Technical Musings

Active Directory and WCF Configuration Woes Resolved

2013-06-07T02:10:46Z

Configuring a WCF service across security boundaries can be a tricky business, or so I learned recently. Testing went well, but the move to production failed for a WCF client/server scenario, with the client application encountering an error: SOAP security negotation with '' for target '' failed. See inner exception for more details. Inner exception: The Security Support Provider Interface (SSPI) negotation failed.

]]> The solution was simple in the end, but required a good deal of research to find and understand. But before we get to that, let's talk a bit more about the setup. The actual production setup is more complicated than this, but the simplified model will suffice for the example. Because the client is in fact a second WCF service, both the client and server are on Windows Server 2008 R2 boxes, both in secure but distinct subnets. As they are both custom .Net applications, we were able to utilize netTcpBinding for increased performance and simpler security, in comparison to httpBinding and wsHttpBinding. But as we shall see, that decision had an unforeseen consequence.

TCP binding with either Message or Transport is secured by Kerberos tokens issued by Active Directory in a Windows network, whereas wsHttpBinding uses a certificate/SSL to encrypt the communication. Thus the TCP route has lower setup overhead, in that you do not need to purchase a certificate or alternately manage a certificate server in-house. As a business-oriented programmer, I've never needed to understand Kerberos. But from my Unix sysadmin days, I knew that Kerberos was developed at MIT and provided a means for authenticating a client and server, for instance when connecting to a network file share over the SMB protocol. Thus in hindsight the problem is not at all surprising, but admittedly I did not know enough about WCF to recognize the implications at the time.

In the test environment, both servers were in the same network segment and the WCF services ran under the same service account. I was mildly concerned that I had not tested across a subnet boundary, but it turned out this was not even the problem: as I researched further, I found that (a) the two services were running under different service accounts in production, and (b) one of the service accounts was not in the same Active Directory domain as the servers (both domains being in the same Tree, however).

To prevent getting too long winded, I won't repeat most of what I found in three particularly helpful Microsoft resources – well, helpful once I was able to put the pieces together. Alone, none of them simply stated the required practice.

Between these resources, I came to realize that:

At the time of installation, a Windows service registers itself in the Domain controller, identifying itself by name, address, and either a Server Principle Name (SPN) or User Principle Name (UPN) (the former when running the service under the default Network Service account and the latter when running under a custom account, as in my situation).
When in the same subnet, it is easy for the client to find the server. I suspect - but do not have the resources to test - that this was particularly true because the same service account was running both.
Service1 (the client) was trying to find Service2 as identified by UPN asdf123@domain1, but in reality it was registered under asdf@domain2. That is, the wrong Kerberos token was being issued while searching for Service2.

The solution? Simply specify the UPN identity in the config file (if using the auto-generated client proxy) or in code, using the fully qualified domain name (FQDN):

(In a simpler situation, the FQDN would probably be domain1.local.) In C#, this can be done when creating the EndpointAddress:

var uri = "net.tcp://Service2.MyTree.MyForest.local:1234/SomeContract";
var upn = EndpointIdentity.CreateUpnIdentity("asdf@domain2.MyTree.MyForest.local");
var endpointAddress = new EndpointAddress(uri, upn);

var binding = new NetTcpBinding(); 
// set additional options
var channelFactory = new ChannelFactory(binding, endpointAddress);

var client = channelFactory.CreateChannel();

When running under the Network Service account – that is, using an SPN instead of UPN –:

And

var upn = EndpointIdentity.CreateSpnIdentity("host/Service2.MyTree.MyForest.local:1234");

By the way, after finding the answer, I learned that the System log on Service2 actually had a very helpful error message in it; it tells us about using the FQDN and that the wrong account was being used:

The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server . The target name used was host/..local. This indicates that the target server failed to decrypt the ticket provided by the client. This can occur when the target server principal name (SPN) is registered on an account other than the account the target service is using. Please ensure that the target SPN is registered on, and only registered on, the account used by the server. This error can also happen when the target service is using a different password for the target service account than what the Kerberos Key Distribution Center (KDC) has for the target service account. Please ensure that the service on the server and the KDC are both updated to use the current password. If the server name is not fully qualified, and the target domain () is different from the client domain (.LOCAL), check if there are identically named server accounts in these two domains, or use the fully-qualified name to identify the server.

From Ruby to Gherkin: Building Automated System Tests, pt 2

2013-05-29T16:55:29Z

Follow-up to Building a Test Script Environment with C# and IronRuby, pt 1, wherein we change emphasis from coding tests in Ruby to writing them in English (Gherkin) with the help of SpecFlow.

