diff options
| author | Klaus Weidenbach <Klaus.Weidenbach@gmx.net> | 2016-10-12 21:50:49 +0200 |
|---|---|---|
| committer | Klaus Weidenbach <Klaus.Weidenbach@gmx.net> | 2016-10-19 00:46:41 +0200 |
| commit | b92e3ca3ee3f8bed1ff52311d29b4ce1e4297a83 (patch) | |
| tree | fe4d742c662b65605d0b6fee8fbf3f5a9e9b66e5 /tests/unit/AntiXSSTest.php | |
| parent | 2e1046220a70bb751c39854b881e86feb5d39149 (diff) | |
| download | volse-hubzilla-b92e3ca3ee3f8bed1ff52311d29b4ce1e4297a83.tar.gz volse-hubzilla-b92e3ca3ee3f8bed1ff52311d29b4ce1e4297a83.tar.bz2 volse-hubzilla-b92e3ca3ee3f8bed1ff52311d29b4ce1e4297a83.zip | |
[TASK] Restructure tests/ folder.
Move unit tests to tests/unit/. Get the old still working UnitTests
into a working state again.
Updated composer.json with required-dev packages.
Create a new folder tests/acceptance for Behat functional/acceptance
testing. Add a first Feature draft of a Behat functional test for
local login.
Diffstat (limited to 'tests/unit/AntiXSSTest.php')
| -rw-r--r-- | tests/unit/AntiXSSTest.php | 73 |
1 files changed, 73 insertions, 0 deletions
diff --git a/tests/unit/AntiXSSTest.php b/tests/unit/AntiXSSTest.php new file mode 100644 index 000000000..b45042a1e --- /dev/null +++ b/tests/unit/AntiXSSTest.php @@ -0,0 +1,73 @@ +<?php +/** + * tests several functions which are used to prevent xss attacks + * + * @package test.util + */ + +use PHPUnit\Framework\TestCase; + +require_once('include/text.php'); + +class AntiXSSTest extends TestCase { + + /** + * test, that tags are escaped + */ + public function testEscapeTags() { + $invalidstring='<submit type="button" onclick="alert(\'failed!\');" />'; + + $validstring=notags($invalidstring); + $escapedString=escape_tags($invalidstring); + + $this->assertEquals('[submit type="button" onclick="alert(\'failed!\');" /]', $validstring); + $this->assertEquals("<submit type="button" onclick="alert('failed!');" />", $escapedString); + } + + /** + *xmlify and unxmlify + */ + public function testXmlify() { + $text="<tag>I want to break\n this!11!<?hard?></tag>"; + $xml=xmlify($text); + $retext=unxmlify($text); + + $this->assertEquals($text, $retext); + } + + /** + * xmlify and put in a document + */ + public function testXmlifyDocument() { + $tag="<tag>I want to break</tag>"; + $xml=xmlify($tag); + $text='<text>'.$xml.'</text>'; + + $xml_parser=xml_parser_create(); + //should be possible to parse it + $values=array(); $index=array(); + $this->assertEquals(1, xml_parse_into_struct($xml_parser, $text, $values, $index)); + + $this->assertEquals(array('TEXT'=>array(0)), + $index); + $this->assertEquals(array(array('tag'=>'TEXT', 'type'=>'complete', 'level'=>1, 'value'=>$tag)), + $values); + + xml_parser_free($xml_parser); + } + + /** + * test hex2bin and reverse + */ + public function testHex2Bin() { + $this->assertEquals(-3, hex2bin(bin2hex(-3))); + $this->assertEquals(0, hex2bin(bin2hex(0))); + $this->assertEquals(12, hex2bin(bin2hex(12))); + $this->assertEquals(PHP_INT_MAX, hex2bin(bin2hex(PHP_INT_MAX))); + } + + //function qp, quick and dirty?? + //get_mentions + //get_contact_block, bis Zeile 538 +} +?> |