Home Explore Help
Sign In
RISCI_ATOM
/
mastodon
mirror of https://github.com/tootsuite/mastodon.git
1
0
Fork 0
Files Issues 8 Wiki
Tree: 6c39125761
Branches Tags
mastodon
/
spec
/
lib
/
sanitize_config_spec.rb

sanitize_config_spec.rb 2.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. # frozen_string_literal: true
    2. 

  2. 

  3. require 'rails_helper'
    4. 

  4. 

  5. describe Sanitize::Config do
    6. 

  6.   describe '::MASTODON_STRICT' do
    7. 

  7.     subject { Sanitize::Config::MASTODON_STRICT }
    8. 

  8. 

  9.     it 'converts h1 to p strong' do
    10. 

  10.       expect(Sanitize.fragment('<h1>Foo</h1>', subject)).to eq '<p><strong>Foo</strong></p>'
    11. 

  11.     end
    12. 

  12. 

  13.     it 'keeps ul' do
    14. 

  14.       expect(Sanitize.fragment('<p>Check out:</p><ul><li>Foo</li><li>Bar</li></ul>', subject)).to eq '<p>Check out:</p><ul><li>Foo</li><li>Bar</li></ul>'
    15. 

  15.     end
    16. 

  16. 

  17.     it 'keeps start and reversed attributes of ol' do
    18. 

  18.       expect(Sanitize.fragment('<p>Check out:</p><ol start="3" reversed=""><li>Foo</li><li>Bar</li></ol>', subject)).to eq '<p>Check out:</p><ol start="3" reversed=""><li>Foo</li><li>Bar</li></ol>'
    19. 

  19.     end
    20. 

  20. 

  21.     it 'removes a without href' do
    22. 

  22.       expect(Sanitize.fragment('<a>Test</a>', subject)).to eq 'Test'
    23. 

  23.     end
    24. 

  24. 

  25.     it 'removes a without href and only keeps text content' do
    26. 

  26.       expect(Sanitize.fragment('<a><span class="invisible">foo&amp;</span><span>Test</span></a>', subject)).to eq 'foo&amp;Test'
    27. 

  27.     end
    28. 

  28. 

  29.     it 'removes a with unsupported scheme in href' do
    30. 

  30.       expect(Sanitize.fragment('<a href="foo://bar">Test</a>', subject)).to eq 'Test'
    31. 

  31.     end
    32. 

  32. 

  33.     it 'does not re-interpret HTML when removing unsupported links' do
    34. 

  34.       expect(Sanitize.fragment('<a href="foo://bar">Test&lt;a href="https://example.com"&gt;test&lt;/a&gt;</a>', subject)).to eq 'Test&lt;a href="https://example.com"&gt;test&lt;/a&gt;'
    35. 

  35.     end
    36. 

  36. 

  37.     it 'keeps a with href' do
    38. 

  38.       expect(Sanitize.fragment('<a href="http://example.com">Test</a>', subject)).to eq '<a href="http://example.com" rel="nofollow noopener noreferrer" target="_blank">Test</a>'
    39. 

  39.     end
    40. 

  40. 

  41.     it 'keeps a with translate="no"' do
    42. 

  42.       expect(Sanitize.fragment('<a href="http://example.com" translate="no">Test</a>', subject)).to eq '<a href="http://example.com" translate="no" rel="nofollow noopener noreferrer" target="_blank">Test</a>'
    43. 

  43.     end
    44. 

  44. 

  45.     it 'removes "translate" attribute with invalid value' do
    46. 

  46.       expect(Sanitize.fragment('<a href="http://example.com" translate="foo">Test</a>', subject)).to eq '<a href="http://example.com" rel="nofollow noopener noreferrer" target="_blank">Test</a>'
    47. 

  47.     end
    48. 

  48. 

  49.     it 'removes a with unparsable href' do
    50. 

  50.       expect(Sanitize.fragment('<a href=" https://google.fr">Test</a>', subject)).to eq 'Test'
    51. 

  51.     end
    52. 

  52. 

  53.     it 'keeps a with supported scheme and no host' do
    54. 

  54.       expect(Sanitize.fragment('<a href="dweb:/a/foo">Test</a>', subject)).to eq '<a href="dweb:/a/foo" rel="nofollow noopener noreferrer" target="_blank">Test</a>'
    55. 

  55.     end
    56. 

  56.   end
    57. 

  57. end
    58.