|
|
|
|
|
|
by nelhage
3956 days ago
|
|
|
This is a great question, and it's definitely a problem we have. We don't have a single answer we use for every system we work on, but we employ a few common patterns, ranging from just keeping hard-coded strings containing the expected output, up to and including implementing our own fake versions of external infrastructure. We have, for example, our own faked ISO-8583 [1] authorization service, which some of our tests run against to get a degree of end-to-end testing. Back-testing is also incredibly valuable: We have repositories of every conversation or transaction we've ever exchanged with the banking networks, and when making changes to parsers or interpreters, we can compare their output against the old version on all of that historical data. [1] https://en.wikipedia.org/wiki/ISO_8583 |
|
|
Are you referring to test data or actual live transaction data? The latter would seem like a huge liability and target for hackers.