close
Productsdrop-down
Headspin EnterpriseAudio-Visual PlatformRegression IntelligenceCreate Your Own Lab
Resourcesdrop-down
DocumentationGlobal Device InfrastructureRepositoryFAQsIntegrationsWebinars & EventsPodcastsConvergeBlogsWhitepapersTutorialsCase StudiesLatest Feeds
Companydrop-down
About HeadSpinHeadSpin & Appium ProPartnersLeadership TeamCareersPress Resources
Pricing
Log inBook Free Trial
Login
Products
Resources
Company
Pricing
Log inConnect Now
HeadSpin Platform
Automated & manual testing made easy through data science insights.
Differentiating capabilities:
  • Extensive end-to-end automation of QA process
  • Comparative analysis of app performance against peers
  • Continuous monitoring of app performance using synthetic data for higher availability of apps
  • Easy-to-use developer friendly platform

ADD-ON PRODUCTS

Audio Visual Platform
Audio-Visual Platform
One Platform For All Your Media Testing
CYOL
Create Your Own Lab
Utilize Your Own Device Infrastructure With HeadSpin

ENTERPRISE ADDON PRODUCTS

Regression
Regression Intelligence
Automated Solution To Solve Regression Issues

SUPPORT

Documentation
Documentation
Global Device Infrastructure
Global Device Infrastructure
Repository
Repository
FAQS
FAQS
Integrations
Integrations

RESOURCE CENTER

Webinars
Webinars & Events
Podcast
Podcast
Converge
Converge
Blogs
Blogs
Whitepapers
Whitepapers

Resource Center

Tutorials
Tutorials
Case Study
Case Studies
News
Latest Feeds

ABOUT US

About Headspin
About HeadSpin
Appium Pro
HeadSpin & Appium Pro

ABOUT US

Global Device Infrastructure
Partners
Leadership Team
Leadership Team

ABOUT US

Careers
Careers
News
Press Resources
HeadSpin Documentation
Documentation
Changes
Changelog
Getting Started
UI Master Guide
A/V Box
Additional Reference Links
User Roles and Access Permissions
Using Espresso
Using XCTest
Supported Devices and OS Versions in HeadSpin
Integrations
Katalon Studio - Using Katalon with HeadSpin Devices
Tosca - Using Tricentis' Tosca with HeadSpin
Using ACCELQ and HeadSpin
iOS 17 Compatibility and Support
Platform
Unlocking Devices with Pintap
Using the Cookie Tool
Using the HS Tunnel Tool
Remote Functional Testing
Configuring Single Sign-On
Remote Debugging
Platform Command Line Interface
Bring Your Own Device
API Reference
API for Automation Configuration
Basic Device API
App Management
Android Device API
iOS Device API
Using Reservation API
Device Cleaning API
Data Lifecycle Policy API
Session API
Session Annotation API
Session Analysis API
Measuring Visual Load Time in Sessions
Performance Monitoring API
Regression Intelligence API
Providing Feedback
Device Selectors API
Session Status Reliability API
Usage Report
Team API
Network Config API
Auth API
Analysis Config API
Admin API
API for Hardware and Grafana
Using the bluetooth API
Using Audio API
Using A/V Box API
Replica Database API
Grafana API
API for Biometric Testing
PBox Enclosure API
Mini Remote
Using Mini Remote
Automation
Getting Started with Appium
API Tokens
Browser Automation
Chrome DevTools
Recommended network_security_config.xml for network capture
Appium Load Balancer
Appium Capabilities
Migrating to Appium 2
Selenium Capabilities
Appium Inspector Integration
Audio
Audio Setup - Bluetooth Setup and Limitations
Audio Use Cases and Troubleshooting with HeadSpin
Biometrics SDK
Testing biometric authentication in Android
Testing Touch and Face ID in iOS
Performance Analysis
Waterfall UI
Burst UI
AI-based Issue Detection Engine
AI-based Quality of Experience Monitoring
Video Quality MOS
Providing Feedback on HeadSpin Performance Sessions
Annotating Your Session
Image Matching Methods Explained
Performance Monitoring
Performance Monitoring UI
Replica DB
Replica DB UI
Grafana
Grafana Dashboards
Grafana UI Overview
On-Premise Deployments
User Management
Architecture
PBox Data Sheet
PBox Rack Installation
On-Premise Deployment Options
On-Premise Fully Managed Network Admin
iOS Provisioning
New Devices
Upgrade
Pusher
File Layout
Android Network Capture Setup
Network Requirements and Audio Configuration Options
Deprecated Documentation
App API
iOS and Android Device API
Instrumentation API
TestProject - Using Tricentis' TestProject with HeadSpin
Legal Matters
Downloadable Components License Agreement
Home
>
Documentation
>
Instrumentation API

Instrumentation API

Table of Contents

  1. Overview
  2. Use Cases
  3. Instrumentations
  4. API

Overview

Often times, an app needs to be prepared for testing in a special way in which the app development team cannot provide for many reasons. Instrumention should be used to prepare a performance profiler-ready version of the original app.

