{"id":4829,"date":"2018-05-22T16:19:10","date_gmt":"2018-05-22T20:19:10","guid":{"rendered":"https:\/\/www.redline13.com\/blog\/?p=4829"},"modified":"2018-05-22T16:19:10","modified_gmt":"2018-05-22T20:19:10","slug":"test-rest-apis-authentication-using-jmeter","status":"publish","type":"post","link":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/","title":{"rendered":"Test Rest APIs with Authentication Using JMeter"},"content":{"rendered":"

Rest APIs are increasingly popular these days.\u00a0 They are also frequently being used in Microservices. In this guide, we are going to test REST APIs with authentication using JMeter.\u00a0 We will see that HTTP Headers play a crucial role in access authentication.<\/p>\n

Introduction<\/strong><\/p>\n

Let’s imagine you want to measure your Rest API request with JMeter and configure the request using JSON format and click the run button.\u00a0 You will most likely receive an error from the server: \u201c401 Unauthorized<\/strong>\u201d because almost every REST API requires some authorization process.\u00a0 To perform this authentication, before sending the request, we have to send a prior login request with the right credentials. It will give us the token and we will pass it in the subsequent request.<\/p>\n

Adding an HTTP Request to the Thread Group<\/h2>\n

<\/p>\n

Before starting configuration, add the View Result Tree Listener.\u00a0 This will help to us with which token we should extract.<\/p>\n

<\/p>\n

Configure the HTTP Request Sampler to send a Rest API request.\u00a0 We enter our Rest API request with \u201cJSON\u201d format in the \u201cBody Data\u201d section.\u00a0 Our example is getting the active SIM number from the web service.<\/p>\n

<\/p>\n

Once we run the script, we see that the server rejects the request with a \u201c401 Unauthorized\u201d error.\u00a0 This is because our Rest API needs to be authorized.\u00a0 Most of the Rest API\u2019s require authorization because of security issues.<\/p>\n

<\/p>\n

Authorization Token<\/h2>\n

We understand from this error message that we have to successfully log in to the system first.\u00a0 The system will give the us authorization token that we need to extract and pass into the next request.\u00a0 So we add one more \u201cHTTP Request\u201d Sampler and configure with \u201cJSON\u201d type credential info.<\/p>\n

<\/p>\n

We will then pass our token via HTTP Header Manager. And we will add to this sampler to the Thread Group.<\/p>\n

<\/p>\n

Using the REST API, we will be posting data as a JSON object.\u00a0 So we need to set a Content-Type header.\u00a0 For this, right click Test Plan and add Config Element \u2192 Http Header Manager and add \u201cContent-Type\u201d\u00a0setting the value to \u201capplication\/json\u201d.<\/p>\n

<\/p>\n

If we run the script like this, you can see below that our required token is in the \u201cResponse Headers\u201d section.\u00a0 Let\u2019s see how we extract this variable.<\/p>\n

<\/p>\n

Add a Regular Expression Extractor to the Authenticate Request and configure it as below.\u00a0 The critical part is selecting the \u201cResponse Headers\u201d radio button on the Field to check section.\u00a0 We selected it because our required token resides in it as we saw above.<\/p>\n

<\/p>\n

After successfully extracting the token, the last step is to add this variable into the HTTP Header Manager.<\/p>\n

<\/p>\n

All of the configuration is done!\u00a0 Thanks to the HTTP Header Manager, we can deliver our authentication token with our request.\u00a0 We run our script and verify we get the \u201csuccess\u201d message.\u00a0 We’ve\u00a0tested REST APIs with authentication.<\/p>\n

<\/p>\n

Load Testing on the Cloud<\/h2>\n

After checking that your script worked well, you can run this script, as you would with any JMeter script, on AWS (Amazon Web Services) to perform load test.\u00a0 Apache JMeter is one of the most popular tools for load testing and scaling out your JMeter test plan on the cloud in RedLine13 is easy.\u00a0 This guide<\/a> and video walks you through running your first JMeter test.<\/p>\n

That\u2019s it.<\/p>\n","protected":false},"excerpt":{"rendered":"