After that October post, I managed to construct a full system/regression test suite for a key data-management application, using the combination of Ruby and C# as described. My team has been able to go through several cycles of…

]]>

Updating unit tests to reflect change requests,

Writing code to pass the tests, and

Getting swift regression test results back from the system test process acting on the fully-integrated code, and finally

Running a new test file that exercises the enhancement.

Oops, there is something amiss with that: the new test file should have been added to the system automation test suite at the outset, not at the end. That is, "test-first" should have applied at the system level, in addition to the unit level. But that's not the point of this article. The point is this: at the end, I did not have a product that a business user could easily review and correct.

Arguably, a non-programmer could read the code more easily, thanks to the use of Domain Specific Language concepts. Nevertheless, there was a lot of setup code that obscured intent, and the tests frankly still looked daunting to a non-programmer. Compounding the difficulty is the fact that the non-programmer users are still trying to understand the fundamentals of software testing, in plain English, and without the benefit of meaningful time to study. In other words, asking someone else to verify and maintain these tests would be throwing them into the deep end with inadequate support. The inspect-and-adapt mentality suggests modifying the system testing approach.

Inspect-and-adapt:

Tests are still too hard to read, and
The learning curve was too high,
Therefore find a simpler product.

Gherkin to the rescue! The Gherkin language provides a very simple format for writing tests in plain English. A programmer then writes code that executes the intended actions, in the context of an automation system. Initially I continued on the Ruby path by trying to install RSpec as the interpreter, but I could not get it to install properly in IronRuby. Undismayed, I revised my goal: no longer would I seek to convert a tester into a Ruby programmer. Instead, I would encourage that tester to write and review English-language test scenarios in Gherkin, which the programming team would then support with code in C# using the SpecFlow framework.

At that point, we were working on a line-of-business application. Whereas learning the rudiments of Ruby, and setting up the code environment, had taken a good deal of effort, I was up-and-running with meaningful tests in SpecFlow within a day. More importantly, the other members of my team were immediately able to utilize and even correct small mistakes in these test scenarios. The learning curve was negligible when presented with a working example. And at long last, we were able to present a file containing test descriptions to a business analyst and get direct feedback.

The IronRuby experiment was not a failure: it delivered a meaningful result. Empirically, however, it was a less-than-satisfying result. We evaluated, re-prioritized, and moved-on to the next iteration of our experimentation: SpecFlow. Now we feel that we have the foundation for real organizational growth around software testing.

Agile Introverts

2013-05-20T02:48:15Z

A co-worker overheard the comment that "agile [software development] is not always a good fit for introverts," or something along those lines, while listening to a webinar on agile testing. On the surface, it is hard to deny that claim. Right there in the Agile Manifesto we have two obvious yellow or even red flags:

Individuals and interactions, and
Customer collaboration

Now jumping over to the Principles, we find two more orange flags:

Business people and developers must work together daily throughout the project.
The most efficient and effective method of conveying information to and within a development team is face-to-face conversation.

]]> We find this drive for a close interaction in all of the agile methodologies, and that can scare some people. In XP, we even have pair programming: sitting not just near, but right alongside, another programmer.

But for the majority of introverts, I suspect that working in an agile environment will be no worse, and possibly better than, working in a waterfall setting or cowboy culture. Let's go back to the Manifesto and Principles, starting at the top: individuals and interactions over processes and tools. If you are a strong introvert, and your organization is dedicated to this Agile idea — and more importantly, dedicated to creating an environment where each employee will thrive — then the management should adapt process in favor of individual, for example when evaluating adoption of pair programming. (On the other hand, an introvert might think carefully before accepting a job where pair programming is the rule).

And that leads me back to the Agile Principles, namely, "Build projects around motivated individuals. Give them the environment and support they need, and trust them to get the job done." That speaks for itself, doesn't it?

But what about those face-to-face conversations? In my own experience, most introverts are actually quite happy to have a face-to-face conversation with one or two other people. Perhaps this won't work "all the time" in the literal sense – but I'm guessing that the majority of extroverts don't want face-time, all-the-time, either.

Now, I straddle the divide. Many people never realize that I'm more intro- than extraverted, because I socialize easily when I need to. So perhaps I am not the best judge, and yet I will still step out and say: when faced with agile, introverts should set aside the fear and judge Agile from personal experience instead. After all, the world could use some more agile introverts.

Start Stop Continue Stickies

2013-02-27T02:42:23Z

Sometimes you need to go back to the basics - including basic technology. In this case, I mean sticky notes. Yes, they are a remarkable form of technology. I like doing everything the digital way. I abhor using paper when not necessary, because of the waste factor. Although I love the idea of note cards for user story development, I've been thankful that they are impractical for my development team. But, I think it is time to heed good advice.

