Top QA Interview Questions with Answers

[ interview ]

General Questions

What is the difference between QA and a Tester?
QA covers the entire product development process, including planning, monitoring, and improving processes to prevent defects. Testing focuses on identifying defects in an already created product.
What is the difference between Authentication and Authorization?

Authentication — it is the process of confirming the identity of the user.
It answers the question: "Is the user who they claim to be?"

Authorization — it is the process of granting or denying access based on the user's rights and privileges.
It answers the question: "What is the user allowed to do?"

Do you start testing with a positive or negative scenario?
With the positive one , because it is the intended use case of the system by the user, and it is important to verify its correctness first.

Teamwork

You’ve received a testing task, will you communicate with anyone about it?
First, it is necessary to review the requirements and ask any related questions to the analyst. If questions about implementation arise, details can be clarified with the developer of the feature.

Test Design Techniques

Types of Testing

What is regression testing?
Regression TestingThis is a type of testing aimed at confirming that recent changes to the code have not negatively affected the existing functionality of the system.
What is the difference between regression and retesting?
Regression: Checks that changes have not caused new defects in other parts of the system.
Retest: Checks that a fixed defect has indeed been eliminated.

Testing Levels

Describe the testing levels based on the criteria of speed and number of tests.

Here, it is appropriate to mention the Testing Pyramid.

Testing Level Speed Number of Tests
Unit Testing High Large
Integration Testing Medium Medium
System Testing Low Minimal

Test Documentation

What is the difference between severity and priority fields in a bug report?

Severity: Evaluates the technical impact of a bug on the system's functionality.

Priority: Evaluates the urgency and importance of fixing the bug from a business perspective.

Give an example of a bug with high priority and low severity.

A typo in the company name on the homepage.

HTTP Protocol

Name HTTP methods and their purpose.

Must know: GET, POST, PUT, DELETE, PATCH.
Optional: HEAD, OPTIONS, CONNECT, TRACE.

Details about each HTTP method.

Name HTTP response codes and the cases in which they are returned.
Code Description
100-199 Informational
200-299 Successful
300-399 Redirection
400-499 Client Error
500-599 Server Error
Details about status codes.
Can a GET request have a body?

Yes. There is no protocol-level restriction, and it depends solely on how the developer implements the endpoint.

A person cannot know everything, and the interviewer might be mistaken. Justify your answer if you're confident it is correct.
Name idempotent and non-idempotent methods.

Idempotent methods are those where calling them repeatedly with the same data set will yield the same result, with no side effects on the server.

Non-idempotent methods affect the server’s state, such as changing data in a database.

Idempotency Methods
Idempotent GET, HEAD, PUT, DELETE, OPTIONS, TRACE
Non-idempotent POST, PATCH
What is the difference between HTTP and HTTPS?

HTTP (HyperText Transfer Protocol): Data is transmitted in plaintext, without encryption. Anyone who intercepts the traffic between the browser and the server can potentially read the transmitted information.

HTTPS (HyperText Transfer Protocol Secure): Data is encrypted using SSL/TLS (Secure Sockets Layer / Transport Layer Security). Requires an SSL/TLS certificate to verify the authenticity of the resource.

Data Formats

Describe data in JSON format (name Kotofey, age 5). 
{
    "name": "Котофей",
    "age": 5
}
Don’t hesitate to ask if you're unsure whether you’ve described it correctly in JSON. Ask the interviewer if you can use an online validator for checking (search for json validator). The validator will show you where the structure was violated.
Where is the structure described when transferring data in XML format?

In the XSD schema (XML Schema Definition) — a file with the .xsd format. The XSD schema defines the elements and attributes that can be used in an XML document, data types, and restrictions.

<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema">
  <xs:element name="cat">
    <xs:complexType>
      <xs:sequence>
        <xs:element name="name" type="xs:string"/>
        <xs:element name="age" type="xs:int"/>
      </xs:sequence>
    </xs:complexType>
  </xs:element>
</xs:schema>
Don't be afraid to say you haven’t worked with XML/XSD — most modern projects use JSON. Just be ready to answer that XML is simply another data format.

DevTools

The server stores cookies on the client, how can you view them in the browser?
  1. Open DevTools
  2. Go to the Application tab Application
  3. In the left panel, select Cookies
  4. Click on the site’s URL
  5. A table will appear with the names, values, and other attributes of the cookies
How can you view the request body sent from the front end in the browser?
  1. Open DevTools
  2. Go to the tab Network
  3. Send a request from the front end
  4. Select the desired request from the list
  5. Go to the tab Payload
Where can you view the server’s response in the browser?
  1. Open DevTools
  2. Go to the tab Network
  3. Send a request from the front end
  4. Select the desired request from the list
  5. Go to the tab Response

Architecture

Pros and cons of monolithic and microservices architectures in testing.

Monolithicall components of the system are combined into a single application.

Microservicesa set of independent applications, each performing a specific function, together making up the system.

Architecture Pros Cons
Monolithic
  • Easier to set up and configure the testing environment
  • Regression is hard to perform due to potential impact from changes on any part of the monolith
Microservices
  • Regression is easy to perform because components are isolated
  • Difficulty in setting up and managing the environment
  • Difficulty in performing integration testing
  • Difficulty in identifying issues