The Architecture Reference

Ms operations · Microservices · Intermediate

Testing Microservices

The test pyramid in a distributed world — why end-to-end tests turn brittle, why consumer-driven contract tests replace them, and how to test safely in production.

Ms operations Intermediate ⏱ 5 min read Complete

🧭 Analogy

Testing each car part on a bench (brakes, engine, lights) is fast, precise, and tells you exactly what failed. Test-driving the whole assembled car on a track tells you it works overall — but a single flat tyre stalls the whole test and you can’t tell which subsystem caused the wobble. The more you lean on the full track test, the slower and vaguer your feedback. Favour bench tests; use the track sparingly.

The pyramid, not the snow cone

Newman uses Marick’s testing quadrant and Mike Cohn’s test pyramidunit, service, end-to-end (he renames “UI” to end-to-end). Going up the pyramid increases scope and confidence but lengthens feedback, harms localization, and breeds brittleness. Aim for roughly an order of magnitude more tests at each lower level, and avoid the inverted test snow cone.

graph TD
E["End-to-end tests<br/>few — slow, broad, brittle"] --> S["Service tests<br/>more — stub collaborators"]
S --> U["Unit tests<br/>many — fast, precise"]
C["Consumer-driven contract tests<br/>(service-test scope/speed)"] -.->|"replace E2E at team boundaries"| E
  • Unit tests — many, fast, no dependencies.
  • Service tests — spin up the whole service and test over its real interface, stubbing collaborators (Newman prefers stubs over mocks; recommends mountebank). Wells’s rule: don’t mock the data store you own — the service is its code plus its store.

Why end-to-end tests rot

End-to-end tests are “tricky to do well.” They are flaky and brittle (the enemy — they cause normalization of deviance; remove unfixable ones), often ownerless, slow, prone to the great pile-up, trapped in the metaversion problem (“now you have 2.1.0 problems”), and they undermine independent testability — and therefore independent deployability. Wells is blunter: “full stack in a box” is an anti-pattern that breeds a distributed monolith; the FT deleted its brittle acceptance tests in favour of a black-box production test exploiting publish idempotency.

The better alternative: consumer-driven contracts

Contract tests and consumer-driven contracts (CDCs) let a consumer describe its expected behaviour and run that against the producer in isolation — same scope and speed as a service test — catching breaking changes before production. Pact is the tool, and CDCs are “an explicit reminder of Conway’s law.”

graph LR
Con["Consumer team"] -->|"defines expectations"| Pact["Contract (Pact file)"]
Pact -->|"run against"| Prod["Producer in isolation"]
Prod -->|"passes"| OK["Safe to deploy"]
Prod -->|"breaks contract"| Fail["Build fails before prod"]
Practitioners at scale remove end-to-end tests over time, treating them as temporary training wheels. Wells: contract tests are most valuable at team boundaries, combined with Postel’s Law (be liberal in what you accept).

💡 Shrink the scope of multi-service tests

Keep any test that touches several services inside the team that owns those services. A test that requires coordinating across teams is a smell — it couples your release to theirs. Contract tests give you the cross-team confidence without the cross-team deployment.

Testing in production

Staging is never production-like, customers surprise you, and you can’t test every variation (Majors’ “Canadian iPad on iOS 9 on degraded hardware”). So test in production safely: ping/liveness checks, smoke tests, canaries, and synthetic transactions — leveraging deployment/release separation and avoiding side effects.

⚠️ Synthetic transactions with real side effects

Injecting fake user behaviour caught a GitHub rate-limiting issue at one firm — but a company once accidentally had 200 washing machines delivered to head office because its synthetic “purchase” wasn’t stubbed at the side-effecting step. Use a Spy, prefix synthetic traffic with correlation IDs so it’s excluded from notifications, and never let test transactions trigger real-world effects.

Often optimizing mean time to repair (MTTR) beats optimizing mean time between failures (MTBF) — recovering fast can be worth more than preventing every failure. Cross-functional requirements (performance, robustness) follow the pyramid too: run performance tests regularly and actually look at the results against SLO-derived targets, and write robustness tests (e.g., circuit-breaker behaviour under injected failure).

🔑 Key insight

The biggest required change is mindset and organization: a separate pre-release QA phase is an anti-pattern you can’t afford at many-releases-a-day. Quality is a whole-team responsibility, with tests written by the developers who write the code.

See also

When to use it — and when not

✅ Reach for it when

  • You are designing a test strategy across many services.
  • Your end-to-end tests have become slow and flaky.
  • You want to catch breaking contract changes before production.

⛔ Think twice when

  • You have a single deployable where end-to-end tests are cheap and stable.
  • You need deployment mechanics rather than test design.
ms-operationsDeployment and Progressive Delivery

Deploying many interdependent services: the five principles of deployment, the options from VMs to FaaS, and progressive delivery — separating deployment from release to control the blast radius.

ms-operationsObservability: Logs, Metrics, and Traces

From monitoring to observability — log aggregation with correlation IDs, metrics, distributed tracing, and SLO/SLI/error-budget thinking for understanding production you never anticipated.

ms-communicationCommunication Styles: Sync vs Async

Choose the communication style before the technology — request-response vs event-driven, synchronous vs asynchronous — and understand temporal coupling, cascading failures, and what goes in an event.

Check your understanding

Score: 0 / 4

1. What shape should your tests follow (Mike Cohn)?

Aim for roughly an order of magnitude more tests at each lower level; the inverted 'test snow cone' is the anti-pattern.

2. Why do end-to-end tests degrade in a microservice architecture?

Flakiness causes normalization of deviance; the 'metaversion' trap and lack of independent testability undermine independent deployability.

3. What do consumer-driven contracts (CDCs) do?

CDCs run at the same scope/speed as service tests, catch breaking changes before production, and are 'an explicit reminder of Conway's law'; Pact is the tool.

4. What does optimizing MTTR over MTBF imply?

Mean time to repair can be a better thing to optimize than mean time between failures, enabling safe testing in production.

Comments

Sign in with GitHub to join the discussion.