]]> For several months now I've been running bi-weekly retrospectives. Following good advice found many places (initially in Integrating Agile Development in the Real World), the retrospectives focus on:

listing…
- things that are going well,
- things that are not going well,
- and opportunities for improvement;
having a brief discussion on solutions for the 2nd and 3rd bullets;
prioritizing the list; and
assigning takeaways.

Chapter 19 of Agile Testing: A Practical Guide for Testers and Agile Team refers to the listing practice in more simple terms: start, stop, and continue. And they provide this advice…

All team members write "start," "stop," and "continue" items on sticky notes, and then during the retrospective meeting they put the stickies on the board and group them by topic. … It can be hard to remember the past two weeks, much less an entire release, if that's what your retrospective covers. Research different creative approaches to reflecting on your team's experiences.

How obvious and true! So let's hand out some color coded≸, blank sticky notes in advance, just a small stack to everyone on the team. Ask them to fill out as things occur to them. When it comes time for the retrospective, bring all that still seem relevant. Better yet, put them on a piece of paper, slap that paper down on the copier/scanner, and create a digital version. We can quickly chop up the digital versions, arrange them in any one of various Office/type products, and have a nice (and easy) picture instead of boring meeting notes.

It is my hope that this process will:

make it easier to remember start/stop/continue items in space in between meetings,
and re-emphasize the importance of this collective feedback process.

This is nothing breathtaking or revolutionary on my part. If it works, it just means I needed to relax and rely on technology to help fix a problem — the simplest technology possible. Sticky notes. If it doesn't work out, hopefully someone will be kind of enough to write that down on a pink note and bring it to a future retrospective.

≸ pink = stop, yellow/or other = continue, green = start

C# + IronRuby: Building Automated System Tests, pt 1

2012-10-11T03:16:06Z

We build a lot of console applications, and Windows services, that process inbound and outbound files in one way or another. Most depend on configuration data and some load (or unload) business data from a database, in addition to accessing the files. Testing these has always been a chore, to say the least: configurations change, data are deleted, and there's never enough time. After building a few rudimentary tools that have helped, necessity, and Agile Testing: A Practical Guide for Testers and Agile Teams, has convinced me that it is time to get serious about system/integration test automation, just as I did about unit test automation a few years ago. This is the first of a n-part series of posts on this process

]]> First, what is the rationale? What is this "necessity", or rather necessities? Respecting proprietary business matters, let’s say…

There’s never enough time partly because testing takes too much time.
The repetitive nature of manual testing makes it (a) boring, and (b) easy to mess up.
Because of both of these factors, I am loathe to delegate much testing to others. On the one hand I feel bad about pushing things on others just because I don’t want to do them; on the other hand, I have trouble trusting results that I did not generate myself.
There is an active interest from others to be more involved in testing; bringing them in will free me up for more interesting projects, and, objectively speaking, provide a good check-and-balance.

Automation can help with all of these factors, and more. Having come to that conclusion, what are the goals for this project?

Time is still hard-to-come by, so as with any agile project, build only what is needed right now and then start using it. This argues against a fancy UI for now, and in favor of simple test scripts.
Build components for auto-loading configuration and business data, as needed, into the database. These components should themselves be well-tested, and do not need to be created in the language used for the test scripts.
Provide a simple and familiar mechanism for saving that configuration data, e.g. csv via Excel.
These are "business-facing" tests, and they should be readable, with minimal training, by business users and non-programming testers. This argues for creation of a domain-specific language, use of a scripting language that that does not stand on ceremony, and possibly introduction of Behavior Driven Development (BDD) tools.
Maintain all scripts in source control.

These goals rule out the normal .Net languages. A dynamic scripting language is more appropriate. From the many out there, Ruby seems to be the most obvious choice. With the help of IronRuby, the data-access components can be written (and fully unit-tested) in C#, while scripts are written in Ruby. RSpec might eventually be used for BDD. Follow-up posts will dig into some of the implementation details, as well as the lessons learned along the way.

Using Custom Types in Project Settings

2012-09-07T01:57:04Z

Problem: using Application Settings in a .Net project, you find that there are so many entries that some organization is needed.

Solution: create custom, serializable data types for logical groups of settings.

]]> 1. Custom Types

Create one or more POCO for logical groupings of your settings. Add the [Serializable] attribute from the System.Xml namespace because the object data need to be stored as XML in the settings file. It may be convenient to put a few other properties or methods into the class, returning calculated values based on the settings – for example, to parse a TimeSpan from a string in the settings. For those, you can add the [XmlIgnore] attribute from the System.Xml.Serialization namespace.

2. Create XML for Your Type

In step 4 you'll need the serialized XML string, with default values, for your custom type(s). Two ways of getting this: write a few lines of code to take care of it for you, or you could always construct it manually using the XML below as a template. Let's use this type to work the example:

public class MySettingsType
{
    public string SettingString { get; set; }
    public int SettingInt { get; set; }
    public string[] SettingStringArray { get; set; }
}

Now, to write a few lines of code… I put this into a unit test class so that I could easily execute it from within Visual Studio.

using System.Xml.Serialization;
using System.IO;

...

[TestMethod]
public void WriteSettingsXml()
{
	var settings = new MySettingsType
	{
		SettingInt = 4345,
		SettingBool = true,
		SettingStringArray = new string[] { "a", "b"}
	};

	var serializer = new XmlSerializer(typeof(MySettingsType));
	using (var writer = new StreamWriter(@"c:\temp\settings.xml"))
	{
		serializer.Serialize(writer, settings);
	}
}

And with this example in hand, it should be easy enough to write build your XML by hand:



  true
  4345
  
    a
    b

3. Open the Settings File

In Visual Studio, open the Settings File. Add a new Setting entry with an appropriate name for the collection of fields in your type. For Type, select Browse. This will open a dialog box and you might not find your custom type in the list (I've seen the behavior go both ways, and not exactly sure why). If you don't see it, just type the namespace and class name into the textbox and click OK. Choose the scope you want. Finally, copy your XML and paste it into the Value field – the whole thing, starting with the XML version. Compile. Now your new property will be available in Properties.Settings.Default.

End result

Imagine this with several custom types, providing organization to the project. Now imagine this in a class library that is used by several applications — if you want the defaults, just leave out a whole class worth of values.


	
		
			mySampleValue
		
		
			AnotherValue
		
		
			
				
					true
					4345
					
						a
						b

Manipulating Table Rows with jQuery

2012-07-12T02:48:13Z

Problem: need to move rows up and down, and from one table to another, in an HTML page.

Solution: careful use of jQuery. There are probably many different solutions already out there, but I wanted to learn how to write one for myself. Key functions: closest, detach, append, prev, next, before, and after.

]]> Demonstration

Table 1
One	Two	Three
R1 C1	R1 C2	Move Me \| Up \| Down
R2 C1	R2 C2	Move Me \| Up \| Down
R3 C1	R3 C2	Move Me \| Up \| Down

Table 2
One	Two	Three

Table Source Code

A couple of very basic tables, with "action" links in the third column. Judicious use of id and class attributes will turn out to be very helpful…

Between Tables

One principle is that I don't want to hard-code all of the ID values. But that didn't work out entirely. Write a function and apply it to the click event of all of the elements with class "rowLink". In that function, find the parent row. Then find that row's parent table. Remove the row from the display – but use detach instead of remove so that the HTML still exists. See if that table is table1. There's the hard coding. If so, append the row into table2. Then it seems nice to help the reader notice that the row has moved.

// Setup the "Move Me" links
$(".rowLink").click(function () {
    // get the row containing this link 
    var row = $(this).closest("tr");

    // find out in which table it resides
    var table = $(this).closest("table");

    // move it
    row.detach();

    if (table.is("#table1")) {
        $("#table2").append(row);
    }
    else {
        $("#table1").append(row);
    }

    // draw the user's attention to it
    row.fadeOut();
    row.fadeIn();
});

Up and Down

Now apply a function to the click event of all the elements with class "rowUp." Again get the current row. Then get the previous element. If the previous element is itself a row, then there is room to move up – so detach the row and move it before the previous row. Otherwise do nothing. For moving down, simply switch from prev to next and before to after.

// Setup the "Up" links
$(".rowUp").click(function () {
    var row = $(this).closest("tr");

    // Get the previous element in the DOM
    var previous = row.prev();

    // Check to see if it is a row
    if (previous.is("tr")) {
        // Move row above previous
        row.detach();
        previous.before(row);

        // draw the user's attention to it
        row.fadeOut();
        row.fadeIn();
    }
    // else - already at the top
});

Some Tips for Use of DataAnnotations in .Net

2012-06-28T01:14:22Z

Wherein I record a few tips on the use of System.ComponentModel.DataAnnotations, which I am likely to forget if I do not need to think about them again for some months…

]]> Unit Testing for Validation Attributes

In your unit tests, do not test the validation – but rather test to see if the validation attributes have been applied. See Brad Wilson's blog post, DataAnnotations and ASP.NET MVC, for details.

Manual Validation

If you do manually validate, in a unit test or production code, using Validator.TryValidateObject (or other methods in the Validator class), then be sure to set the validateAllProperties = true. By default it is false and that means that only Required properties will be validated. Why in the world is this false by default? The obvious and expected behavior is that all properties would be validated. Validator.TryValidateObject(someObject, new ValidationContext(someObject, null, null), resultList, true).

