Tag: Web application

Relevance of Web security

November 21, 2018 in Web App Development

Sites are sadly inclined to security dangers. As are any systems to which web servers are associated. Putting aside hazards made by worker utilize or abuse of system assets, your web server and the website it has to present your most genuine wellsprings of security chance.

Web servers by configuration open a window between your system and the world. The consideration taken with server upkeep, web application refreshes, and your site coding will characterize the span of that window, restrain the sort of data that can go through it and therefore build up the level of web security you will have.

Why Web security

Sites and applications are progressively under assault, so compelling web application security must be the best need.

Prior to 2008, information breaks were to some degree uncommon, and most happened on account of human mistake, for example, the passing of a workstation, a USB drive, or some other media. Others were caused by phishing assaults that introduced malware, by insider dangers, or by associations utilizing feeble administrator certifications and poor encryption methods. A few associations that were ruptured never discovered the reason.

Quick forward 10 years and the quantity of information ruptures has developed past anybody’s desire. Information breaks are the essential reasons why governments are authorizing security and information insurance directions today. Web application security is vital on the grounds that assaults against web uncovered web applications are the best reason for information ruptures.

Since assailants are abusing web application security vulnerabilities to access private information, associations must go to significantly more noteworthy lengths to ensure sites and applications than they do to secure their PCs and other system associated gadgets.

As more associations move their sites and applications to the cloud, web application security will just get more urgent — and complex. Cloud-based security advances, for example, web application firewalls, can help ensure sites, applications, and the information put away behind them, paying little heed to where they’re facilitated.

Web security practices for business

Know Your Apps and Prioritize them: It’s very surprising that most associations are as yet insensible of the number of web applications they’ve or even where they live. Hacking web applications is less demanding than you might suspect. Along these lines, it’s basic to distinguish and organize your association’s applications as indicated by their importance and test them for vulnerabilities. Rishabh Software tests the created applications to check in the event that it fills in of course as indicated by the predefined targets. Our masters perform testing at all phases of the web application advancement cycle.

Find and Fix Vulnerabilities from the get-go: Being mindful of which vulnerabilities to center around is similarly as essential as thinking about the defenselessness in any case. The moment a web application is made accessible on the web; it turns into an object of a digital assault. Rishabh Software with its progressing support after the application is conveyed to a customer, assists with weakness evaluation and administrative arrangements that convey strong web application security enhancements dependent on testing precision, adaptability, and low upkeep.

Guarantee you have a Strong Application Security Program: Underrating the significance of web application security is just ticking a period bomb. Any web application helplessness can prompt an enormous information rupture which thus can shake any business perhaps causing robust budgetary misfortunes, negative attention, and loss of open trust. Putting resources into an advancement accomplice who pursues best practices for web application security and mitigates security dangers at whatever point they emerge is of prime significance. Rishabh Software keeps your web applications from application-layer dangers while giving continuous help and anchoring them.

Utilize Cookies Securely: Cookies are amazingly helpful for organizations and clients alike in light of the fact that they empower clients to recall the past destinations they visited with the goal that future visits are quicker. In any case, treats can likewise be taken care of by programmers to access secured zones. While you positively don’t need to quit utilizing treats, yet you should guarantee treats are not used to store profoundly touchy data. For example, passwords, as this makes it unimaginably simple for programmers to increase unapproved get to. Likewise be preservationist when setting termination dates for treats; this will stay legitimate for a client for a considerable length of time, yet actually, everyone exhibits a security chance. To counteract unapproved get to, consider encoding the data that is put away inside the treats that you utilize.

Your perfect guide to Web Architecture

November 9, 2018 in Web App Development

Web architecture determines how software logic is divided between a server and a client, as well as how these two components communicate with each other. Depending on the needs of your website or a web app, you choose the web architecture that would work best for it (you can turn to this article to learn more).

The ways web architecture types work are quite different and depend on a client model and requests a client sends/receives to/from a server. Still, the most popular architecture is SPA (single-page app), which work like this:

With web applications, you have the server versus the customer side. Basically, there are two projects running simultaneously:

  • The code which lives in the program and reacts to client input
  • The code which lives on the server and reacts to HTTP asks

Web Application Architecture Example

Picture by means of Wikipedia

When composing an application, it is up to the web designer to choose what the code on the server ought to do in connection to what the code on the program ought to do. With server-side code, dialects include:

  • Ruby on Rails
  • PHP
  • C#
  • Java
  • Python
  • Javascript

Actually, any code that can react to HTTP asks for has the capacity to keep running on a server. Here are a couple of different properties of server-side code:

Is never observed by the client (aside from inside an uncommon glitch)
Stores information, for example, client profiles, tweets, pages, and so forth…
Makes the page the client asked

With customer side code, dialects utilized include:

  • CSS
  • Javascript
  • HTML

These are then parsed by the client’s program. Besides, the customer side code can be seen and altered by the client. Also, it needs to impart just through HTTP asks for and can’t peruse records off of a server specifically. Moreover, it responds to client input.