Rest APIs are increasingly popular these days.\u00a0 They are also frequently being used in Microservices. In this guide, we are going to test REST APIs with authentication using JMeter.\u00a0 We will see that HTTP Headers play a crucial role in access authentication. Introduction Let’s imagine you want to measure your Rest API request with JMeter and configure the request using JSON format and click the run button.\u00a0 You will most likely receive an error from theRead More →<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,7,35,1],"tags":[],"class_list":{"0":"entry","1":"post","2":"publish","3":"author-user","4":"post-4829","6":"format-standard","7":"category-blog","8":"category-jmeter","9":"category-load-testing","10":"category-uncategorized"},"yoast_head":"\nTest Rest APIs with Authentication Using JMeter - RedLine13<\/title>\n<meta name=\"description\" content=\"This guide will show how to test REST APIs with authentication using JMeter.\u00a0We will see that HTTP Headers play a crucial role in access authentication.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Test Rest APIs with Authentication Using JMeter - RedLine13\" \/>\n<meta property=\"og:description\" content=\"This guide will show how to test REST APIs with authentication using JMeter.\u00a0We will see that HTTP Headers play a crucial role in access authentication.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/\" \/>\n<meta property=\"og:site_name\" content=\"RedLine13\" \/>\n<meta property=\"article:published_time\" content=\"2018-05-22T20:19:10+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/d1u7j79bg1ays7.cloudfront.net\/blog\/wp-content\/uploads\/2018\/05\/word-image-8.png\" \/>\n<meta name=\"author\" content=\"RedLine13\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"RedLine13\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/\"},\"author\":{\"name\":\"RedLine13\",\"@id\":\"https:\/\/www.redline13.com\/blog\/#\/schema\/person\/4acbcdcb8a9c72ec5a274e69c0ebea28\"},\"headline\":\"Test Rest APIs with Authentication Using JMeter\",\"datePublished\":\"2018-05-22T20:19:10+00:00\",\"dateModified\":\"2018-05-22T20:19:10+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/\"},\"wordCount\":553,\"publisher\":{\"@id\":\"https:\/\/www.redline13.com\/blog\/#organization\"},\"articleSection\":[\"Blog\",\"JMeter\",\"Load Testing\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/\",\"url\":\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/\",\"name\":\"Test Rest APIs with Authentication Using JMeter - RedLine13\",\"isPartOf\":{\"@id\":\"https:\/\/www.redline13.com\/blog\/#website\"},\"datePublished\":\"2018-05-22T20:19:10+00:00\",\"dateModified\":\"2018-05-22T20:19:10+00:00\",\"description\":\"This guide will show how to test REST APIs with authentication using JMeter.\u00a0We will see that HTTP Headers play a crucial role in access authentication.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.redline13.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Test Rest APIs with Authentication Using JMeter\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.redline13.com\/blog\/#website\",\"url\":\"https:\/\/www.redline13.com\/blog\/\",\"name\":\"RedLine13\",\"description\":\"(Almost) Free Load Testing in the Cloud\",\"publisher\":{\"@id\":\"https:\/\/www.redline13.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.redline13.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.redline13.com\/blog\/#organization\",\"name\":\"RedLine13\",\"url\":\"https:\/\/www.redline13.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.redline13.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.redline13.com\/blog\/wp-content\/uploads\/2013\/06\/cropped-rl13-header-logo.jpg\",\"contentUrl\":\"https:\/\/www.redline13.com\/blog\/wp-content\/uploads\/2013\/06\/cropped-rl13-header-logo.jpg\",\"width\":300,\"height\":68,\"caption\":\"RedLine13\"},\"image\":{\"@id\":\"https:\/\/www.redline13.com\/blog\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.redline13.com\/blog\/#\/schema\/person\/4acbcdcb8a9c72ec5a274e69c0ebea28\",\"name\":\"RedLine13\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.redline13.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b4c9a289323b21a01c3e940f150eb9b8c542587f1abfd8f0e1cc1ffc5e475514?