TINAA API Documentation¶
Overview¶
TINAA provides three different API interfaces for browser automation and testing:
- MCP (Model Context Protocol) - For AI assistants like Claude
- HTTP REST API - Traditional REST endpoints with WebSocket support
- LSP (Language Server Protocol) - For IDE integration
Resources API¶
TINAA includes a comprehensive resources framework with 25 specialized resources following the gofastmcp.com v2.8.0 specification. All resources are accessible via HTTP endpoints:
Resource Categories¶
| Category | Count | Description |
|---|---|---|
| Tools | 9 | CLI tools, scaffolding, CI/CD integration |
| Quickstarts | 4 | Getting started guides |
| Examples | 4 | Real-world test examples |
| Documentation | 3 | Best practices and guides |
| AI Prompts | 3 | Test generation and code review |
| Additional | 2 | Resource index and strategies |
Resource Endpoints¶
| Endpoint | Description |
|---|---|
GET /resources/index.json |
Complete resource registry |
GET /resources/tools/{tool}.json |
Specific tool resource |
GET /resources/quickstarts/{guide}.json |
Quickstart guide |
GET /resources/examples/{example}.json |
Example test pattern |
GET /resources/docs/{doc}.json |
Documentation resource |
GET /resources/prompts/{prompt}.json |
AI prompt resource |
MCP Tools API¶
The MCP interface is defined in app/main.py and provides the following tools:
start_lsp_server¶
Starts the Playwright Language Server Protocol server.
Parameters:
- tcp (bool): Use TCP mode instead of stdio
- port (int): Port number for TCP mode
Returns: Status message
test_browser_connectivity¶
Tests if the browser can be launched and is working correctly.
Returns: Success message or error details
navigate_to_url¶
Navigates the browser to a specified URL.
Parameters:
- url (str): The URL to navigate to
Returns: Navigation result with page title and URL
take_page_screenshot¶
Takes a screenshot of the current page.
Parameters:
- name (str): Name for the screenshot
Returns: Success message with screenshot details
fill_login_form¶
Fills and submits a login form on the current page.
@mcp.tool()
async def fill_login_form(
username: str,
password: str,
username_selector: str = None,
password_selector: str = None,
submit_selector: str = None
) -> str
Parameters:
- username (str): Username to enter
- password (str): Password to enter
- username_selector (str): CSS selector for username field
- password_selector (str): CSS selector for password field
- submit_selector (str): CSS selector for submit button
Returns: Login result status
run_exploratory_test¶
Runs an exploratory test on a website using AI-driven heuristics.
@mcp.tool()
async def run_exploratory_test(
url: str,
max_depth: int = 3,
max_pages: int = 10,
include_forms: bool = True,
include_navigation: bool = True,
check_errors: bool = True
) -> str
Parameters:
- url (str): Starting URL for the test
- max_depth (int): Maximum navigation depth
- max_pages (int): Maximum pages to visit
- include_forms (bool): Test form interactions
- include_navigation (bool): Test navigation elements
- check_errors (bool): Check for JavaScript errors
Returns: Detailed test report with findings
run_accessibility_test¶
Runs accessibility tests based on WCAG standards.
Parameters:
- url (str): URL to test
- standard (str): Accessibility standard (WCAG2.1-A, WCAG2.1-AA, WCAG2.1-AAA)
Returns: Accessibility report with violations and recommendations
run_responsive_test¶
Tests responsive design across multiple viewports.
Parameters:
- url (str): URL to test
- viewports (list): List of viewport configurations
Returns: Responsive design analysis report
run_security_test¶
Runs basic security tests on a website.
Parameters:
- url (str): URL to test
Returns: Security findings report
HTTP REST API¶
The HTTP API is defined in app/http_server.py and provides the following endpoints:
GET /¶
Root endpoint providing API information.
Response:
GET /health¶
Health check endpoint.
Response:
POST /test/connectivity¶
Tests browser connectivity.
Request Body: None required
Response:
POST /navigate¶
Navigates to a specified URL.
