How does testing a GraphQL API differ from testing a REST API?

REST exposes many URLs (one per resource) and signals success or failure through HTTP status codes. GraphQL exposes a single endpoint (typically POST /graphql) and the client sends a query describing exactly the fields it wants back.

The practical testing differences:

1. You test operations, not paths. There's no GET /users/42 to assert against — there's a user(id: 42) query and you verify the operation and its field selection.
2. Status codes stop being your error signal. A logically failed GraphQL request normally comes back as 200 OK with an errors array in the body. Asserting status === 200 proves almost nothing — you assert on body.data and body.errors.
3. The client controls the response shape. Because the query picks fields, you can (and should) test that requesting fewer fields returns fewer fields, and that requesting an unknown field is rejected.
4. The schema is a contract you can query. Introspection lets you discover and assert against types and nullability at runtime.

The mental model shift is the main thing interviewers probe: a tester who carries REST habits over will write status-code assertions that pass broken responses.