Is a software testing type that analyze Application Programming Interfaces (APIs) security in functions and behavior.
The use of API to perform interactions between clients and servers is a model used by tho most of the companies in the world, because allows a system to makes requests, query data, import data, formats, etc.
An API can include several functions/subroutines that the software in the sever can perform to answer the queries from the client.
The purpose of API Testing is to check the reliability, functionality, stability, performance, and security of the programming interfaces.
This test uses software to send calls to the API, validate the authentication, get output, and evaluate the system’s response.
API tests are very different from GUI Tests, and are oriented to validate the security in the business logic layer of the software architecture.
Our API Testing methodology is represented in the next graph: