QA interview guide
If an interviewer asks how would you test a login page, start with the successful sign-in flow, then cover invalid inputs, account states, security abuse, session behavior, UX, accessibility, and backend failures.
I would test that valid credentials log the user in and redirect correctly, then test invalid credentials, empty fields, locked or disabled accounts, brute-force protection, generic errors, session cookies, logout, remember me, forgot password, keyboard navigation, labels, focus states, screen reader errors, mobile layout, and backend failures.
“I would test valid login, invalid password, unknown email, empty fields, malformed email, locked, disabled, unverified, and suspended accounts, remember me, forgot password, safe redirects, logout, session timeout, browser-back behavior, rate limiting, brute-force protection, generic errors, password masking, no password or token leakage, secure cookies, direct URL access, duplicate submit, slow backend response, mobile layout, keyboard navigation, labels, focus states, and screen reader error announcements.”
Write your own answer, get scored, see what you missed, and compare your response with junior, middle, and senior QA thinking.