Cookie Testing is defined as a Software Testing type that checks Cookie created in your web browser. A cookie is a small piece of information that is stored in a text file on user’s (client) hard drive by the web server. This piece of information is then sent back to the server each time the browser requests a page from the server. Usually, cookie contains personalized user data or information that is used to communicate between different web pages. The screen-shot below shows cookies for different websites.
In other words, cookies are nothing but a user’s identity and used to track where the user navigated throughout the pages of the website. The purpose of a cookie is to make rapid interaction between users and websites. Applications, where cookies can be used, is to implement a shopping cart, personalized web experience, user tracking, marketing, user sessions etc.
What is the Content of Cookie?
The cookie consists of mainly three things:
- The name of the server the cookie was sent from
- Cookies Lifetime
- A value. This is usually a randomly generated unique number
Types of Cookies
Usually, there are two types of cookies written on user machines:
- Session Cookies: These cookies are active till the browser that triggers the cookie is open. When we close the browser this session cookie gets deleted
- Persistent Cookies: These cookies are written permanently on the user machine and it lasts for months or years
Where Cookies are stored?
When any web page application writes a cookie, it is stored in a text file on user hard disk drive. The path where the cookies are saved depends on the browser. Different browsers store cookie in different paths.
For example, in Mozilla Firefox browser you can see the cookies in browser options. To view this click on Tools -> Options -> Privacy and then click on “Remove Individual Cookies”.
How to Test Cookies in Website
Following is an important checklist and steps on How to test Cookies in website:
Step 1) Disabling cookies
Disable all cookies and attempt to use the site’s major functions
Step 2) Corrupting cookies
Manually edit the cookie in notepad and change the parameters with some random values
Step 3) Cookies encryption
Sensitive information like passwords and usernames should be encrypted before it is sent to our computer
Step 4) Cookie testing with multiple browsers
Check your website page is writing the cookies properly on a different browser as expected
Step 5) Checking the deletion from your web application page
Check whether the cookies are deleted from your web application or not
Step 6) Selectively rejecting cookies
Delete all the cookies for the websites and see how the website reacts to it
Step 7) Access to cookies
Cookies written by one website should not be accessible by others
Step 8) No overuse of cookies
If the application under test is a public website, there should not be overuse of cookies
Step 9) Testing with the different setting
Testing should be done properly to check that website is working well with different cookie setting
Step 10) Categorize cookies separately
Cookies should not be kept in the same category of the viruses, spam or spyware