Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Load testing logged in routes in phoenix

Tags:

elixir

phoenix-framework

load-testing

I'm trying to do load testing for routes that require logging in.

I was previously using https://artillery.io/docs/index.html for logged out routes which worked fine. For logged in routes, I tried calling beforeRequest with a function to set the request headers & body.

config: target: "https://www.mywebsite.com/" phases: - duration: 60 arrivalRate: 50 processor: "test.js" scenarios: - flow: - post: url: "/login" beforeRequest: "setReqBody"

and my beforeRequest looked like this:

function setReqBody(requestParams, context, ee, next) { requestParams.body = {'email': '[email protected]', 'password': 'password', '_csrf_token': window.csrfToken} return next(); }

I am getting an error that window is undefined.

I had a look around to see if there was anything else I could use for load testing phoenix, but didn't have much luck. Is there any other way I can log in & test those routes? Or other dependencies/libraries I can use in order to do this?

like image 530
Katherine Avatar asked Jun 08 '17 14:06

Katherine

2 Answers

The issue is that window is not defined in the context that the beforeRequest function runs in (as the code is not running in a browser).

If the CSRF token is included somewhere in the DOM/HTML of the login page, you can grab it first and then include it in the POST request. For example, if the login form had a hidden input containing the CSRF token with name attribute =csrfToken:

scenarios:
  - flow:

    # Get the login page and grab the CSRF token
    - get:
        url: "/login"
        capture:
          selector: "input[name='csrf_token']"
          attr: "value"
          as: "csrfToken"

    # Useful for debugging: check that we used the right selector:
    - log: "Extracted CSRF token: {{ csrfToken }}"

    # Now send a login request:
    - post:
        url: "/login"
        form:
          email: "[email protected]"
          password: "password123"
          _csrf_token: "{{ csrfToken }}"

    # The session cookie will be remembered and reused automatically by
    # Artillery from this point onwards.
like image 169
Hassy Veldstra Avatar answered Sep 16 '22 16:09

Hassy Veldstra

Consider using Apache JMeter, it has:

  • HTTP Request sampler to mimic HTTP Requests
  • HTTP Header Manager to set required HTTP Request headers, i.e. Content-Type
  • a number of Post Processors for extracting "interesting" fields from response message, code, data, headers, etc.
  • HTML Reporting Dashboard to visualize load test results

See REST API Testing - How to Do it Right for details.

like image 35
Dmitri T Avatar answered Sep 17 '22 16:09

Dmitri T
Sign in to Comment

Related questions

Is it possible to stub(mock?) Ecto.UUID.generate in an ExUnit test?
When to use compile-only dependencies in Elixir
Ecto creating unique index failed for Mysql/Mariadb
What is syntax for byte_size in pattern matching?
Postgres health check in Elixir
Elixir reduce order of elements
Is there a way to explicitly write a elixir function to be tail call optimised?
Fragments reuse
Unix Domain Sockets in Elixir
In a Phoenix Framework form, how can I set a belongs_to relation back to null using a changeset?
elixir - phoenix:undefined function Hex.SCM.managers
Phoenix framework & passing conn
Errors like "Phoenix.HTML.Engine.init/1 is undefined or private" and "Plug.Conn.__struct__/1 is undefined" after upgrading Elixir
Mix.env/0 equivalent in production env?
How to selectively disable CSRF check in Phoenix framework

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!