diff options
| author | Mikel Lindsaar <raasdnil@gmail.com> | 2010-01-31 16:27:24 +1100 |
|---|---|---|
| committer | Jeremy Kemper <jeremy@bitsweat.net> | 2010-01-31 09:46:30 -0800 |
| commit | 2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff (patch) | |
| tree | c85ae3de692c1ac783e67f11e71b8336902d8341 /actionpack/test/template/html-scanner/sanitizer_test.rb | |
| parent | b3a028259f373fd58fea2171a1e9e8b2fe3e253a (diff) | |
| download | rails-2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff.tar.gz rails-2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff.tar.bz2 rails-2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff.zip | |
deOMGifying Railties, Active Support, and Action Pack
Diffstat (limited to 'actionpack/test/template/html-scanner/sanitizer_test.rb')
| -rw-r--r-- | actionpack/test/template/html-scanner/sanitizer_test.rb | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/actionpack/test/template/html-scanner/sanitizer_test.rb b/actionpack/test/template/html-scanner/sanitizer_test.rb index e85a5c7abf..a6e760b0b6 100644 --- a/actionpack/test/template/html-scanner/sanitizer_test.rb +++ b/actionpack/test/template/html-scanner/sanitizer_test.rb @@ -48,7 +48,7 @@ class SanitizerTest < ActionController::TestCase assert_sanitized "a b c<script language=\"Javascript\">blah blah blah</script>d e f", "a b cd e f" end - # fucked + # TODO: Clean up def test_sanitize_js_handlers raw = %{onthis="do that" <a href="#" onclick="hello" name="foo" onbogus="remove me">hello</a>} assert_sanitized raw, %{onthis="do that" <a name="foo" href="#">hello</a>} @@ -193,7 +193,7 @@ class SanitizerTest < ActionController::TestCase assert_sanitized img_hack, "<img>" end - # fucked + # TODO: Clean up def test_should_sanitize_attributes assert_sanitized %(<SPAN title="'><script>alert()</script>">blah</SPAN>), %(<span title="'><script>alert()</script>">blah</span>) end |