summaryrefslogtreecommitdiffstats
path: root/tests
diff options
context:
space:
mode:
authorLukas Reschke <lukas@statuscode.ch>2014-04-26 12:29:36 +0200
committerLukas Reschke <lukas@statuscode.ch>2014-04-26 12:29:36 +0200
commit96c06c14d8671e6ebfad41e1f777269bd69c837c (patch)
tree89bf8c075cf3140032807766a7c9f45f38487001 /tests
parentc591cf0836720a4cfc6d441b363ece46ed19eadc (diff)
parentf45080e8116bc06a95c5ff2b2bfa92029fdb2590 (diff)
downloadnextcloud-server-96c06c14d8671e6ebfad41e1f777269bd69c837c.tar.gz
nextcloud-server-96c06c14d8671e6ebfad41e1f777269bd69c837c.zip
Merge pull request #8341 from owncloud/template-tests-output-buffering
Improve Template Tests by Removing Manual Output Buffering
Diffstat (limited to 'tests')
-rw-r--r--tests/lib/template.php50
1 files changed, 15 insertions, 35 deletions
diff --git a/tests/lib/template.php b/tests/lib/template.php
index b3d0975b793..eedf688721d 100644
--- a/tests/lib/template.php
+++ b/tests/lib/template.php
@@ -27,52 +27,32 @@ class Test_TemplateFunctions extends PHPUnit_Framework_TestCase {
$loader->load('OC_Template');
}
- public function testP() {
- $badString = '<img onload="alert(1)" />';
- ob_start();
- p($badString);
- $result = ob_get_clean();
- $this->assertEquals('&lt;img onload=&quot;alert(1)&quot; /&gt;', $result);
-
- $badString = "<script>alert('Hacked!');</script>";
- ob_start();
- p($badString);
- $result = ob_get_clean();
- $this->assertEquals('&lt;script&gt;alert(&#039;Hacked!&#039;);&lt;/script&gt;', $result);
-
- $goodString = 'This is a good string without HTML.';
- ob_start();
- p($goodString);
- $result = ob_get_clean();
- $this->assertEquals('This is a good string without HTML.', $result);
+ public function testPJavaScript() {
+ $this->expectOutputString('&lt;img onload=&quot;alert(1)&quot; /&gt;');
+ p('<img onload="alert(1)" />');
}
- public function testPNormalString() {
- $normalString = "This is a good string!";
- ob_start();
- p($normalString);
- $result = ob_get_clean();
+ public function testPJavaScriptWithScriptTags() {
+ $this->expectOutputString('&lt;script&gt;alert(&#039;Hacked!&#039;);&lt;/script&gt;');
+ p("<script>alert('Hacked!');</script>");
+ }
- $this->assertEquals("This is a good string!", $result);
+ public function testPNormalString() {
+ $string = 'This is a good string without HTML.';
+ $this->expectOutputString($string);
+ p($string);
}
public function testPrintUnescaped() {
$htmlString = "<script>alert('xss');</script>";
-
- ob_start();
+ $this->expectOutputString($htmlString);
print_unescaped($htmlString);
- $result = ob_get_clean();
-
- $this->assertEquals($htmlString, $result);
}
public function testPrintUnescapedNormalString() {
- $normalString = "This is a good string!";
- ob_start();
- print_unescaped($normalString);
- $result = ob_get_clean();
-
- $this->assertEquals("This is a good string!", $result);
+ $string = 'This is a good string!';
+ $this->expectOutputString($string);
+ print_unescaped($string);
}
// ---------------------------------------------------------------------------