Sha256: db25dc33842802372516b6cc101a5b182c57b3277069e34d6ed9a562c0e477e6
Contents?: true
Size: 1.29 KB
Versions: 6
Compression:
Stored size: 1.29 KB
Contents
require 'helper'
class TestSlimCodeEscaping < TestSlim
def test_escaping_evil_method
source = %q{
<p>= evil_method
}
assert_html '<p><script>do_something_evil();</script></p>', source
end
def test_render_without_html_safe
source = %q{
<p>= "<strong>Hello World\\n, meet \\"Slim\\"</strong>."
}
assert_html "<p><strong>Hello World\n, meet \"Slim\"</strong>.</p>", source
end
def test_render_with_html_safe_false
source = %q{
<p>= HtmlUnsafeString.new("<strong>Hello World\\n, meet \\"Slim\\"</strong>.")
}
assert_html "<p><strong>Hello World\n, meet \"Slim\"</strong>.</p>", source, :use_html_safe => true
end
def test_render_with_html_safe_true
source = %q{
<p>= HtmlSafeString.new("<strong>Hello World\\n, meet \\"Slim\\"</strong>.")
}
assert_html "<p><strong>Hello World\n, meet \"Slim\"</strong>.</p>", source, :use_html_safe => true
end
def test_render_with_disable_escape_false
source = %q{
= "<p>Hello</p>"
== "<p>World</p>"
}
assert_html "<p>Hello</p><p>World</p>", source
end
def test_render_with_disable_escape_true
source = %q{
= "<p>Hello</p>"
== "<p>World</p>"
}
assert_html "<p>Hello</p><p>World</p>", source, :disable_escape => true
end
end
Version data entries
6 entries across 6 versions & 1 rubygems