What is PHP code testing, and why should teams commit valuable development time to writing code and configuring testing tools?
For many, the answers to these questions are often learned through painful, drawn out experiences. It could be fixing broken code in production because of a regression. Or it could be watching your team burn up development time modifying legacy code. Or it could be testing and retesting functionality after a PHP migration. These situations can be stressful, time-consuming, and expensive – if you don’t have proper PHP test coverage.
In this blog, we look at the basics of PHP testing, why PHP testing is so important, and the various testing types (such as PHP unit testing) that combine for full test coverage in a PHP application.
What Is PHP Testing?
PHP testing is writing specific code and scenarios to run your own code in an automated, deterministic, and repeatable way.
There are numerous software and frameworks to avoid the hassle of testing boilerplate code, and many ways of completing PHP code testing, depending on the test's purpose:
- Unit testing - runs atomic parts of your code, checking that calls with known parameters lead to expected results.
- Integration testing - verifies that all the different components of the application work together as expected.
- Performance testing - aims to the limits of your application and infrastructure performances.
The more lines of your code are executed when running your unit tests, the more code coverage you achieve.
Back to topWhy PHP Testing is Important for Web Apps
Completing PHP testing, whatever the kind of test, is often neglected because producing new code seems more important than testing the one already existing.
But as your codebase grows bigger, PHP testing becomes not only more important, but also harder to implement. This can lead to a point where no one wants to work on the codebase beyond cosmetic changes.
Proper PHP testing coverage gives benefits beyond preventing this type of problem. PHP testing also ensures code quality, prevents regression, increases development agility, enhances application security, and makes it easier to pinpoint failure points within your application.
1. Quality of Code Enhancement
Since low quality code is extremely hard to unit test because of strong coupling, mixing of responsibilities, heavy usage of static expressions, etc., introducing unit testing in your project will help to enhance code quality. With time, you will even start to think about your PHP testing at the very moment you are writing your code, putting you on the path of test-driven development (TDD).
2. Code Regression Prevention
When you achieve a fair code coverage, introducing a breaking change in your code will break your unit tests thus alerting you and allowing you to fix the issue even before QA team discovers it.
3. Development Agility Increase
When PHP testing protocols have developers' backs, you no longer fear deep code evolution and large refactoring, even in the parts of the code you didn’t write yourself, you know that if you do something wrong, unit tests will fail thus pointing you right to the place where you have to fix your code.
4. Early Detection of Performance Issues
Load and stress testing will allow you to pinpoint and address your Single Point Of Failure (SPOF) long before an unusual audience catastrophically raises them to your knowledge.
5. Security Code Enhancement
Static analysis of your codebase can discover security issues before someone takes advantage of them.
Back to topThe Hidden Costs of PHP Upgrades
Test coverage is maybe the biggest factor in deciding on a PHP migration for enterprise-scale applications. This white paper looks at why that test coverage is important, and explores the hidden costs that can provided unexpected consequences during PHP development.
PHP Testing: Ensuring Full Coverage Without Becoming Redundant
Part of developing PHP unit tests is determining what should and shouldn’t be tested. Some parts of your code won’t need to be directly covered by tests, e.g., best abstract classes, private methods, and protected methods.
These abstract classes, private and protected methods should be extended and called by concrete classes and public methods. Testing these concrete classes and public methods thoroughly will give you a fair coverage. Either, you should not test filesystem (unless you are writing your own), external libraries, or database queries.In the case of filesystem (unless you are writing your own) external libraries, or database queries, you will likely use some specific PHP testing techniques often provided by testing frameworks.
Back to topPHP Testing Techniques
There are several ways of completing PHP testing of code. Depending on your project criticality, you will have to pick the ones which fit your situation. Once you picked which kind of PHP testing you need to perform, you will also have to decide how extensive your PHP testing need to be.
Knowing you can’t achieve a 100% PHP unit test coverage on your code doesn’t mean you must give up on unit testing. Pick the most critical parts of your application and start covering them step by step. Also, you could decide to enforce a 100% coverage on the new code to be written.
In the next sections, we’ll go over a few of the more popular PHP testing techniques and approaches, such as:
- PHP unit testing
- Integration testing
- Regression testing
- Performance testing
- Load testing
- Security testing
PHP Unit Testing
PHP unit testing is probably the most known and discussed automated code testing technique.
PHP unit testing consists of writing code which runs your code method by method and function by function (hence the name “unit” test). The goal of PHP unit testing is to see that code runs as intended and in a deterministic way (ie when run with same arguments, code produces the same result).
