ErbUtilTest

Namespace

MODULE ErbUtilTest::ERB

Methods

T

test_html_escape,
test_html_escape_is_html_safe,
test_html_escape_once,
test_html_escape_once_returns_safe_strings_when_passed_safe_strings,
test_html_escape_once_returns_unsafe_strings_when_passed_unsafe_strings,
test_html_escape_passes_html_escape_unmodified,
test_json_escape,
test_json_escape_does_not_alter_json_string_meaning,
test_json_escape_is_idempotent,
test_json_escape_returns_safe_strings_when_passed_safe_strings,
test_json_escape_returns_unsafe_strings_when_passed_unsafe_strings,
test_rest_in_ascii

Included Modules

ErbUtilTest::ERB::Util

Constants

HTML_ESCAPE_TEST_CASES	=	[ ['<br>', '<br>'], ['a & b', 'a & b'], ['"quoted" string', '"quoted" string'], ["'quoted' string", ''quoted' string'], [ '<script type="application/javascript">alert("You are \'pwned\'!")</script>', '<script type="application/javascript">alert("You are 'pwned'!")</script>' ] ]

JSON_ESCAPE_TEST_CASES	=	[ ['1', '1'], ['null', 'null'], ['"&"', '"\u0026"'], ['"</script>"', '"\u003c/script\u003e"'], ['["</script>"]', '["\u003c/script\u003e"]'], ['{"name":"</script>"}', '{"name":"\u003c/script\u003e"}'], [%({"name":"d\u2028h\u2029h"}), '{"name":"d\u2028h\u2029h"}'] ]

Instance Public methods

test_html_escape() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 40
def test_html_escape
  HTML_ESCAPE_TEST_CASES.each do |(raw, expected)|
    assert_equal expected, html_escape(raw)
  end
end

test_html_escape_is_html_safe() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 74
def test_html_escape_is_html_safe
  escaped = h("<p>")
  assert_equal "&lt;p&gt;", escaped
  assert escaped.html_safe?
end

test_html_escape_once() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 93
def test_html_escape_once
  assert_equal '1 &lt;&gt;&amp;&quot;&#39; 2 &amp; 3', html_escape_once('1 <>&"\ 2 &amp; 3')
  assert_equal " &#X27; &#x27; &#x03BB; &#X03bb; &quot; &#39; &lt; &gt; ", html_escape_once(" &#X27; &#x27; &#x03BB; &#X03bb; \" ' < > ")
end

test_html_escape_once_returns_safe_strings_when_passed_safe_strings() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 103
def test_html_escape_once_returns_safe_strings_when_passed_safe_strings
  value = html_escape_once('1 < 2 &amp; 3'.html_safe)
  assert value.html_safe?
end

test_html_escape_once_returns_unsafe_strings_when_passed_unsafe_strings() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 98
def test_html_escape_once_returns_unsafe_strings_when_passed_unsafe_strings
  value = html_escape_once('1 < 2 &amp; 3')
  assert !value.html_safe?
end

test_html_escape_passes_html_escape_unmodified() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 80
def test_html_escape_passes_html_escape_unmodified
  escaped = h("<p>".html_safe)
  assert_equal "<p>", escaped
  assert escaped.html_safe?
end

test_json_escape() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 46
def test_json_escape
  JSON_ESCAPE_TEST_CASES.each do |(raw, expected)|
    assert_equal expected, json_escape(raw)
  end
end

test_json_escape_does_not_alter_json_string_meaning() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 52
def test_json_escape_does_not_alter_json_string_meaning
  JSON_ESCAPE_TEST_CASES.each do |(raw, _)|
    assert_equal ActiveSupport::JSON.decode(raw), ActiveSupport::JSON.decode(json_escape(raw))
  end
end

test_json_escape_is_idempotent() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 58
def test_json_escape_is_idempotent
  JSON_ESCAPE_TEST_CASES.each do |(raw, _)|
    assert_equal json_escape(raw), json_escape(json_escape(raw))
  end
end

test_json_escape_returns_safe_strings_when_passed_safe_strings() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 69
def test_json_escape_returns_safe_strings_when_passed_safe_strings
  value = json_escape("asdf".html_safe)
  assert value.html_safe?
end

test_json_escape_returns_unsafe_strings_when_passed_unsafe_strings() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 64
def test_json_escape_returns_unsafe_strings_when_passed_unsafe_strings
  value = json_escape("asdf")
  assert !value.html_safe?
end

test_rest_in_ascii() Link

Source: show | on GitHub

# File actionview/test/template/erb_util_test.rb, line 86
def test_rest_in_ascii
  (0..127).to_a.map(&:chr).each do |chr|
    next if %Q('"&<>).include?(chr)
    assert_equal chr, html_escape(chr)
  end
end

Class ErbUtilTest < ActiveSupport::TestCase