Documenting how to test WebServices using scripts - the story so far

Here is the chronological consolidation of the  efforts (by Arvind and me) to write a detailed story of the steps required to create a Security / QA test suite for TeamMentor

These are my posts with analysis of what is going on, key concepts, extra briefing notes, and links to relevant Arvind's posts:

• Testing TeamMentor 2.0 security using O2 
• First you create Tests for WebServices, then you add the abuse/security cases 
• A journey into testing WebServices in a developer friendly way
• If you not blowing up the database, you're not testing the whole app
• What is the formula for the WebServices Authentication mappings?
• Roadmap for Testing an WebService's Authorization Model 
• Creating a spreadsheet with WebService's Authorization Mappings
• Is there a spreadsheet/template for Mapping WebServices Authorization Rules?
• Using BDD-Security to test WebServices Authorization Rules?
• On Fuzzing WebServices
• ... to be continued...

These are Arvind's posts with his efforts, ideas, problems, solutions and scripts:

• Finding the WSDL and why should I automate?
• Finalizing my dev env – Python + Suds
• Authorization testing – the thought process…
• Why Unit tests?
• My first working..independent…unit tests :)
• Authorization testing…analysis logic added
• Unit Tests – Handling complex arguments with Suds
• Unit Tests – 38 methods done :)  
• ... to be continued...
  
  

I'm really happy with the way this is coming along, and I hope that it will help others when faced with the same challenges (i.e. adding security/qa tests to WebServices)