Most tests and automations done on HeadSpin already include instrumentation as a part of the process, and you will not need to use this API.

Use Cases

Some use cases include, but are not limited to:

  • Allowing a custom user root certificate in order to decrypt traffic.
  • Allowing traffic from Adobe Air-based apps to be decrypted without a warning from the Air runtime during profiling
  • Unpinning certificate pinning from OkHTTP3 apps
  • Making Webview-based apps remote-debuggable

All of which our instrumentation engines provide support.

Instrumentations

Listed below are all available instrumentation engines for Android platform.

Platforms Instrumentation Name Description
android NetworkSecurity Replaces the network_security_config.xml with one that allows the HeadSpin root certificate. This is a custom user root certificate. On Android 7+ this is required by most apps to decrypt traffic.
android Debuggable Make the app debuggable so that debug tools can be connected, for example memory dumps.
android AdobeAirCertCheck Allows traffic from Adobe Air-based apps to be decrypted without a warning from the Air runtime. Without this, various dialogs might appear from Air during profiling.
android ActivityCollector When used with force_exported=true, all activities are made public so that they can be launched from automation.
android OkHttp3CertPinner Removes certificate pinning from OkHttp3 apps.
android CertificateExceptionCheck Removes assorted custom certificate pinning.
android WebviewDebugger Make WebView-based Activities remote-debuggable.
android HardwareAccelerated Allow graphics related metrics to be extracted.

👋 Instrumentations that don't apply to an app will noop and leave the app untouched. For instance, a non-Adobe Air app will not be affected by AdobeAirCertCheck instrumentation, although some analysis time still incur.

API

The following are available instrumentation API endpoints.

Download an instrumented app

Before downloading or instrumenting, the base apk should be uploaded via Headspin's App upload API endpoint . Alternatively, the <code class="dcode">/v0/apps/apk/instrument</code> route below can be used to upload an apk and then download an instrumented version in one API call.

When using <code class="dcode">cURL</code>, the app will be downloaded through HeadSpin data server (not API server), and therefore an <code class="dcode">-L</code> flag will be necessary.

Route Method
/v0/apps/apk/package/{package_name}/download GET

Optional Parameters

To download an existing app with specific instrumentations, use the ?instr parameter:

  • <code class="dcode">?instr={instr1}</code>
  • <code class="dcode">?instr={instr1}&instr={instr2}&instr={instr3}</code>

If no <code class="dcode">?instr</code> is given, an unedited, uninstrumented version of the app will be downloaded.

If the requested app with those instrumentations doesn't already exist in our database, a <code class="dcode">404</code> http response will be sent. Instead of the <code class="dcode">404</code> response, if you wish to create and download a new, instrumented version of the app, use the <code class="dcode">?instrument_in_place</code> parameter:

  • <code class="dcode">?instrument_in_place=true</code> to create and download a version of the app with the specified instrumentations if one is not found in the database.

Example

To download a previously store, unedited APK:


curl -L https://<your_api_token>@api-dev.headspin.io/v0/apps/apk/package/io.headspin.healthtest/download -o HealthTest.apk

To download a previously stored APK with the NetworkSecurity instrument applied:


curl -L https://<your_api_token>@api-dev.headspin.io/v0/apps/apk/package/io.headspin.healthtest/download?instr=NetworkSecurity -o HealthTest.apk

To download a previously stored APK with both the NetworkSecurity and ActivityCollector instruments applied, or apply these instrumentations if not found:


curl -L https://<your_api_token>@api-dev.headspin.io/v0/apps/apk/package/io.headspin.healthtest/download?instr=NetworkSecurity&instr=ActivityCollector?instrument_in_place=true -o HealthTest.apk

The above two examples only work if there is already an existing APK with these instrumentation in our database.

Response

  • A JSON object: <code class="dcode">{"status": "App not found", "status_code": 404}</code> if there's no package with that name in HeadSpin's apk database. Check that you have the correct package name, or use the <code class="dcode">/v0/apps/apk/instrument</code> route.
  • The binary of the instrumented apk if the app package was found. When using <code class="dcode">cURL</code>, to save this as a file, use the flag <code class="dcode">-o {filename}</code>.

