Back to Blog

How to test a web app without writing code

You can get real QA coverage on a web app without writing a single Playwright test. Here's a practical, plain-English workflow — what to test, the prompts to use, and how to read the results.

playbookno-codeqa
monito

How to test a web app without writing code

playbookno-codeqa
June 3, 2026

Most testing advice starts with "set up Playwright." That advice is written for teams with a QA engineer. If you're a founder shipping features at midnight, or a four-person team where everyone is building product, you don't need a second codebase — you need to know your signup flow still works before you deploy.

You can get there without writing test code. This is the workflow we'd actually use: what to test first, the exact plain-English prompts to run, and how to read what comes back. It takes an afternoon to set up and a few minutes per deploy after that.

Why "just write tests" doesn't fit a small team

Here's a Playwright test for a signup button:

await page.getByRole("button", { name: "Create account" }).click();
await expect(page).toHaveURL("/dashboard");

That line is correct today and a liability tomorrow. Rename the button to "Sign up" — it breaks. Move the form behind a plan picker — it breaks. Add an email-verification step — it breaks. None of those are bugs; they're just your product changing, which is the thing you're supposed to be doing. For a team without dedicated QA, the test suite turns into a pile of false alarms nobody has time to triage, and within a month you're back to manually clicking around. (We laid out the full menu of options in Playwright alternatives without the code.)

So let's skip the artifact that rots. The plan below describes behavior, not selectors.

Step 1: pick the flows that would actually hurt

Don't try to "test the app." Test the handful of flows where a silent failure costs you a customer or money. For most SaaS, that's:

  • Signup and login — if these break, growth stops and you won't get an error report, just silence.
  • Checkout / billing — a broken upgrade is lost revenue you find out about late.
  • Your one core action — the thing the product exists to do (send the invoice, publish the post, run the report).
  • Account recovery — password reset and "I'm locked out," because the people hitting these are already frustrated.

Five flows is plenty to start. You can describe all five in the time it'd take to configure a Playwright project.

Step 2: describe each flow in plain English

The unit of work here is a prompt, not a script. A good prompt names the flow, the happy path, and a few things that should go wrong gracefully. With Monito you point an AI QA agent at a URL and give it something like this:

Test the login flow on https://staging.yourapp.com/login.
1. Try logging in with an empty email — expect a validation error.
2. Try a badly formatted email — expect a validation error.
3. Log in with valid credentials (test@example.com / Password123!).
4. Verify it redirects to /dashboard and the user's name shows in the nav.
Also try logging in with the wrong password and confirm the error
message is clear and the account isn't leaked as existing or not.

Notice what you didn't write: no selectors, no waits, no assertions in code. You described intent. The agent figures out how to find the email field and what "a clear error" looks like. When you rename that field next month, the prompt still works — that's the entire point.

Keep prompts in a doc or, better, save them as reusable scenarios so a run is one command. The mechanics of that live in the scenario and run docs.

Step 3: let the agent explore, not just follow

The reason this beats a manual checklist isn't speed — it's that a good agent tries things you didn't list. You asked it to test an empty email; it will also try a 300-character email, a Unicode address, and pasting whitespace. You asked it to log in; it notices the spinner that never stops, the console error on page load, the 500 from an analytics call. You get coverage of the edges you'd never write down because you don't know they're broken yet.

This is the difference between "no-code testing" and "a recording of me doing the happy path." If you want the deeper version of how that exploration works, we wrote why AI QA agents find bugs your scripts miss.

Step 4: read the session, not just the verdict

A pass/fail bit is nearly useless on its own — when something fails you need to know what. A run should give you a full session you can hand to a developer:

  • Screenshots at each step, so you see the actual state when things went wrong.
  • The network log — the failed request, the 500, the call that hung.
  • Console errors — the unhandled exception that the UI swallowed.
  • A verdict with reasoning — "submitted a 61-character password, signup accepted it, login later rejected it" is an actionable bug; "FAIL" is not.

Treat a failed run like a bug report that wrote itself. Look at the screenshot, confirm it's real, fix it, and re-run the same prompt to verify — no test code to touch.

Step 5: run it before every deploy

The habit is the whole product. Wire your five prompts into a pre-deploy step — run them by hand against staging, or trigger them automatically against each preview URL from CI (the CI/CD guide covers the GitHub Action version). The prompts don't change unless your flows fundamentally change, so there's no maintenance drag. You ship, the agent bangs on the critical paths, you read the sessions, you merge.

The other no-code routes, briefly

An AI agent is what we'd reach for, but it's not the only no-code option, and the honest answer depends on your situation:

  • Record-and-replay (Tricentis Testim, Katalon, Mabl) — fastest path to a first test for a stable UI; you re-record when the UI shifts. Good for slow-moving flows.
  • Visual regression (Percy, Chromatic, Applitools) — catches layout and CSS breakage that functional tests miss, but it doesn't test behavior. It's a complement, not a substitute.
  • A written checklist — genuinely the right call for your first two or three flows. Free, forces you to decide what matters. It just doesn't scale past a handful of paths.

Most teams end up combining: an agent for behavioral coverage, a written checklist for the brand-new stuff, and visual diffing once the design stabilizes.

Your first afternoon

  1. List your five highest-stakes flows.
  2. Write a plain-English prompt for each — happy path plus two or three things that should fail gracefully.
  3. Run them against staging. Your first run on Monito is free; start with the quickstart.
  4. Read the sessions, fix what's broken, re-run to confirm.
  5. Add the five prompts to your pre-deploy routine.

A worked example of this on the highest-stakes flow of all is in how to test a Stripe checkout flow without writing code — same approach, applied to payments, including declined cards and 3D Secure.

That's it. No framework, no selectors, no suite to keep green — just a short list of things you care about, described in English, checked before every deploy.