Validating Related Objects

Validating inherited fields works nicely. But what about composition / delegation? If you are validating object A, and it is composed of objects B and C that are also validated, then you need some "deep" validation. There is a simple recipe for accomplishing this:

Implement IValidatableObject on class A, which will require you to add a method with signature public IEnumerable Validate(ValidationContext validationContext).
Set this method to run TryValidateObject on the instance of B and of C. Each call to TryValidateObject will need its own ValidationContext. Constructing a ValidationContext is simple – just pass in the object itself, and generally it is appropriate to pass null for the second and third parameter. Don't forget to throw in a true for validating all properties! Something like this will work (with opportunity for multiple refactorings):
```
public IEnumerable Validate(ValidationContext validationContext)
{
    var resultList = new List();

    Validator.TryValidateObject(this.InstanceOfB, new ValidationContext(this.InstanceOfB, null, null), resultList, true);
    Validator.TryValidateObject(this.InstanceOfC, new ValidationContext(this.InstanceOfC, null, null), resultList, true);

    return resultList;
}
```
Now, you wrote a failing unit test for this Validate method before coding it, right?

Caution: if any of the properties directly in A are invalid, then those will be detected and Validate(ValidationContext validationContext) will never be called.

Validation Summary in an MVC Partial View

When using partial views for AJAX support in an MVC application, a @Html.ValidationSummary() should be put inside the partial view. If you put it inside the hosting view, then it will not be populated when you submit a form inside the partial view.

Review: Growing Object-Oriented Software, Guided By Tests

2012-05-13T02:50:18Z

Growing Object-Oriented Software, Guided by Tests by Steve Freeman and Nat Pryce

I did not realize how much I still have to learn about writing good object-oriented (OO) code, and about hewing to a tight test driven development (TDD) methodology, before I read Growing Object-Oriented Software, Guided By Tests. My education in OO and unit testing has been largely theoretical, with no time spent directly learning from experienced OO programmers; my best mentor was a COBOL coder. Books like Design Patterns: Elements of Reusable Object-Oriented Software, Patterns of Enterprise Application Architecture, Applying UML and Patterns: An Introduction to Object-Oriented Analysis and Design and Iterative Development, Xunit Test Patterns: Refactoring Test Code, and others are wonderful but have few detailed real-world business-case examples.

]]> That said, I admit that I skimmed through some of the middle chapters where the application was being built – it was simple to skip the details of Java implementation and focus on the points where a decision was being made, based on tests, about where to put/move a piece code. The authors did well in steering away from anything too Java-centric, that the book would remain accessible to those of us who are not deep in that language.

There is no need for me to recount the contents – perusal of the table of contents should be sufficient. Some of the advice about testing overlaps that found in XUnit Test Patterns, but the overlaps is small enough to warrant reading both. Naturally, some of the advice will reinforce what any good and self-reflective programmer will have already figured out about writing tests. In that case you receive validation and further justification. And much of the advice on OO programming can be found in more detail in other works, though here it is uniquely combined with TDD to shed new light on the advantages of OO.

A few particular highlights for me:

Let necessity drive design, rather week-long UML sessions.
Write to interfaces, initially ignoring implementation. Interfaces should name and describe relationships between classes.
Deploy as early as possible. Do so even before the application does anything, just to prove that the framework can be deployed.
Readability applies to test code as well. I already believed that, but this presentation will help me explain that better to doubters.
Test names can be extremely descriptive (prior post)
I have been over-reliant on Microsoft's Moles (prior post)

Breaking Down a Unit Test from "Reggie" That Uses MoQ

2012-04-21T22:14:03Z

Test driven development is hard. Perhaps it would not be if we were taught to think about OO development from a TDD perspective in the first place; but those muscles are poorly developed, and the exercise leaves you sore and panting a bit. As with physical exercise, there is a reward in the pain. Perhaps others do not see it, but I can already see the benefits accruing in Reggie as I rebuild it with SOLID principles in mind, driven by tests. To help me consolidate where I’m going, and help others whose TDD muscles are likewise under-developed, let us walk through a test, shall we?

]]> First, some context. I’m working on adding persistence to the application: ability to save and re-open session data. I have a ViewModel, called ReggieBasicViewModel, which initially contains the data to persist and which binds the View to my business logic. The ViewModel is being instantiated with a factory object, which allows the ViewModel to build concrete instances of various dependencies. This illustrates the Abstract Factory pattern, and the Open-Closed Principle, but arguably violates Single Responsibility Principle [same link as OCP] by grouping un-related functionality into the factory. The proper factory object is configured in the application’s bootstrapper class, or or it is setup in a unit test using an alternate factory implementation.

I’d like to save to / retrieve from an XML file. But what if my requirements change in a few days? I’m told to save to a database, or a web service. It would not be wise to design for that – but I can easily make the system flexible enough to handle addition of other types of persistence in the future. So I create an interface in my business layer, called ISessionPersistence. As you can see, I’ve added a factory method to the IHelperFactory, for building an instance of ISessionPersistence.

