Koha/t/Scrubber.t
Duncan Tyler 47b514cf56 Added unit tests for Scrubber
http://bugs.koha-community.org/show_bug.cgi?id=5327
Signed-off-by: Katrin Fischer <Katrin.Fischer.83@web.de>
Test passes.

Signed-off-by: Paul Poulain <paul.poulain@biblibre.com>
2011-12-15 13:41:43 +01:00

88 lines
3 KiB
Perl
Executable file

#!/usr/bin/perl
use strict;
use warnings;
use Test::More tests => 19;
BEGIN {
use FindBin;
use lib $FindBin::Bin;
use_ok('C4::Scrubber');
}
sub pretty_line {
my $max = 54;
(@_) or return "#" x $max . "\n";
my $phrase = " " . shift() . " ";
my $half = "#" x (($max - length($phrase))/2);
return $half . $phrase . $half . "\n";
}
my ($scrubber,$html,$result,@types,$collapse);
$collapse = 1;
@types = qw(default comment tag staff);
$html = q|
<![CDATA[selfdestruct]]&#x5d;>
<?php echo(" EVIL EVIL EVIL "); ?> <!-- COMMENT -->
<hr> <!-- TMPL_VAR NAME="password" -->
<style type="text/css">body{display:none;}</style>
<link media="screen" type="text/css" rev="stylesheet" rel="stylesheet" href="css.css">
<I FAKE="attribute" > I am ITALICS with fake="attribute" </I><br />
<em FAKE="attribute" > I am em with fake="attribute" </em><br />
<B> I am BOLD </B><br />
<span style="background-image: url(http://hackersite.cn/porno.jpg);"> I am a span w/ style. Bad style.</span>
<span> I am a span trying to inject a link: &lt;a href="badlink.html"&gt; link &lt;/a&gt;</span>
<br>
<A NAME="evil">
<A HREF="javascript:alert('OMG YOO R HACKED');">I am a link firing javascript.</A>
<br />
<A HREF="image/bigone.jpg" ONMOUSEOVER="alert('OMG YOO R HACKED');">
<IMG SRC="image/smallone.jpg" ALT="ONMOUSEOVER JAVASCRIPT">
</A>
</A> <br>
At the end here, I actually have some regular text.
|;
print pretty_line("Original HTML:"), $html, "\n", pretty_line();
$collapse and diag "Note: scrubber test output will have whitespace collapsed for readability\n";
ok($scrubber = C4::Scrubber->new(), "Constructor: C4::Scrubber->new()");
isa_ok($scrubber, 'HTML::Scrubber', 'Constructor returns HTML::Scrubber object');
ok(printf("# scrubber settings: default %s, comment %s, process %s\n",
$scrubber->default(),$scrubber->comment(),$scrubber->process()),
"Outputting settings from scrubber object (type: [default])"
);
ok($result = $scrubber->scrub($html), "Getting scrubbed text (type: [default])");
$collapse and $result =~ s/\s*\n\s*/\n/g;
print pretty_line('default'), $result, "\n", pretty_line();
foreach(@types) {
ok($scrubber = C4::Scrubber->new($_), "testing Constructor: C4::Scrubber->new($_)");
ok(printf("# scrubber settings: default %s, comment %s, process %s\n",
$scrubber->default(),$scrubber->comment(),$scrubber->process()),
"Outputting settings from scrubber object (type: $_)"
);
ok($result = $scrubber->scrub($html), "Getting scrubbed text (type: $_)");
$collapse and $result =~ s/\s*\n\s*/\n/g;
print pretty_line($_), $result, "\n", pretty_line();
}
print "\n\n######################################################\nStart of invalid tests\n";
#Test for invalid new entry
eval{
C4::Scrubber->new("");
fail("test should fail on entry of ''\n");
};
pass("Test should have failed on entry of '' (empty string) and it did. YAY!\n");
eval{
C4::Scrubber->new("Client");
fail("test should fail on entry of 'Client'\n");
};
pass("Test should have failed on entry of 'Client' and it did. YAY!\n");
print "######################################################\n";
diag "done.\n";