The main goal for this project is to enhance an existing prototype web application by improving its stability and reliability. This will be achieved through writing comprehensive unit tests and integration tests for both the frontend and backend of the application (both in Next.js!). The app is built using Next.js, MongoDB, and Firebase, and we are aiming to ensure the code is well-tested and the application is running smoothly before it’s deployed on Vercel.

What tasks will learners need to complete to achieve the project goal?

Your tasks will include:

Devise a testing strategy:: Collaborate with the team to create a test strategy by identifying high-priority and high-risk areas of the codebase that need thorough testing. Focus on key features, complex logic, and critical integrations, ensuring comprehensive test coverage through unit and integration tests for the most impactful parts of the application.

Testing Existing Code: Write and implement unit tests and integration tests for the existing frontend and backend codebase to ensure it meets the required functionality and quality standards.

CI/CD Pipelines: Assist in integrating the new tests in CI/CD pipelines to streamline the development and deployment workflow. This is a bonus skill we are looking for, but prior experience will be a big plus.

Collaboration and Documentation: Collaborate with the team to refine features and fix issues. Document your work and ensure that the tests are properly described for future developers.

Bonus tasks: 

Frontend Development with Next.js: Improve or extend the client-side application using Next.js, focusing on enhancing features and ensuring proper test coverage for components and pages.

Backend Development with Next.js API Routes: Utilize Next.js server-side features for creating API routes and backend logic. You'll need to ensure these routes are fully tested and work seamlessly with the frontend.

Required Skills:

Strong experience with Next.js (both frontend and backend/server-side features).

Practical experience with MongoDB for storing and retrieving data.

Solid understanding of Firebase Authentication for handling user authentication and management.

Familiarity with unit testing and integration testing practices.

Familiarity with Vercel for deployment is a bonus, but not required.

CI/CD pipeline experience is a bonus.

Before testing begins, students should present a testing plan to us. This should include tools they will use, techniques for exploration, what categorical vectors of attack will they go after, and any other information they feel like they need to present. This should be presented to us via a small slide deck or other means.

After testing is complete, the final deliverable should be a written report detailing how the test was conducted, what tests passed, what tests failed, recommendations for mitigation strategies, and any further notes from the testers. Other items to consider for a final report should be:

• An executive summary detailing overview, timeline, key findings
• Categorizing all findings into vulnerability levels such as critical, high, medium, low
• High detailed summaries of any findings
• Low detailed summaries of any tests conducted with no findings
• A recap of any tools used

Final Deliverables:

• A formal test strategy document outlining key testing priorities, objectives, and methodologies.
• Comprehensive test documentation, including clear instructions on running tests and interpreting results.
• Updated CI/CD pipeline configurations with integrated tests.

For students: To validate the completion of your work, please submit deliverables as uploaded files with a reflection note at the end of your project. These files can take various formats, including Word documents, PDFs, JPEG images, presentations, and more. We request tangible proof or an example showcasing your completed work. If the project involved an Non-Disclosure Agreement (NDA), please provide redacted deliverables or a sample of non-confidential work.