summaryrefslogtreecommitdiffstats
path: root/tests
diff options
context:
space:
mode:
authorThomas Tanghus <thomas@tanghus.net>2012-10-31 16:09:11 +0100
committerThomas Tanghus <thomas@tanghus.net>2012-10-31 16:09:11 +0100
commit5fc0c89a735229036a922629c5791444f8ab215f (patch)
tree11583d915305e71c554164dc5c5645391c1e099f /tests
parent5550cde03b34e86671652258e7f3bbc2a92b6111 (diff)
parent3813ee78c3ca89b46834dcce7d69b22bb1f4bbdb (diff)
downloadnextcloud-server-5fc0c89a735229036a922629c5791444f8ab215f.tar.gz
nextcloud-server-5fc0c89a735229036a922629c5791444f8ab215f.zip
Merge branch 'master' of github.com:owncloud/core into vcategories_db
Diffstat (limited to 'tests')
-rw-r--r--tests/lib/template.php71
1 files changed, 71 insertions, 0 deletions
diff --git a/tests/lib/template.php b/tests/lib/template.php
new file mode 100644
index 00000000000..d6d5a122f42
--- /dev/null
+++ b/tests/lib/template.php
@@ -0,0 +1,71 @@
+<?php
+/**
+* ownCloud
+*
+* @author Bernhard Posselt
+* @copyright 2012 Bernhard Posselt nukeawhale@gmail.com
+*
+* This library is free software; you can redistribute it and/or
+* modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
+* License as published by the Free Software Foundation; either
+* version 3 of the License, or any later version.
+*
+* This library is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+* GNU AFFERO GENERAL PUBLIC LICENSE for more details.
+*
+* You should have received a copy of the GNU Affero General Public
+* License along with this library. If not, see <http://www.gnu.org/licenses/>.
+*
+*/
+
+require_once("../lib/template.php");
+
+class Test_TemplateFunctions extends UnitTestCase {
+
+ public function testP(){
+ // FIXME: do we need more testcases?
+ $htmlString = "<script>alert('xss');</script>";
+ ob_start();
+ p($htmlString);
+ $result = ob_get_clean();
+ ob_end_clean();
+
+ $this->assertEqual("&lt;script&gt;alert(&#039;xss&#039;);&lt;/script&gt;", $result);
+ }
+
+ public function testPNormalString(){
+ $normalString = "This is a good string!";
+ ob_start();
+ p($normalString);
+ $result = ob_get_clean();
+ ob_end_clean();
+
+ $this->assertEqual("This is a good string!", $result);
+ }
+
+
+ public function testPrintUnescaped(){
+ $htmlString = "<script>alert('xss');</script>";
+
+ ob_start();
+ print_unescaped($htmlString);
+ $result = ob_get_clean();
+ ob_end_clean();
+
+ $this->assertEqual($htmlString, $result);
+ }
+
+ public function testPrintUnescapedNormalString(){
+ $normalString = "This is a good string!";
+ ob_start();
+ print_unescaped($normalString);
+ $result = ob_get_clean();
+ ob_end_clean();
+
+ $this->assertEqual("This is a good string!", $result);
+ }
+
+
+}