Web Application Architecture is Important for Supporting Future Growth

The motivation behind why it is basic to have great web application architecture is on the grounds that it is the outline for supporting future development which may originate from expanded interest, future interoperability, and improved dependability prerequisites. Through question situated programming, the authoritative structure of web application architecture characterizes accurately how an application will work. A few highlights include:

Conveying industrious information through HTTP, which can be comprehended by customer side code and the other way around

Ensuring asks for containing substantial information
Offers confirmation for clients
Points of confinement what clients can see dependent on authorizations
Makes refreshes and erases records

Kinds of web application architecture

Despite the model, all web application segments dependably work all the while and make a vital web application. Contingent upon how the application rationale is circulated among the customer and server sides, there can be different kinds of web application architecture.

Inheritance HTML web application

As per the specific first and fundamental web application architecture, a server, comprising of web page development rationale and business rationale connects with a customer by conveying a total HTML page. To see a refresh, the client needs to completely reload the page or, as such, to have the customer send a demand for an HTML page to the server and load its whole code indeed.

Gadget web application

In this compose, the web page development rationale is supplanted by web administrations, and each page on the customer has separate elements called gadgets. By sending AJAX questions to web administrations, gadgets can get pieces of information in HTML or JSON and show them without reloading the whole page.

Single-page web application architecture

This is the most present-day web application architecture, where you download a solitary page just once. On the customer side, this page has a JavaScript layer that can openly speak with web benefits on the server and, utilizing the information from web administrations, make ongoing updates to itself.

End

Web application architecture composes and part models have been developing together with the web itself. While the inheritance structure and a fundamental segment show showed up in the seasons of Web 1.0, present-day web application architecture composes and adaptable segment models are more typical for Web 2.0 and 3.0 times.

The decision of a model and architecture can decide how responsive, powerful, secure and quick your web application will be. So before propelling the improvement venture, investigate your business needs and assess every single conceivable alternative.

 

Popup Handling in Selenium

September 10, 2018 in Software Testing

 

There are different types of popup and alerts in Web application some are javascript popups and some are HTML for handling them in selenium WebDriver there are diff ways.

What is an Alert?

Alert is a small message box which displays the on-screen notification to give the user some kind of information or ask for permission to perform certain kind of operation. It may be also used for warning purpose.

Different types of Alerts

Simple Alert
Simple alerts just have an OK button on them. They are mainly used to display some information to the user. The first alert on our test page is a simple alert. The following code will read the text from the Alert and then accept the alert. An important point to note is that we can switch from the main window to an alert using the driver.SwitchTo().Alert().

Prompt Alerts
In prompt alerts, you get an option to add text to the alert box. This is specifically used when some input is required from the user. We will use the SendKeys() method to type something in the Prompt alert box.

Confirmation Alert
This alert comes with an option to accept or dismiss the alert. To accept the alert you can use IAlert.Accept() and to dismiss you can use the IAlert.Dismiss().

JavaScript Popup: – we can’t inspect javascript popup because it is not written in HTML also we can’t move javascript popups. In order to handle that popup, there is an interface called Alert.

In order to handle javascript popup first, we have to switch the driver control to the Javascript popup.For switch the Control we have to use driver.switchTo().alert() .
Methods present in Alert interface
accept();
dismiss();
sendkeys();
getText();

 

 

File Uploading Popup: – For uploading file uploading popup we can use sendKeys(); or we can use window automation tools like AutoIt and Sikuli. Also, we can’t inspect and move these popups.

Using the sendKeys Method

 

Using Sikuli with selenium:- sikuli is an open source image recognition automation tool which is used to automate the desktop applications, web applications, and gaming applications. To use sikuli with selenium copy sikulixapi.jar and in the libraries.

 

Authentication Popup:- The title of this popup page is authentication required and this popup also contains 2 fields Username and Password.

 

File Download Popup Handel using AutoIt:- AutoIt is an open source window automation tool which uses a basic scripting language for writing that script we use “AutoIt Script Editor” and for inspecting the popup we use “AutoIt window info tool”.
1. First, we have to inspect the popup using “Finder Tool”.

