'Mushroom Penis'. List 'Wooden boats'. 'Alternative Energy paper'. TC_9: Search [Class/Date Ascending] Preconditions: Search page Sequence of Actions: Enter “Computer Science 2”. List 'CS2 HW1-9'. 'Turkeys'.

'Turkeys'. and 'Brick Break'.ABDUL List 'Turkeys'. 'Turkeys'. 'Statue of Liberty'. If JavaScript is on: Click “Title”. 'Barcelona'. TC_11: Search [Description/Date Descending] Preconditions: Search page with JavaScript turned on Sequence of Actions: Enter “photo”. List 'Barcelona Church'. If JavaScript is off: “Title” is not a link and cannot be clicked. 'Mushroom'. 'Mushroom Penis'. TC_12: Upload [Forms Accuracy] Preconditions: Logged in as an RPI User or higher. and 'Wooden Boats'. List 'Mushroom Penis'. Sequence of Actions: Select “Upload” link. 'Wooden Boats'. Select “Date Descending”. and 'Barcelona Church'. TC 5 . 'Statue of Liberty'. 'Statue of Liberty'. 'Wooden Boats'. Select “Description”.

ABDUL Fill in all forms. Project is not in the list of user's projects. TC_13: Upload [Title Length] Preconditions: Logged in as an RPI User or higher. TC_14: Upload [Description Length] Preconditions: Logged in as an RPI User or higher. Sequence of Actions: Select “Upload” link. Click “home” link. Fill in “Title” form with more than 50 characters. Fill in other necessary forms. Sequence of Actions: TC 6 . Error message is displayed. Success message appears. Click “Upload” button. Click “Upload” button. Click “home” link. Project is in the list of user's projects and all information is the same as was entered in the form.

Click “Upload” button. Error message is displayed. Fill in other necessary forms. Choose a file to upload that is greater than 10MB. TC_15: Upload [Form Size] Preconditions: Logged in as an RPI User or higher.ABDUL Select “Upload” link. Click “home” link. Project is not in the list of user's projects. Click “Upload” button. Project is not in the list of user's projects. Click “home” link. Fill in other necessary forms. Fill in “Description” form with more than 500 characters. TC_16: Download [Download Successful] TC 7 . Sequence of Actions: Select “Upload” link. Error message is displayed.

Have a moderator delete the project. Error message is displayed.ABDUL Preconditions: Homepage Sequence of Actions: Click on a project's name. Copy the download. TC_17: Download [Project Not Found] Preconditions: Homepage Sequence of Actions: Hover over a project's “Download Link” link.php link of that project into the web browser. Select “Download Link” link.php link. Paste the download. TC 8 . TC_18: Moderate [Moderator Access] Preconditions: Logged in as a moderator. Sequence of Actions: Select “Moderate”. You are taken to the Moderate page and only the ban form is visible. Project is downloaded to local computer.

Display message confirming ban.ABDUL TC_19: Moderate [Admin Access] Preconditions: Logged in as an admin. Sequence of Actions: Select “Moderate”. TC_20: Moderate [Ban Successfully] Preconditions: Logged in as a moderator or an admin. TC_21: Moderate [Unban Successfully] Preconditions: Logged in as a moderator or an admin. Enter user name that exists and is not banned. User is taken to the Moderate page and the ban form and change privilege form is visible. Choose ban. A user exists that is banned. Sequence of Actions: Select “Moderate”. Sequence of Actions: TC 9 . A user exists that is not banned. Select “Update”.

Enter user name that does not exist. Sequence of Actions: Select “Moderate”. TC 10 . Sequence of Actions: Select “Moderate”. Select “Update”. Display message denying ban. Select “Update”.ABDUL Select “Moderate”. Enter user name that does not exist. TC_22: Moderate [Ban Unsuccessfully] Preconditions: Logged in as a moderator or an admin. TC_23: Moderate [Unban Unsuccessfully] Preconditions: Logged in as a moderator or an admin. Choose ban. Display message confirming unban. Choose unban. Enter user name that exists and is banned.

A user exists that is not banned. Display message denying unban. Sequence of Actions: Select “Moderate”. Select “Update”. Select “Update”. TC_24: Moderate [Unban Non-Banned User] Preconditions: Logged in as a moderator or an admin. Enter user name that exists and is not banned.ABDUL Choose unban. Choose unban. Enter user name that exists and is banned. TC_25: Moderate [Ban Banned User] Preconditions: Logged in as a moderator or an admin. Sequence of Actions: Select “Moderate”. Choose ban. TC 11 . Display message denying unban. A user exists that is banned.

Select “Update”. Display message denying ban. Sequence of Actions: Select “Moderate”. Choose unban. TC_27: Moderate [Ban Yourself] Preconditions: Logged in as a moderator or an admin. TC 12 . Select “Update”. Sequence of Actions: Select “Moderate”. Enter your user name. Display message denying ban. TC_26: Moderate [Unban Yourself] Preconditions: Logged in as a moderator or an admin. Display message denying unban.ABDUL Select “Update”. Choose ban. Enter your user name.

TC_30: Comment [Comment Project] TC 13 . Enter user name of an admin. TC_29: Moderate [Remove Flag] Preconditions: User logged in a moderator.ABDUL TC_28: Moderate [Ban User With A Higher Privilege] Preconditions: Logged in as a moderator. Sequence of Actions: Select “Moderate”. A comment has been flagged. Comment is no longer displayed on Moderate page. Click “Remove Flag” button. Choose ban. Comment is visible. Select “Update”. Go to that project's page. An admin exists that is not banned. Sequence of Actions: Select “Moderate”. Display message denying ban.