The method SaveSession in ReggieBasicViewModel does not yet have a body. It will need to execute the Save method in the persistence layer. First things first: a unit test.

[TestMethod]
public void SaveSessionLoadsSessionIntoPersistenceService()
{
    // Prepare Input
    string sampleText = "Reggie";
    string regularExpressionPattern = "^(Reggie)$";

    // Setup mocks
    Mock mockSession = m_mockFactory.Create();
    mockSession.SetupSet(ms => ms.RegularExpressionPattern = It.Is(x => x == regularExpressionPattern));
    mockSession.SetupGet(ms => ms.RegularExpressionPattern).Returns(regularExpressionPattern);
    mockSession.SetupSet(ms => ms.SampleText = It.Is(x => x == sampleText));
    mockSession.SetupGet(ms => ms.SampleText).Returns(sampleText);

    m_helperFactory.Setup(hf => hf.BuildReggieSession())
                   .Returns(mockSession.Object);

    m_persistence.Setup(p => p.Save(It.Is(x => x.SampleText == sampleText 
                                                            && x.RegularExpressionPattern == regularExpressionPattern)));

    // Call the system under test
    m_systemUnderTest.SampleText = sampleText;
    m_systemUnderTest.RegularExpressionPattern = regularExpressionPattern;
    m_systemUnderTest.SaveSession();

    // Evaluate results
    m_persistence.Verify(p => p.Save(It.IsAny()), Times.Once());
}

Let’s step through that…

    // Setup mocks
    Mock mockSession = m_mockFactory.Create();

Use MoQ to create a mockup of an IReggieSession. I forgot to mention this: it is a small interface for holding the Sample Text and Regular Expression Pattern that will be saved.

    mockSession.SetupSet(ms => ms.RegularExpressionPattern = It.Is(x => x == regularExpressionPattern));
    mockSession.SetupGet(ms => ms.RegularExpressionPattern).Returns(regularExpressionPattern);
    mockSession.SetupSet(ms => ms.SampleText = It.Is(x => x == sampleText));
    mockSession.SetupGet(ms => ms.SampleText).Returns(sampleText);

Now add some meat to that mock object by setting up the Get and Set for the two properties, RegularExpressionPattern and SampleText:

The SetupSet line can be read this way: RegularExpressionPattern_Set is allowed to be called with a value matching the regularExpressionPattern variable.
The SetupGet can can be read as saying: RegularExpressionPattern_Get will return the value of regularExpressionPattern.
Etc.

    m_helperFactory.Setup(hf => hf.BuildReggieSession())
                   .Returns(mockSession.Object);

When the factory’s BuildReggieSession method is called, return the mock Session object.

    m_persistence.Setup(p => p.Save(It.Is(x => x.SampleText == sampleText 
											&& x.RegularExpressionPattern == regularExpressionPattern)));

Create a mock persistence engine – this helps us remember that the method we’re implementing does not care how the session is persisted! It will simply use whatever method is configured in the factory, which in turn was configured by the main application’s bootstrapper class and passed into the ViewModel’s constructor. FYI, the factory and persistence mocks were instantiated with Strict behavior in the test fixture’s TestInitialize method, so these are member variables for the class and the test will fail if any method is called that has not be explicitly setup. Read this line thusly: setup the persistence mock so that the Save command is allowed to be called with a IReggieSession whose SampleText has the value of sampleText and RegularExpressionPattern has the value of regularExpressionPattern.

    // Call the system under test
    m_systemUnderTest.SampleText = sampleText;
    m_systemUnderTest.RegularExpressionPattern = regularExpressionPattern;
    m_systemUnderTest.SaveSession();

This is clear enough. The system under test is an instance of ReggieViewModel, that was constructed in the TestInitialize method. Normally I would put the construction directly in the test, but in this test fixture, all of the tests need to be initialized in the same way. Moving that to TestInitialize reduces redundant code.

    // Evaluate results
    m_persistence.Verify(p => p.Save(It.IsAny()), Times.Once());
}

This line verifies that the Save method was called exactly one time, with any IReggieSession object. The exact object values do not matter, because I already configured the test to accept the particular values in the local variables.

Run the test. It fails. Great! Fill in the method body. It does not matter that I do not have a concrete version of ISessionPersistence yet, since I am programming against the interface. Now the test passes! The next step is clear: write a test for a concrete persistence class that saves sessions to XML. This will, by definition, be an integration test, writing an actual file. That is, unless I add another layer of abstraction: wrap the XML serialize/deserialize in a reusable custom class, and call that custom class from the persistence class.