2. Open SciTE Script and AutoIt code and save that AutoIt code with the extension of “.au3” then right click on that file and compile Script which will generate a “.exe” file.

 

Conclusion
In this tutorial, we tried to make you acquainted with the WebDriver’s Alert class that is used to handle web-based pop-ups. We discussed the different types of popup and alerts in a Web application. Some are javascript popups and some are HTML for handling them in selenium WebDriver there are diff ways.

Ways To Make Your Web Application More Accessible

August 24, 2018 in BusinessMobile App DevelopmentSoftware TestingUI/UX DesigningWeb App Development

Why should you care about accessibility?

Because…

Around 15% of the total populace lives with some type of disability, of whom 2– 4% encounter huge troubles in working. Everyone is now and again incidentally disabled — in a sense — whether you cut your finger or you attempt to peruse on your low complexity screen on a bright day.

By enhancing the openness of your website, you don’t just help individuals with the disability. You will basically make it more usable for everybody.

 

  1. Pick a  content management system that backs availability.

There are much content management systems accessible to enable you to fabricate your website. Basic cases incorporate Drupal and WordPress, yet there are numerous different alternatives accessible.

Once you’ve picked a  content management system that suits your requirements, make a point to pick a topic/layout that is open. Counsel the subject’s documentation for notes on openness and tips for making available substance and formats for that topic. Make certain to take after similar rules while choosing modules or gadgets.

For components like altering toolbars and video players, ensure that they bolster making the open substance. For instance, altering toolbars ought to incorporate choices for headings and open tables, and video players ought to incorporate shut inscribing. The content management system organization alternatives, (for example, making a blog entry or posting a remark) ought to be available too.

 

  1. Utilize headings accurately to sort out the structure of your substance.

Clients can utilize making a beeline to explore content. By utilizing headings (<h1>, <h2>, and so on.) accurately and deliberately, the substance of your website will be efficient and effortlessly translated by users.

Make sure to hold fast to the right request of headings, and separate introduction from the structure by utilizing CSS (Cascading Style Sheets). Try not to pick a header since it looks great outwardly (which can confound screen peruser clients); rather, make another CSS class to style your content.

 

  1. Incorporate appropriate alt text for pictures.

Alt content ought to be accommodated pictures, with the goal that clients can comprehend the message passed on by the utilization of pictures on the page. This is particularly critical for instructive pictures, (for example, infographics). While making the alt message, the content ought to contain the message you wish to pass on through that picture, and if the picture incorporates content, that content ought to likewise be incorporated into the alt.

The exemption to this lead is the point at which a picture is utilized only for design; for this situation, the alt content can be left vacant (connect is outside) with the goal that the screen peruser client isn’t occupied from the more vital substance on the page.

On the off chance that a picture is the main substance of a connection, the screen peruser will read the document name if alt content isn’t given. Continuously give alt content to pictures that are utilized as connections.

 

  1. Give your connections one of a kind and spellbinding names.

While incorporating links in your substance, utilize content that appropriately depicts where the connection will go. Utilizing “click here” isn’t viewed as elucidating, and is incapable for a user.  

Much the same as located clients check the page for connected content, outwardly hindered clients can utilize their screen per users to filter for joins. Subsequently, screen readers clients regularly don’t read the connection inside the setting of whatever remains of the page. Utilizing clear content appropriately clarifies the set of connections to the screen client.

The most one of a kind substance of the connection ought to be displayed first, as screen peruser clients will regularly explore the connections list via seeking through the principal letter.

For instance, in the event that you are guiding guests toward a page called “About Us”:

Do whatever it takes not to state: “Snap here to peruse about our organization.”

Rather, say: “To take in more about our organization, read About Us.”

 

  1. Utilize color with the mind.

The most widely recognized type of color black, red-green color inadequacy, influences around 8% of the populace. Utilizing ONLY colors, for example, these (particularly to demonstrate required fields in a shape) will keep these people from understanding your message.

Different gatherings of individuals with handicaps, especially clients with learning incapacities, advantage significantly from color when used to recognize and sort out your substance.

To fulfill the two gatherings, utilize color, yet in addition make certain to utilize other visual pointers, for example, a reference mark or question mark. Make sure to likewise recognize squares of substance from each other utilizing visual partition, (for example, whitespace or fringes).

There are a few instruments you can use to assess color differentiate, which will help you in making your page as outwardly usable as conceivable to people with low vision or fluctuating levels of color vision deficiency.