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b4c9a289323b21a01c3e940f150eb9b8c542587f1abfd8f0e1cc1ffc5e475514?s=96&d=mm&r=g\",\"caption\":\"RedLine13\"},\"sameAs\":[\"http:\/\/127.0.0.1\"],\"url\":\"https:\/\/www.redline13.com\/blog\/author\/user\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Test Rest APIs with Authentication Using JMeter - RedLine13","description":"This guide will show how to test REST APIs with authentication using JMeter.\u00a0We will see that HTTP Headers play a crucial role in access authentication.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/","og_locale":"en_US","og_type":"article","og_title":"Test Rest APIs with Authentication Using JMeter - RedLine13","og_description":"This guide will show how to test REST APIs with authentication using JMeter.\u00a0We will see that HTTP Headers play a crucial role in access authentication.","og_url":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/","og_site_name":"RedLine13","article_published_time":"2018-05-22T20:19:10+00:00","og_image":[{"url":"https:\/\/d1u7j79bg1ays7.cloudfront.net\/blog\/wp-content\/uploads\/2018\/05\/word-image-8.png"}],"author":"RedLine13","twitter_card":"summary_large_image","twitter_misc":{"Written by":"RedLine13","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/#article","isPartOf":{"@id":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/"},"author":{"name":"RedLine13","@id":"https:\/\/www.redline13.com\/blog\/#\/schema\/person\/4acbcdcb8a9c72ec5a274e69c0ebea28"},"headline":"Test Rest APIs with Authentication Using JMeter","datePublished":"2018-05-22T20:19:10+00:00","dateModified":"2018-05-22T20:19:10+00:00","mainEntityOfPage":{"@id":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/"},"wordCount":553,"publisher":{"@id":"https:\/\/www.redline13.com\/blog\/#organization"},"articleSection":["Blog","JMeter","Load Testing"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/","url":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/","name":"Test Rest APIs with Authentication Using JMeter - RedLine13","isPartOf":{"@id":"https:\/\/www.redline13.com\/blog\/#website"},"datePublished":"2018-05-22T20:19:10+00:00","dateModified":"2018-05-22T20:19:10+00:00","description":"This guide will show how to test REST APIs with authentication using JMeter.\u00a0We will see that HTTP Headers play a crucial role in access authentication.","breadcrumb":{"@id":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.redline13.com\/blog\/2018\/05\/test-rest-apis-authentication-using-jmeter\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.redline13.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Test Rest APIs with Authentication Using JMeter"}]},{"@type":"WebSite","@id":"https:\/\/www.redline13.com\/blog\/#website","url":"https:\/\/www.redline13.com\/blog\/","name":"RedLine13","description":"(Almost) Free Load Testing in the Cloud","publisher":{"@id":"https:\/\/www.redline13.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.redline13.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.redline13.com\/blog\/#organization","name":"RedLine13","url":"https:\/\/www.redline13.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.redline13.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.redline13.com\/blog\/wp-content\/uploads\/2013\/06\/cropped-rl13-header-logo.jpg","contentUrl":"https:\/\/www.redline13.com\/blog\/wp-content\/uploads\/2013\/06\/cropped-rl13-header-logo.jpg","width":300,"height":68,"caption":"RedLine13"},"image":{"@id":"https:\/\/www.redline13.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.redline13.com\/blog\/#\/schema\/person\/4acbcdcb8a9c72ec5a274e69c0ebea28","name":"RedLine13","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.redline13.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b4c9a289323b21a01c3e940f150eb9b8c542587f1abfd8f0e1cc1ffc5e475514?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b4c9a289323b21a01c3e940f150eb9b8c542587f1abfd8f0e1cc1ffc5e475514?s=96&d=mm&r=g","caption":"RedLine13"},"sameAs":["http:\/\/127.0.0.1"],"url":"https:\/\/www.redline13.com\/blog\/author\/user\/"}]}},"_links":{"self":[{"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/posts\/4829","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/comments?post=4829"}],"version-history":[{"count":0,"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/posts\/4829\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/media?parent=4829"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/categories?post=4829"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.redline13.com\/blog\/wp-json\/wp\/v2\/tags?post=4829"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}