I asked him to start from the beginning since I think his history and evolution will be very relevant and interesting to others trying to implement similar solutions:
- Testing Teammentor Web Services – 1 - Finding the WSDL and the need for automation
- Testing TeamMentor Web Services – 2 - Deciding on dev environment, Python + SUDS
- Testing TeamMentor Web Services – 3 - Defining the 'Authorisation Testing' strategy
- Testing TeamMentor Web Services – 4 - The need to use Unit Tests
What is very interesting about this series of posts (with many more to come) is that Arvind is really capturing the thinking (and evolution) that needs to happen when doing Authorisation Security testing on an application like TeamMentor.
I also really like the honesty of Arvind's voice and some of his funny comments :)
I hope you enjoy reading his journey