Automated Test Framework - Data Model

Neil Mitchell2
Tera Contributor

‎08-04-2023 02:42 AM

Apologies if this is not the correct place to ask this.

 

We are looking to activate the ATF functionality within our platform.  To do thisi am required to provide a overview documentation to our Security team so they can assess the risk(s).   One of the items I need to provide is the data model that sits behind the module.   I have not been able to find anything within the standard documentation although I am sure there must be something available

Is there any ServiceNow standard documentation that details the tables and their relationships that drive ATF.  I know ATF will/can impact most tables in the NOW platform Data Model depending on the testing being performed.


Thanks in advance for any assistance in the matter.

Labels:
0 Helpfuls
  • 870 Views
5 REPLIES 5

Miguel Donayre
ServiceNow Employee
ServiceNow Employee

‎08-04-2023 12:10 PM

What do you mean by "data model"? ATF is more of a function; it doesn't change data structures. What are you trying to accomplish with your security team? I attached a quick sheet on what is ATF as well. 

Let me know how I help out.

 

Preview file
269 KB
0 Helpfuls

Neil Mitchell2
Tera Contributor
In response to Miguel Donayre

‎08-07-2023 01:44 AM

I am trying to understand what records are used in respect to ATF.   

I assume that we have Test Suite, Tests etc ....   

While I understand it is a platform capability,  I am required to advise what data it uses enable the functionality to be delivered. 

0 Helpfuls

John Dahl
Tera Guru

‎08-05-2023 05:27 PM

As @Miguel Donayre said, ATF is a platform capability, not a customer data storage component. There should not be any security concerns about the data used. First of all, the tests should be promoted to PROD for maintenance when cloning back down, but they should never be executed in PROD. They should only be executed in TEST or lower environments. Second, the tables used for ATF functionality are designed for just that... testing functionality. The test scripts will contain the data that is used to perform the tests, but they does not need to be sensitive data. Any freeform text fields should be populated with "safe" values, such as Lorem Ipsum generated content.

If the security team still needs to see the data model, you can direct them to this list:

https://INSTANCE.service-now.com/now/nav/ui/classic/params/target/sys_db_object_list.do%3Fsysparm_qu...

Pritika_P4m
Tera Contributor

‎08-17-2023 10:56 PM

ATF is a capability/ functionality, mostly used for regression testing, there should not be any security concerns.

Also the test data what it generates doesn't gets stored in instance, it deletes all generated records for testing and just provides screenshots to it.

0 Helpfuls