 /// 
 /// Save the current input values for future use.
 ///

Moles: No Longer Fit for Unit Tests

2012-04-19T15:21:11Z

Moles is a powerful and useful framework for unit testing. Or was. But even then, it was overused (at least by me). But no more!

]]> The first clue that I might need to walk away from Moles was the recent difficulty another developer was having in trying to get a unit test project up-and-running on his computer. I had installed what was current in early 2011, and he had installed the current version from last 2011. Turns out there was a significant change – the config file no longer worked. We had to update the assemblies correctly on my machine, rebuild many times, and fool around with manually removing some assemblies. It got confusing and messy. I suppose that's why MS still labeled this version as < 1.0.

Next: Growing Object-Oriented Software, Guided by Tests showed me how I was letting design guide tests far too much – and here I thought I was practicing test driven development (TDD) just by writing unit tests. No. Moles was a symptom of this – the framework is used to replace a concrete method in a dependent class. Well, in good TDD, the dependent class shouldn't exist yet. There should not be a concrete method to replace.

"There‘s a more subtle but powerful reason for not mocking concrete classes. When we extract an interface as part of our test-driven development process, we have to think up a name to describe the relationship we've just discovered--in this example, the ScheduledDevice. We find that this makes us think harder about the domain and teases out concepts that we might otherwise miss. Once something has a name, we can talk about it." (from Ch 20, unknown page)

Next: Microsoft's own documentation tells me that I'm doing it wrong, and that I would experience "significant performance degradation" from use of Moles. I should have been doing more with Stubs. From the Microsoft Moles Reference Manual" (v0.91, p4):

"In general, we recommend that you use stub types to isolate from dependencies. This can be achieved by hiding the components behind interfaces. Mole types can be used to isolate from third-party components that do not provide a testable API."

Finally: Microsoft has announced the end-of-the-line for Moles. In Visual Studio, the framework will be replaced with one called Fakes.

Reggie Converted to Use Caliburn Micro, Ninject

2012-04-18T02:18:02Z

Reggie, my regular expression testing application, has been rebuilt in the Caliburn Micro framework, using Ninject for Inversion of Control and MoQ to round out the unit tests.

Now that I've learned something about WPF, and that "out of the box" it is not entirely trivial to work with, it seemed worthwhile to rebuild the app using a standard framework, viz Caliburn Micro. The Mindscape Blog offers a friendlier CM tutorial than the one on the project's website.

In addition, I simplified the architecture by removing the separate business layer. The business logic is so light that it is not worth the effort (20 lines!). I will refactor if doing so provides a real benefit.

Breaking My Moles Habit, With MoQ

2012-04-16T13:43:37Z

For several years now, I have been relying on Microsoft’s Moles for isolating one method from another in my unit tests. Recently I’ve begun to understand that this was not the best approach. I’ll dig into that more in a future post. Having come to this conclusion, I need to start ripping out Moles. Based on the user feedback across the web, and the powerful Lambda expression syntax I’ve grown used to, I’ve chosen MoQ as my replacement. Now for an exercise…

]]>

XYZ.Business.AppFacades.Moles.MSomeFacade.AllInstances.GetAllInt32Int32IOrderBy
    = (SomeFacade iFacade, int iStartRow, int iRowcount, IOrderBy iOrderBy) =>
        {
            Assert.AreEqual(startRow, iStartRow, "getall - wrong start row");
            Assert.AreEqual(rowCount, iRowcount, "getall - wrong row count");
            Assert.IsInstanceOfType(iOrderBy, typeof(OrderBySomeProperty), "getall - sort order");
            Assert.IsFalse(iOrderBy.Descending, "getall - descending");

            return new List() { someInstantiatedObject };
        };
		
		// Run the system under test
        SomeController target = m_kernel.Get();

Replace with…

var mockFacade = new Mock(MockBehavior.Strict);
mockFacade.Setup(ibf => ibf.GetAll(It.Is(i => i == startRow), It.Is(j => j == rowCount), It.Is(k => k is OrderBySomeProperty))).Returns(
    (int iStartRow, int iRowcount, IOrderBy iOrderBy) =>
    {
        return new List() { someInstantiatedObject };
    });

m_kernel.Bind().ToConstant(mockFacade.Object);

Thanks to the Strict behavior, I end up getting an error on another method in the facade class. An explicit mocking is needed for that one too:

mockFacade.Setup(ibf => ibf.GetRowCount()).Returns(1);

In the Moles example, I would have ended up hitting the real GetRowCount method without realizing it. If I hadn’t implicitly setup a fake database with that Ninject call m_kernel.Get, the GetRowCount method would have actually queried the database. As a unit test, this is precisely what I was trying to avoid with Moles.