In PHP unit tests, code is run in isolation, then, you simulate (“mock”) database access, file system, HTTP Requests and external libraries since there is no point in testing code you didn’t write (you should check it has been tested by its developer though!). This also makes these tests very fast to run.
There are a large number of PHP unit testing frameworks that can help you to create unit tests, and to simulate, or mock, filesystems, databases, and etc.
PHP Integration Testing
PHP integration tests on the other hand, will be using database, filesystem and external libraries for real in order to check that your code “integrates” with them.
This PHP testing should be run on a specific environment similar to the production environment, or they could be run by hand. However, automated tests are far more efficient since they can be run on each code change to avoid regression.
PHP Regression Testing
A fair PHP unit test and integration code coverage will protect you from regression during code evolutions or refactoring.
For instance, should you add a dependency injected in the constructor of an object and forget to update the related Factory, if your factory is covered, the test will break, thus avoiding a regression.
Even with a decent coverage, you will most certainly encounter some regressions, when identified and corrected, you will enhance your tests and coverage in order to avoid a new regression during the next refactoring or code evolution.
PHP Performance Testing
Profiling your code will allow you to detect high processor and memory footprint, quickly pointing you at the most resource consuming parts of your code.
Performance testing will most of the time be run on a specific part of the code after a load test failed, pointing out a part of the application which performed badly.
PHP Load Testing
Load Testing is performed, most of the time against a staging environment, to assess the global performance of the infrastructure and application under heavy load and determine the maximum load it can handle.
In order to generate the conditions of this extreme load, you will use a software or a framework which will run pre-established scenario against your application.You will increase load (for instance: number of requests per second, number of concurrent users etc.) until one of the components of your application falls down.
Knowing this limit is very important to be able to forecast your capacity to handle peaks like a TV show or an influencer blog post introducing your application or service.
PHP Stress Testing
Once you reached the maximum load that your infrastructure and application are able to handle, increasing the load, even slightly, will no longer result in slowing its execution, but in a stress condition: some parts of your infrastructure or application will stop working, often, the first components to fail will be database and filesystem.
Extreme form of stress testing called “chaos monkey” consists in randomly shutting down parts of your infrastructure and application in order to study its overall resilience.
Performing stress tests will allow you to prioritize hardware, network and software enhancements necessary to achieve the next level of load.
PHP Security Testing
Static analysis and SAST tools will walk all the possible execution paths of your code, aiming for poor development practices and security holes then reporting them in a human readable format (replace human by developer...).
“Pen-tests” (penetration tests) is another way of testing your code’s security, you will allow a security company to simulate a cyberattack on your system in order to evaluate its security. You will decide how far the hackers are allowed to go to perform their attack.
Back to topOn-Demand Webinar: PHP Test Automation
Looking for additional information on PHP testing specifically? This webinar on PHP test automation walks through the general role of automated tests in CI/CD processes, best practices for adopting PHP unit testing, and how you can use fuzzing to improve automated unit tests.
PHP Testing Tools and Technologies
Without software and frameworks, performing specialized and complex PHP testing would be a hassle.
Luckily, generations of developers have developed technologies to help deal with this hassle. The biggest problem today is picking the PHP testing tool that best fits your purpose, skills, and resources. Don’t worry, though, some tools are “one-size-fits-all”.
PHP Testing Tools
- JMeter – Open source software from Apache used for load testing.
- Gatling – Open source, enterprise tool for load testing web applications.
- Zend Server Z-RAY – Real-time performance tuning and debugging tool bundled with Zend Server.
PHP Testing Frameworks
- PHPUnit – Open source PHP unit testing framework.
- BeHat – Open source Behavior-Driven Development framework for PHP.
- Pest– Open source PHP testing framework, works with PHP unit testing suites
Final Thoughts
Lack of good PHP testing practices causes problems. The first step in overcoming those problems is in understanding the impact of poor PHP testing coverage. Ongoing issues like poor performance, recurring bugs, and low development agility can be used as evidence of why proper test coverage is important. And understanding how these issues tie back to PHP testing coverage can help opposed parties to see the value in these proactive measures.
Zend Tackles Your Toughest PHP Challenges
Zend Admin as a Service delivers constant monitoring to identify issues before they become problems. Our PHP experts monitor your systems and handle your PHP application's administrative work, freeing your time to address higher-order concerns, such as PHP testing.
Additional Resources
- On-Demand Webinar - Unit Testing for Project Managers
- Service - Performance Auditing
- Blog - When to Rewrite vs. Refactor Your Web App
- Blog - Why Good PHP Monitoring Matters
- Blog - 6 PHP Security Best Practices