diff options
author | Mikel Lindsaar <raasdnil@gmail.com> | 2010-01-31 16:27:24 +1100 |
---|---|---|
committer | Jeremy Kemper <jeremy@bitsweat.net> | 2010-01-31 09:46:30 -0800 |
commit | 2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff (patch) | |
tree | c85ae3de692c1ac783e67f11e71b8336902d8341 /actionpack/test/template | |
parent | b3a028259f373fd58fea2171a1e9e8b2fe3e253a (diff) | |
download | rails-2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff.tar.gz rails-2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff.tar.bz2 rails-2ebea1c02d10e0fea26bd98d297a8f4d41dc1aff.zip |
deOMGifying Railties, Active Support, and Action Pack
Diffstat (limited to 'actionpack/test/template')
-rw-r--r-- | actionpack/test/template/html-scanner/sanitizer_test.rb | 4 | ||||
-rw-r--r-- | actionpack/test/template/subscriber_test.rb | 4 |
2 files changed, 4 insertions, 4 deletions
diff --git a/actionpack/test/template/html-scanner/sanitizer_test.rb b/actionpack/test/template/html-scanner/sanitizer_test.rb index e85a5c7abf..a6e760b0b6 100644 --- a/actionpack/test/template/html-scanner/sanitizer_test.rb +++ b/actionpack/test/template/html-scanner/sanitizer_test.rb @@ -48,7 +48,7 @@ class SanitizerTest < ActionController::TestCase assert_sanitized "a b c<script language=\"Javascript\">blah blah blah</script>d e f", "a b cd e f" end - # fucked + # TODO: Clean up def test_sanitize_js_handlers raw = %{onthis="do that" <a href="#" onclick="hello" name="foo" onbogus="remove me">hello</a>} assert_sanitized raw, %{onthis="do that" <a name="foo" href="#">hello</a>} @@ -193,7 +193,7 @@ class SanitizerTest < ActionController::TestCase assert_sanitized img_hack, "<img>" end - # fucked + # TODO: Clean up def test_should_sanitize_attributes assert_sanitized %(<SPAN title="'><script>alert()</script>">blah</SPAN>), %(<span title="'><script>alert()</script>">blah</span>) end diff --git a/actionpack/test/template/subscriber_test.rb b/actionpack/test/template/subscriber_test.rb index 5db2b16ac1..8bacab7088 100644 --- a/actionpack/test/template/subscriber_test.rb +++ b/actionpack/test/template/subscriber_test.rb @@ -33,7 +33,7 @@ class AVSubscriberTest < ActiveSupport::TestCase end def test_render_text_template - @view.render(:text => "OMG") + @view.render(:text => "TEXT") wait assert_equal 1, @logger.logged(:info).size @@ -41,7 +41,7 @@ class AVSubscriberTest < ActiveSupport::TestCase end def test_render_inline_template - @view.render(:inline => "<%= 'OMG' %>") + @view.render(:inline => "<%= 'TEXT' %>") wait assert_equal 1, @logger.logged(:info).size |