API Headless Authorization | Bondar Academy

Lesson Summary

In this lesson, we explore how to implement headless authorization using APIs to streamline the login process in our test application. Key Concepts Headless Authorization : Replaces repetitive username and password entry with a faster API call. JWT Token : The token used for authorization is stored in the browser's local storage. Steps to Implement Headless Authorization Run the existing tests to observe the time taken for login (approximately 8 seconds). Access the Networking tab in the browser to find the JWT token in local storage. Make an API call to retrieve the token and save it in local storage before running tests. Modify the commands.js file to replace the login operation with the API call. Use the onBeforeLoad event to set the JWT token in local storage. Test execution time is reduced to 5 seconds by bypassing manual login. Further Improvements Save the access token as an alias for reuse in API calls throughout the tests. Utilize cy.get to retrieve the token alias for authorization headers in subsequent requests. Conclusion This technique simplifies the authorization process, making it faster and more efficient. For more complex scenarios, refer to the Cypress documentation for examples of headless authorization with various identity management tools.