Request Body:
Response:
POST /screenshot¶
Takes a screenshot of the current page.
Request Body:
Response:
{
"status": "success",
"screenshot": {
"name": "screenshot-name",
"timestamp": "2024-01-01T00:00:00Z"
}
}
POST /test/exploratory¶
Runs exploratory test with streaming progress updates.
Request Body:
{
"url": "https://example.com",
"max_depth": 3,
"max_pages": 10,
"include_forms": true,
"include_navigation": true,
"check_errors": true
}
Response: Server-Sent Events stream with progress updates
POST /test/accessibility¶
Runs accessibility test with streaming progress updates.
Request Body:
Response: Server-Sent Events stream with progress updates
POST /playbook/execute¶
Executes a test playbook.
Request Body:
{
"playbook": {
"name": "Login Test",
"steps": [
{
"action": "navigate",
"url": "https://example.com/login"
},
{
"action": "fill",
"selector": "#username",
"value": "testuser"
}
]
}
}
Response:
WebSocket /ws/{client_id}¶
WebSocket endpoint for real-time bidirectional communication.
Connection URL: ws://localhost:8765/ws/{client_id}
Message Format:
Data Models¶
Progress Update Model¶
Used for streaming test progress:
class ProgressUpdate(BaseModel):
category: str
phase: str
message: str
data: Optional[Dict[str, Any]] = None
timestamp: datetime
Test Result Model¶
Common structure for test results:
class TestResult(BaseModel):
status: str # "success", "warning", "error"
findings: Dict[str, List[Dict[str, Any]]]
summary: Dict[str, Any]
screenshots: List[Dict[str, str]]
duration: float
Playbook Model¶
Structure for test playbooks:
class PlaybookStep(BaseModel):
action: str
selector: Optional[str] = None
value: Optional[str] = None
url: Optional[str] = None
wait: Optional[int] = None
class Playbook(BaseModel):
name: str
description: Optional[str] = None
steps: List[PlaybookStep]
Error Responses¶
All APIs use consistent error response format:
{
"error": {
"type": "ValidationError",
"message": "Invalid URL format",
"details": {
"field": "url",
"reason": "URL must start with http:// or https://"
}
}
}
Common error types:
- ValidationError - Invalid input parameters
- BrowserError - Browser operation failed
- TimeoutError - Operation timed out
- NotFoundError - Resource not found
- InternalError - Server error
Authentication¶
Currently, no authentication is required for any endpoints. In production environments, consider implementing: - API key authentication - JWT tokens - OAuth 2.0
Rate Limiting¶
No rate limiting is currently implemented. For production use, consider: - Request throttling per IP - Concurrent connection limits - Resource usage quotas
Examples¶
Using MCP with Claude¶
# This would be called by Claude through the MCP protocol
result = await run_exploratory_test(
url="https://example.com",
max_depth=2,
include_forms=True
)
Using HTTP API with Python¶
import requests
import json
# Simple navigation
response = requests.post(
"http://localhost:8765/navigate",
json={"url": "https://example.com"}
)
print(response.json())
# Streaming test with SSE
import sseclient
response = requests.post(
"http://localhost:8765/test/accessibility",
json={"url": "https://example.com"},
stream=True
)
client = sseclient.SSEClient(response)
for event in client.events():
data = json.loads(event.data)
print(f"Progress: {data['message']}")
Using WebSocket with JavaScript¶
const ws = new WebSocket('ws://localhost:8765/ws/client123');
ws.onopen = () => {
ws.send(JSON.stringify({
type: 'command',
action: 'navigate',
params: { url: 'https://example.com' }
}));
};
ws.onmessage = (event) => {
const data = JSON.parse(event.data);
console.log('Received:', data);
};
Best Practices¶
- Error Handling: Always handle potential errors in responses
- Timeouts: Set appropriate timeouts for long-running operations
- Streaming: Use streaming endpoints for tests that may take time
- Resource Cleanup: Ensure proper cleanup after test completion
- Validation: Validate URLs and selectors before sending requests