diff options
| author | Aurélien Tamisier <virtualtam+github@flibidi.net> | 2019-01-18 21:26:03 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-01-18 21:26:03 +0100 |
| commit | ff3b5dc5542ec150f0d9b447394364a15e9156d0 (patch) | |
| tree | 5e926e36816d510e3b3a10e20b94c23f43b55092 /tests/http/UrlUtils/WhitelistProtocolsTest.php | |
| parent | 1826e383ecf501302974132fd443cf1ca06e10f6 (diff) | |
| parent | dea72c711ff740b3b829d238fcf85648465143a0 (diff) | |
| download | Shaarli-ff3b5dc5542ec150f0d9b447394364a15e9156d0.tar.gz Shaarli-ff3b5dc5542ec150f0d9b447394364a15e9156d0.tar.zst Shaarli-ff3b5dc5542ec150f0d9b447394364a15e9156d0.zip | |
Merge pull request #1248 from virtualtam/refactor/namespacing
Ensure all PHP classes are properly namespaced
Diffstat (limited to 'tests/http/UrlUtils/WhitelistProtocolsTest.php')
| -rw-r--r-- | tests/http/UrlUtils/WhitelistProtocolsTest.php | 63 |
1 files changed, 63 insertions, 0 deletions
diff --git a/tests/http/UrlUtils/WhitelistProtocolsTest.php b/tests/http/UrlUtils/WhitelistProtocolsTest.php new file mode 100644 index 00000000..69512dbd --- /dev/null +++ b/tests/http/UrlUtils/WhitelistProtocolsTest.php | |||
| @@ -0,0 +1,63 @@ | |||
| 1 | <?php | ||
| 2 | |||
| 3 | namespace Shaarli\Http; | ||
| 4 | |||
| 5 | require_once 'application/http/UrlUtils.php'; | ||
| 6 | |||
| 7 | /** | ||
| 8 | * Class WhitelistProtocolsTest | ||
| 9 | * | ||
| 10 | * Test whitelist_protocols() function of UrlUtils. | ||
| 11 | */ | ||
| 12 | class WhitelistProtocolsTest extends \PHPUnit\Framework\TestCase | ||
| 13 | { | ||
| 14 | /** | ||
| 15 | * Test whitelist_protocols() on a note (relative URL). | ||
| 16 | */ | ||
| 17 | public function testWhitelistProtocolsRelative() | ||
| 18 | { | ||
| 19 | $whitelist = ['ftp', 'magnet']; | ||
| 20 | $url = '?12443564'; | ||
| 21 | $this->assertEquals($url, whitelist_protocols($url, $whitelist)); | ||
| 22 | $url = '/path.jpg'; | ||
| 23 | $this->assertEquals($url, whitelist_protocols($url, $whitelist)); | ||
| 24 | } | ||
| 25 | |||
| 26 | /** | ||
| 27 | * Test whitelist_protocols() on a note (relative URL). | ||
| 28 | */ | ||
| 29 | public function testWhitelistProtocolMissing() | ||
| 30 | { | ||
| 31 | $whitelist = ['ftp', 'magnet']; | ||
| 32 | $url = 'test.tld/path/?query=value#hash'; | ||
| 33 | $this->assertEquals('http://'. $url, whitelist_protocols($url, $whitelist)); | ||
| 34 | } | ||
| 35 | |||
| 36 | /** | ||
| 37 | * Test whitelist_protocols() with allowed protocols. | ||
| 38 | */ | ||
| 39 | public function testWhitelistAllowedProtocol() | ||
| 40 | { | ||
| 41 | $whitelist = ['ftp', 'magnet']; | ||
| 42 | $url = 'http://test.tld/path/?query=value#hash'; | ||
| 43 | $this->assertEquals($url, whitelist_protocols($url, $whitelist)); | ||
| 44 | $url = 'https://test.tld/path/?query=value#hash'; | ||
| 45 | $this->assertEquals($url, whitelist_protocols($url, $whitelist)); | ||
| 46 | $url = 'ftp://test.tld/path/?query=value#hash'; | ||
| 47 | $this->assertEquals($url, whitelist_protocols($url, $whitelist)); | ||
| 48 | $url = 'magnet:test.tld/path/?query=value#hash'; | ||
| 49 | $this->assertEquals($url, whitelist_protocols($url, $whitelist)); | ||
| 50 | } | ||
| 51 | |||
| 52 | /** | ||
| 53 | * Test whitelist_protocols() with allowed protocols. | ||
| 54 | */ | ||
| 55 | public function testWhitelistDisallowedProtocol() | ||
| 56 | { | ||
| 57 | $whitelist = ['ftp', 'magnet']; | ||
| 58 | $url = 'javascript:alert("xss");'; | ||
| 59 | $this->assertEquals('http://alert("xss");', whitelist_protocols($url, $whitelist)); | ||
| 60 | $url = 'other://test.tld/path/?query=value#hash'; | ||
| 61 | $this->assertEquals('http://test.tld/path/?query=value#hash', whitelist_protocols($url, $whitelist)); | ||
| 62 | } | ||
| 63 | } | ||