X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=tests%2Fplugins%2FPluginMarkdownTest.php;h=96891f1f39788b96faaf27f2a9a9a07609c3ab68;hb=d449f79a0d7ca808b891baf73b9e25ce7f7e48fe;hp=455f5ba7c7d95038b93fdd58af34f76adeea2f52;hpb=53603f582300fc2709932b62652a5acfed088910;p=github%2Fshaarli%2FShaarli.git diff --git a/tests/plugins/PluginMarkdownTest.php b/tests/plugins/PluginMarkdownTest.php index 455f5ba7..96891f1f 100644 --- a/tests/plugins/PluginMarkdownTest.php +++ b/tests/plugins/PluginMarkdownTest.php @@ -1,4 +1,5 @@ conf = new ConfigManager('tests/utils/config/configJson'); + $this->conf->set('security.allowed_protocols', ['ftp', 'magnet']); } /** * Test render_linklist hook. * Only check that there is basic markdown rendering. */ - function testMarkdownLinklist() + public function testMarkdownLinklist() { $markdown = '# My title' . PHP_EOL . 'Very interesting content.'; $data = array( @@ -36,7 +44,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase ), ); - $data = hook_markdown_render_linklist($data); + $data = hook_markdown_render_linklist($data, $this->conf); $this->assertNotFalse(strpos($data['links'][0]['description'], '
')); } @@ -45,7 +53,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase * Test render_daily hook. * Only check that there is basic markdown rendering. */ - function testMarkdownDaily() + public function testMarkdownDaily() { $markdown = '# My title' . PHP_EOL . 'Very interesting content.'; $data = array( @@ -61,7 +69,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase ), ); - $data = hook_markdown_render_daily($data); + $data = hook_markdown_render_daily($data, $this->conf); $this->assertNotFalse(strpos($data['cols'][0][0]['formatedDescription'], '
'));
}
@@ -69,7 +77,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
/**
* Test reverse_text2clickable().
*/
- function testReverseText2clickable()
+ public function testReverseText2clickable()
{
$text = 'stuff http://hello.there/is=someone#here otherstuff';
$clickableText = text2clickable($text, '');
@@ -80,7 +88,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
/**
* Test reverse_nl2br().
*/
- function testReverseNl2br()
+ public function testReverseNl2br()
{
$text = 'stuff' . PHP_EOL . 'otherstuff';
$processedText = nl2br($text);
@@ -91,7 +99,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
/**
* Test reverse_space2nbsp().
*/
- function testReverseSpace2nbsp()
+ public function testReverseSpace2nbsp()
{
$text = ' stuff' . PHP_EOL . ' otherstuff and another';
$processedText = space2nbsp($text);
@@ -100,13 +108,132 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
}
/**
- * Test reset_quote_tags()
+ * Test sanitize_html().
*/
- function testResetQuoteTags()
+ public function testSanitizeHtml()
{
- $text = '> quote1'. PHP_EOL . ' > quote2 ' . PHP_EOL . 'noquote';
- $processedText = escape($text);
- $reversedText = reset_quote_tags($processedText);
- $this->assertEquals($text, $reversedText);
+ $input = '< script src="js.js"/>';
+ $input .= '< script attr>alert(\'xss\');';
+ $input .= '';
+ $output = escape($input);
+ $input .= 'link';
+ $output .= 'link';
+ $input .= 'link';
+ $output .= 'link';
+ $this->assertEquals($output, sanitize_html($input));
+ // Do not touch escaped HTML.
+ $input = escape($input);
+ $this->assertEquals($input, sanitize_html($input));
+ }
+
+ /**
+ * Test the no markdown tag.
+ */
+ public function testNoMarkdownTag()
+ {
+ $str = 'All _work_ and `no play` makes Jack a *dull* boy.';
+ $data = array(
+ 'links' => array(array(
+ 'description' => $str,
+ 'tags' => NO_MD_TAG,
+ 'taglist' => array(NO_MD_TAG),
+ ))
+ );
+
+ $processed = hook_markdown_render_linklist($data, $this->conf);
+ $this->assertEquals($str, $processed['links'][0]['description']);
+
+ $processed = hook_markdown_render_feed($data, $this->conf);
+ $this->assertEquals($str, $processed['links'][0]['description']);
+
+ $data = array(
+ // Columns data
+ 'cols' => array(
+ // First, second, third.
+ 0 => array(
+ // nth link
+ 0 => array(
+ 'formatedDescription' => $str,
+ 'tags' => NO_MD_TAG,
+ 'taglist' => array(),
+ ),
+ ),
+ ),
+ );
+
+ $data = hook_markdown_render_daily($data, $this->conf);
+ $this->assertEquals($str, $data['cols'][0][0]['formatedDescription']);
+ }
+
+ /**
+ * Test that a close value to nomarkdown is not understand as nomarkdown (previous value `.nomarkdown`).
+ */
+ public function testNoMarkdownNotExcactlyMatching()
+ {
+ $str = 'All _work_ and `no play` makes Jack a *dull* boy.';
+ $data = array(
+ 'links' => array(array(
+ 'description' => $str,
+ 'tags' => '.' . NO_MD_TAG,
+ 'taglist' => array('.'. NO_MD_TAG),
+ ))
+ );
+
+ $data = hook_markdown_render_feed($data, $this->conf);
+ $this->assertContains('', $data['links'][0]['description']);
+ }
+
+ /**
+ * Make sure that the generated HTML match the reference HTML file.
+ */
+ public function testMarkdownGlobalProcessDescription()
+ {
+ $md = file_get_contents('tests/plugins/resources/markdown.md');
+ $md = format_description($md);
+ $html = file_get_contents('tests/plugins/resources/markdown.html');
+
+ $data = process_markdown(
+ $md,
+ $this->conf->get('security.markdown_escape', true),
+ $this->conf->get('security.allowed_protocols')
+ );
+ $this->assertEquals($html, $data);
+ }
+
+ /**
+ * Make sure that the HTML tags are escaped.
+ */
+ public function testMarkdownWithHtmlEscape()
+ {
+ $md = '**strong** strong';
+ $html = ' strong <strong>strong</strong> strong strong