github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-06-23 02:41:31 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Reverting the Sanitizer commit in case we have to do something urgent

Browse Source 
before we deploy it early next week. It's in the branch `sanitizer` for
now.

This reverts commit 9e93d8ed5209c5c65dfa00fa9b9d17cc8de13244.
This commit is contained in:
Robin Ward
2013-10-11 16:44:26 -04:00
parent 9e93d8ed52
commit af931f0444
16 changed files with 174 additions and 175 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
test/javascripts/components/markdown_test.js
View File

@ -278,12 +278,10 @@ test("Code Blocks", function() {
});
test("sanitize", function() {
var sanitize = Discourse.Markdown.sanitize;
test("SanitizeHTML", function() {
equal(sanitize("<i class=\"icon-bug icon-spin\">bug</i>"), "<i>bug</i>");
equal(sanitize("<div><script>alert('hi');</script></div>"), "<div></div>");
equal(sanitize("<div><p class=\"funky\" wrong='1'>hello</p></div>"), "<div><p>hello</p></div>");
equal(sanitizeHtml("<div><script>alert('hi');</script></div>"), "<div></div>");
equal(sanitizeHtml("<div><p class=\"funky\" wrong='1'>hello</p></div>"), "<div><p class=\"funky\">hello</p></div>");
cooked("hello<script>alert(42)</script>", "<p>hello</p>", "it sanitizes while cooking");
cooked("<a href='http://disneyland.disney.go.com/'>disney</a> <a href='http://reddit.com'>reddit</a>",
@ -307,15 +305,3 @@ test("URLs in BBCode tags", function() {
"named links are properly parsed");
});
test("urlAllowed", function() {
var allowed = function(url, msg) {
equal(Discourse.Markdown.urlAllowed(url), url, msg);
};
allowed("/foo/bar.html", "allows relative urls");
allowed("http://eviltrout.com/evil/trout", "allows full urls");
allowed("https://eviltrout.com/evil/trout", "allows https urls");
allowed("//eviltrout.com/evil/trout", "allows protocol relative urls");
});