Apply instruments to an app in the database apk ID

You can apply instrumentations to an existing apk and store it in the database with the following endpoint:

Route Method
/v0/apps/apk/{apk_id}/instrument POST

The desired instruments should be declared with the use of query parameters.

Parameters

To apply instrumentations, use the <code class="dcode">?instr</code> parameter:

  • <code class="dcode">?instr={instr1}</code>
  • <code class="dcode">?instr={instr1}&instr={instr2}&instr={instr3}</code>
  • <code class="dcode">?force_exported=true</code> to make private activities public. You should only use it if you want to test the functionalities of your app's private activities. This is <code class="dcode">false</code> by default.

Example

To apply the <code class="dcode">NetworkSecurity</code> and <code class="dcode">ActivityCollector</code> instrumentations to an apk in the database:


curl -X POST "https://<your_api_token>@api-dev.headspin.io/v0/apps/apk/{apk_id}/instrument?instr=NetworkSecurity&instr=ActivityCollector"

Response

  • <code class="dcode">{"instrumented_apk_id": "&lt;apk-id>"}</code> if the apk is successfully instrumented.
  • <code class="dcode">{"status_code": 404, "status": "Failed to find apk with apk_id &lt;apk-id>."}</code> if the apk is not found.

Apply instruments to an app in the database by package name

You can apply instrumentations to an existing apk (the previously uploaded base apk) and store it in the database with the following endpoint:

Route Method
/v0/apps/apk/package/{package_name}/instrument POST

Request Body

The request body should contain a JSON object, <code class="dcode">{"instrs"}</code>, with the list containing the names of the desired instruments. For example: <code class="dcode">{"instrs": ["NetworkSecurity", "ActivityCollector"]}</code>

To include this in the body of your cURL request, use the -d flag.

Optional Parameters

  • <code class="dcode">?force_exported=true</code> to make private activities public. You should only use it if you want to test the functionalities of your app's private activities. This is false by default.

Example

To apply the NetworkSecurity and ActivityCollector instrumenations to a base HealthTest app in the database:


curl https://<your_api_token>@api-dev.headspin.io/v0/apps/apk/package/io.headspin.healthtest/instrument -d '{"instrs": ["NetworkSecurity", "ActivityCollector"] }'

Response

  • A JSON object: <code class="dcode">{"status": "App not found", "status_code": 404}</code> if there's no package with that name in HeadSpin's apk database. Check that you have the correct package name, or use the <code class="dcode">/v0/apps/apk/instrument</code> route.

Upload an apk then download an instrumented version

When using <code class="dcode">cURL</code>, the app will be downloaded through HeadSpin data server (not API server), and therefore an -L flag will be necessary.

Route Method
/v0/apps/apk/instrument POST

Request Body

The body should include a binary of your apk. To include your apk binary, use the <code class="dcode">cURL</code> argument <code class="dcode">--data-binary "@path/to/your/apk.apk"</code>.

Optional Parameters

To download an existing app with specific instrumentations, use the ?instr parameter:

  • <code class="dcode">?instr={instr1}</code>
  • <code class="dcode">?instr={instr1}&instr={instr2}&instr={instr3}</code>
  • <code class="dcode">?force_exported=true</code> to make private activities public. You should only use it if you want to test the functionalities of your app's private activities. This is <code class="dcode">false</code> by default.

If no ?instr is given, a list of default instrumentations will be applied. That list is:

  • <code class="dcode">NetworkSecurity</code>
  • <code class="dcode">Debuggable</code>

Example


curl -X POST -L https://<your_api_token>@api-dev.headspin.io/v0/apps/apk/instrument --data-binary "@healthtest.apk" -o healthtest-instrumented.apk

Response

  • The binary of the instrumented apk saved to your specified location. When using <code class="dcode">cURL</code>, to save this as a file, use the flag <code class="dcode">-o {path/filename}</code>.
Home
>
Docs
>
Instrumentation API

Discover how HeadSpin can empower your business with superior testing capabilities

Our Platform enables you to:
accelerate time-to-market
Accelerate time-to-market, gaining a competitive edge
faster development cycles
Boost developer/QA productivity with faster development cycles
automated buil-over-build regression testing
Automate build-over-build regression testing for consistent results
gain better visibility into functional & performance issues
Gain better visibility into functional and performance issues
reduce mean time
Reduce mean time to identify/resolve during test, QA, and production
evaluate audio, video & qoe
Evaluate audio, video, and content quality of experience (QoE) effortlessly
The trusted choice for global enterprises
Close