Skip to content

Unit test examples #17

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Unit test examples #17

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
982a2c0
Add code example
mbareta Jan 30, 2025
fd9934f
Remove app.js
mbareta Jan 30, 2025
1935a7a
Add more examples
mbareta Jan 30, 2025
d5d055d
Remove unneeded file
mbareta Jan 30, 2025
e234e2b
Refactor tests and add sandboxed code playground
mbareta Jan 31, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
127 changes: 127 additions & 0 deletions examples/unit-testing-examples.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,127 @@
# Unit Testing Examples

## Code we will be testing

In this example, we will set up an API endpoint which checks if the password is
valid according to business logic rules. The rules are that password needs to be
between 5 and 255 characters with at least one uppercase letter, at least one
lowercase letter, at least 2 numbers and at least 2 special characters.

[Sandbox Code Examples 🔗](https://stackblitz.com/edit/node-jwphcjdk?file=unit-tests.js)

```javascript
// password-validator.js

import PasswordValidator from 'password-validator';

const MIN_LENGTH = 10;
const MAX_LENGTH = 255;

export function validatePassword(password) {
const passwordValidator = new PasswordValidator()
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There is no benefit to instantiating this schema each time the method is called, it can just be done once above the function

.is().min(MIN_LENGTH)
.is().max(MAX_LENGTH)
.has().uppercase()
.has().lowercase()
.has().digits(2)
.has().symbols(2);
const result = passwordValidator.validate(password, { details: true });
return { isValid: result.length === 0, details: result };
}
```

```javascript
// app.js

import http from 'http';

const PORT = 8000;

async function handleRequest(req, res) {
try {
const { isValid, details } = validatePassword(req.body?.password);
const statusCode = isValid ? 200 : 400;
res.writeHead(statusCode, { 'Content-Type': 'application/json' });
if (statusCode === 400) res.write(JSON.stringify(details));
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

if (!isValid) seems more natural here - it is functionally the same, but more correctly matches the reasoning, since statusCode === 400 is just a consequence of the result being invalid

} catch {
res.writeHead(500);
}
res.end();
}

http
.createServer(handleRequest)
.listen(PORT, () => console.log('App running on port', PORT));
```

## Writing tests

Let's write some tests for the `validatePassword` function to make sure it works
as described.

```javascript
import { describe, mock, it } from 'node:test';
import assert from 'node:assert/strict';
import { validatePassword } from './password-validator.js';

describe('validatePassword', function() {
describe('successfully validates password when it', function() {
it('is "Testing12!?"', function() {
const { isValid } = validatePassword('Testing12!?');
assert.equal(isValid, true);
});
});

describe('fails to validate password when it', function() {
it('is not the correct length', function() {
const { isValid } = validatePassword('Test12!?');
assert.equal(isValid, false);
});

it('does not contain uppercase letter', function() {
const { isValid } = validatePassword('test12!?');
assert.equal(isValid, false);
});
});
});
Comment on lines +67 to +86
Copy link
Collaborator

@dbettini dbettini Apr 14, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

While running the tests, this would look like:

successfully validates password when it
  is "Testing12!?"
fails to validate password when it
  is not the correct length
  does not contain uppercase letter

When writing tests, it's often not as good to DRY the code as it is with source code. The worst perpetrator usually are the generic setup functions that are extracted just because a few lines are often used together, but it also applies in the general separation of test cases (drying with describe). The reason for that is the importance of test case readability in human language. That's why some frameworks like ava.js completely eliminate describe - and while I don't agree with the full elimination, I do think it should be used sparingly. E.g.

should return true when password valid
should return false when password length is incorrect
should return false when password is missing an uppercase letter

Here, every test stands as a single readable test, without having to remember the describe context. It isn't a problem here, but with more tests that becomes a bigger issue.

Another reason to not use this is that describe is often very useful for writing conditional subcases of the main case. This is usually a more adaptable approach, compared to "success vs. fail" which always just splits into two. And using those within every conditional subcase ends up with a pyramid of doom very fast. E.g. imagine introducing the success and fail within all of the following:

when using a preview session
  should not store the data
  should return the new entity
  should throw when data invalid
when using a learner session
  should store the data
  should return the new entity
  should throw when data invalid

The above is an example of integration tests, and using describe.each would help there, but the point about success and fail cases as additional describes still stands.

Another change I did was the removal of explicit usage of test data within the test name - it isn't important for the reader to know the exact string tested, what's important is knowing that the password is valid. The rules for password being valid are many, so even putting a specific string doesn't give much info and might be misleading since it could be considered a special case.

I've also reworded successfully validates to return true/false since 1. password is validated successfully in both cases, it's just that the result of that validation is different 2. returning a boolean is actually what we expect in this case, so it is correct to state that - it gives us useful info, since another possible implementation of this function would've been to throw an error if the password is invalid.

Lastly, I've started every test with should - this is not a rule and there are probably differing opinions about this, but using a word like that does help to point people in a consistent direction for the wording of each test.

Not sure if what I wrote here is also something to mention in the antipattern section, since the code does not seem wrong per se, it just seems like it can provide more information if structured differently, at least based on my experience.

@bubafinder I know you already approved, but would like to hear your opinion as well.

```

## Antipatterns

### Antipattern 1

Unit testing handle request function. We don't want to unit test the `handleRequest`
function which handles routing and HTTP request/response. We can test that with API
and/or integration tests.

### Antipattern 2

We write single unit test for each scenario. While this example is overly simple
and maybe we don't need 20 unit tests to cover this function, it is a good idea
to split testing for each criteria. For example, one test to cover password min
length, one to cover uppercase letter, one to cover min number of required digits
etc. When tests are written like this, it is easier to pinpoint which criteria
caused the code to fail and how to fix it.

```javascript
// WARNING: this is an example of an antipattern, do not write tests like this

describe('validatePassword', function() {
describe('successfully validates password when it', function() {
it('is valid', function() {
const { isValid } = validatePassword('Testing12!?');
assert.equal(isValid, true);
});
});

describe('fails to validate password when it', function() {
it('is invalid', function() {
const { isValid } = validatePassword(' ');
assert.equal(isValid, false);
});
});
});
```



4 changes: 3 additions & 1 deletion recipes/automated-testing.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -88,6 +88,8 @@ changes, we can make minimal changes to the test suite and/or mocked data.
- Mocking infrastructure parts such as database I/O - instead, revert the control by using the `AppService`, `Command` or `Query` to integrate unit implementing business logic with the infrastructure layer of the application
- Monkey-patching dependencies used by the unit - instead, pass the dependencies through the constructor or method, so that you can pass the mocks or stubs in the test

[Test Examples](../examples/unit-testing-examples.md)


### Integration Tests

Expand Down Expand Up @@ -306,4 +308,4 @@ behavior. These are better suited for E2E testing.
- Visual tests should complement, not replace other types of tests like E2E
tests. Over-relying on them can leave functional gaps in coverage.
- Blindly updating snapshots without investigating failures undermines the
purpose of visual testing and risks missing real issues.
purpose of visual testing and risks missing real issues.