Sha256: 52bd3ea179bc568aacfec02deea1b92d0dff66599e953b2c83b9d07172eb7b93
Contents?: true
Size: 1.44 KB
Versions: 24
Compression:
Stored size: 1.44 KB
Contents
require "helper"
class IntegrationTestHelpers < Loofah::TestCase
context ".strip_tags" do
context "on safe markup" do
it "strip out tags" do
assert_equal "omgwtfbbq!!1!", Loofah::Helpers.strip_tags("<div>omgwtfbbq</div><span>!!1!</span>")
end
end
context "on hack attack" do
it "strip escape html entities" do
bad_shit = "<script>alert('evil')</script>"
assert_equal bad_shit, Loofah::Helpers.strip_tags(bad_shit)
end
end
end
context ".sanitize" do
context "on safe markup" do
it "render the safe html" do
html = "<div>omgwtfbbq</div><span>!!1!</span>"
assert_equal html, Loofah::Helpers.sanitize(html)
end
end
context "on hack attack" do
it "strip the unsafe tags" do
assert_equal "alert('evil')<span>w00t</span>", Loofah::Helpers.sanitize("<script>alert('evil')</script><span>w00t</span>")
end
it "strips form tags" do
assert_equal "alert('evil')<span>w00t</span>", Loofah::Helpers.sanitize("<script>alert('evil')</script><form action=\"/foo/bar\" method=\"post\"><input></form><span>w00t</span>")
end
end
end
context ".sanitize_css" do
it "removes unsafe css properties" do
assert_equal "display: block; background-color: blue;", Loofah::Helpers.sanitize_css("display:block;background-image:url(http://www.ragingplatypus.com/i/cam-full.jpg);background-color:blue")
end
end
end
Version data entries
24 entries across 24 versions & 9 rubygems