Sequence of Actions: Click on a project that you have not commented on. Comment is displayed on page. Error message is displayed on page. TC_31: Comment [Comment Project Again] Preconditions: User logged in as generic user. Show Project page appears with rate and comment option. Show Project page appears with rate and comment option. TC_32: Comment [Comment Size] Preconditions: User logged in as generic user. At homepage. Show Project page appears with rate and comment option. TC 14 . At homepage. Add a comment that is less than 500 characters. Sequence of Actions: Click on a project that you have not commented on. At homepage.ABDUL Preconditions: User logged in as generic user. Add a comment that is less than 500 characters. Sequence of Actions: Click on a project that you have commented on.

A comment has been flagged. Click “Remove Comment” button. Click “Flag Comment” button. TC 15 .ABDUL Add a comment that is more than 500 characters. Sequence of Actions: Click on a project that has been commented on. Comment is listed. Go to homepage. TC_33: Comment [Flag Comment] Preconditions: User logged in as generic user. Error message is displayed on page. Login as a moderator. Show Project page appears with a comment. Go to that project's page. Logout. TC_34: Comment [Remove Comment] Preconditions: User logged in a moderator. Select “Moderate”. Sequence of Actions: Select “Moderate”.

Go to that project's page. Click “Rate” button. TC_36: Rate [Rate Project Again] Preconditions: User logged in as generic user. At homepage. Rating is '4'. Click “Rate” button. Change the rate form to a 4. At homepage. TC_37: Change priviledge of a user that exists TC 16 . Sequence of Actions: Select a project that has a rating of 0. Sequence of Actions: Select a project that you have rated previously. Change the rate form to a 2. TC_35: Rate [Rate Project] Preconditions: User logged in as generic user. Error message is displayed.ABDUL Comment is no longer visible.

ABDUL Preconditions: Logged in as an admin Sequence of Actions: Enter in name of user into Username field Select Priviledge level Press "Update" Receive Message: "User '<username>' has had his privilege level changed from <original> to <new>" where <username> is the user's name.<original> is the original privilege level and <new> is the new privilege level. TC_38: Change your own privilege Preconditions: Logged in as an admin Sequence of Actions: Enter in your own username into the Username field Select Priviledge level Press "Update" Receive Message: "You can't change your own privilege" TC_39: Change privilege of username that does not exist in the database Preconditions: Logged in as an admin Sequence of Actions: Enter in name of user into Username field Select Priviledge level Press "Update" TC 17 .

html file into your web browser in a seperate window or tab type in "-1" (without the quotes) into the field press the submit button TC 18 .html: <html> <head><title>For Test Cases 14 and 15</title></head> <body> <form action="http://rph.org/rm_project.php.php" method="post"> Project id: <input type="text" name="project_id" /> <input type="submit" /> </body> </html> TC_41: Remove a project that has a negative project_od Preconditions: Logged in as a moderator or as an admin Sequence of Actions: load the tc14_15.ABDUL Receive Message: "User '<username>' does not exist" where <username> is a username that does not exist TC_40: You should see [Remove] button as moderator or admin Preconditions: Logged in as a moderator or as an admin Sequence of Actions: From index.myrpi. save as tc14_15. use the following code. click on any project's title Verify that there is a [Remove] button on the page For the next three test cases.

html file into your browser in a seperate window or tab you may decide to log in as a regular user at this point in the main rph page clock on a project's title from the index.php page copy the number after show_project_id= in the URL paste this number into the field in the tc14_15.php page TC 19 .html file into your browser in a seperate window or tab in the original webpage. copy the number after show_project_id= in the URL in the tc14_15. or not logged in Preconditions: not logged in or logged in as a regular user Sequence of Actions: load the tc14_15.html file. paste this number into the field press the submit button You Should receive the following message: "Could not remove project" TC_43: Remove project as a regular user. but before pressing the [Remove] button.ABDUL You should receive the following message: "No such project" TC_42: Remove a project that has a project_id that does not exist Preconditions: Logged in as a moderator or as an admin Sequence of Actions: load the tc14_15. remove a project using TC13.

use the following script: <script type="text/javascript">document.height).</script> TC_44: Upload XSS test Preconditions: must be logged in Sequence of Actions: Go to the upload page Enter in the above script into every field Go to Home Verify that every single entry in your top-most project field displays the code above in its entirety and that it does not say "oh noes. you been h4c|<3D!!1!! Your screen  resolution is " + screen.ABDUL press the submit button You should receive the following message: "Could not remove project" For the XSS tests.width + "x" + screen.write("oh noes. you been h4c| <3D!!1!! Your screen resolution is <screen_width>x<screen_hieght>" where <screen_width> is your screen's width and <screen_height> is your screen's height TC_45: Comment XSS test Preconditions: must be logged in Sequence of Actions: Go to the home page TC 20 .

ABDUL Click on any project's title enter in the above script into the comment section of the page press the submit button verify that you can the see code above in its entirety and that it does not say "oh noes. you been h4c|<3D!!1!! Your screen resolution is<screen_width>x<screen_hieght>" where <screen_width> is your screen's width and <screen_height> is your screen's height For the SQL Injection tests. use the following data: 'OR''=''.UPDATE users SET priviledge=0 WHERE rcsid='<username> TC_46: Upload SQL Injection test Preconditions: logged in as a normal user Sequence of Actions: Go to the upload page Enter in the above text into every field on the upload page press the submit button verify that there is no Moderate link in the menu TC_47: Comments SQL Injection test Preconditions: logged in as a normal user Sequence of Actions: TC 21 .

ABDUL Click on any project's title from index.php Enter in the above text into the comment area press the submit button verify that there is not Moderate link in the menu TC 22 .