I have lost one thing in translation – if one of the arguments is wrong, it can be a little more difficult to tell why. In the Moles example, I have the explicit Assert statements in the body of the Mole. In the MoQ example, with Strict behavior turned on, I am telling Mock to throw an error if any criteria other than those three Lambdas attached to It.Is(Func) is passed to the GetAll method. When I manually mess up one of the input values to the test method, I get this result:

Test method MyTest.SortIndexPageTwoByAddressAscending threw exception: Moq.MockException: ISomeFacade.GetAll(3, 3, XYZ.Business.DTO.Sortable.OrderBySomeProperty) invocation failed with mock behavior Strict. All invocations on the mock must have a corresponding setup.

With the Moles example, I would have seen Assert.AreEqual failed. Expected:<1>. Actual:<3>. getall - wrong start row, which is a little more explicit. In the MoQ example I know that there is a problem with the arguments; the third one was just a test of type, and it is clear that it is not the cause. So I must look to the two ints. Still, that is not all that difficult: I know that I have the values 3 and 3, and all I must do is look at the value of startRow and of rowCount to see which one is not three. Then I’ll understand which failed. That only takes me a few seconds longer.

Of course, I could switch back from Strict to Loose behavior on the Mock, which would allow me to put those Assert statements into the body of the Mock. But then I lose the benefit of getting a failure if there are unexpected method calls. I think I’ll accept the small inconvenience above in return for the huge convenience of verifying that the system under test isn’t explicitly or implicitly calling some other method in ISomeFacade.

Unit vs. Integration Tests When Querying Nullable Columns

2012-04-13T01:47:11Z

Here’s an interesting scenario: I have a Linq-to-Entities query that is giving me no results when performing a system test, but when I look in the database, logically there should be results. Better yet, the unit test passes. How can that be?

]]> The query includes a step where it is excluding any MyObject that is linked a particular SomeOtherObject. MyObject has a conceptual, but not foreign, key that links to SomeOtherObject (call it "SomeGUID"). In this scenario, a null is meaningful – it is a 1 to 0 relationship. That turns out to be the root cause of the problem above.

I was just telling someone a few days ago that a query on a nullable column must take the null into account, which surprised that person. And now I find that I've overlooked that myself! Two problems then:

A T-SQL WHERE clause like SomeGUID != ‘SomeValue’ will not return a row where SomeGUID is NULL. You need SomeGUID != ‘SomeValue’ OR SomeGUID IS NULL. But a similar Linq WHERE clause that doesn’t hit a database will return the null row.
Unit tests of Linq-to-Entities, that use a fake database, may not expose some problems with searches that encounter NULL values. Integration tests are needed for that. Hence, don't forget to also throw together at least a few integration tests for your queries.

To prove this, I wrote a new unit test that uses the fake database (there are other tests for this method, but I wanted to focus on this particular problem by creating a new one). There is one MyObject and it is not connected to any SomeOtherObject. The query in question should return this one MyObject. The unit test does indeed pass.

I then slightly rewrite the test so that the query is hitting the real database, but with the same data: an integration test. The test fails – no results are returned. At this point I was expecting this.

Modify the Linq query so that it include the OR … IS NULL clause. From

query = query.Where(x => x.SomeGUID != theGuidIDontWant);

query = query.Where(x => x.SomeGUID != theGuidIDontWant || x.SomeGUID == null);

Now both tests are passing.

Using Windows CNAMEs to Reduce Server Confusion

2012-04-04T00:20:19Z

A common challenge for development teams is remembering the names for all of the different servers in an enterprise environment when the server naming convention is either not descriptive ("Deathstar", "Falcon", "XWing") or obscure ("abcDBS001", "abcDBS002", "abcWEB01"). The Star Wars names suffer from an obvious problem of mapping description to purpose. Those obscure names are commonly used to help distinguish between dozens to hundreds of different servers in an enterprise. Arguably they are helpful to the infrastructure team as they manage this motley collection. But for a developer, remembering if "abcWEB01" is the test web server or prod can be challenging; even when remembered, it would be simple enough to overlook or accidentally type "abcWEB04".

]]> A Windows Server can be configured with a name alias (CNAME) that preserves the naming convention used by infrastructure, but helps the development team avoid confusion and accidents. Assuming that there is a good separation between servers – say, development, test, and production – and their purposes – say, web apps, services, reports, and database – wouldn't it just be easier to refer to:

devweb
testweb
prodweb
devservices
testsql
et cetera

Of course, that scheme presumes that there is only one server in each category. If there are multiple servers in order to fit different needs, then find a name that explains that need: for example, testexternalweb and testinernalweb, for DMZ and internal web servers. I can't begin to reckon the number of times such an (aliased) naming convention would have helped avoid mistakes and improved communication over the years.

Bonus: if abcWEB01 needs to be retired and replaced by with abcWeb10, just change the CNAME so that prodweb points to the new server. Application configuration nightmare averted.