aboutsummaryrefslogtreecommitdiffstats
path: root/tests/functional/acp_bbcodes_test.php
blob: cc6397fdfd4085f4ebc05367b949e45d8db242d8 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86

<?php
/**
 *
 * This file is part of the phpBB Forum Software package.
 *
 * @copyright (c) phpBB Limited <https://www.phpbb.com>
 * @license GNU General Public License, version 2 (GPL-2.0)
 *
 * For full copyright and license information, please see
 * the docs/CREDITS.txt file.
 *
 */

/**
 * @group functional
 */
class phpbb_functional_acp_bbcodes_test extends phpbb_functional_test_case
{
	public function test_htmlspecialchars()
	{
		$this->login();
		$this->admin_login();

		// Create the BBCode
		$crawler = self::request('GET', 'adm/index.php?i=acp_bbcodes&sid=' . $this->sid . '&mode=bbcodes&action=add');
		$form = $crawler->selectButton('Submit')->form(array(
			'bbcode_match' => '[mod="{TEXT1}"]{TEXT2}[/mod]',
			'bbcode_tpl'   => '<div>{TEXT1}</div><div>{TEXT2}</div>'
		));
		self::submit($form);

		// Test it in the "new topic" preview
		$crawler = self::request('GET', 'posting.php?mode=post&f=2&sid=' . $this->sid);
		$form = $crawler->selectButton('Preview')->form(array(
			'subject' => 'subject',
			'message' => '[mod=a]b[/mod][mod="c"]d[/mod]'
		));
		$crawler = self::submit($form);

		$html = $crawler->filter('#preview')->html();
		$this->assertContains('<div>a</div>', $html);
		$this->assertContains('<div>b</div>', $html);
		$this->assertContains('<div>c</div>', $html);
		$this->assertContains('<div>d</div>', $html);
	}

	/**
	* @dataProvider get_bbcode_error_tests
	*/
	public function test_bbcode_error($match, $tpl, $error)
	{
		$this->login();
		$this->admin_login();

		$crawler = self::request('GET', 'adm/index.php?i=acp_bbcodes&sid=' . $this->sid . '&mode=bbcodes&action=add');
		$form = $crawler->selectButton('Submit')->form([
			'bbcode_match' => $match,
			'bbcode_tpl'   => $tpl
		]);
		$crawler = self::submit($form);

		$text = $crawler->filter('.errorbox')->text();
		$this->assertStringContainsString($error, $text);
	}

	public function get_bbcode_error_tests()
	{
		return [
			[
				'XXX',
				'',
				'BBCode is constructed in an invalid form'
			],
			[
				'[x]{TEXT}[/x]',
				'<xsl:invalid',
				'template is invalid'
			],
			[
				'[x]{TEXT}[/x]',
				'<script>{TEXT}</script>',
				'unsafe'
			],
		];
	}
}
generated by cgit v1.2.1 (git 2.21.0) at 2024-11-21 16:33:54 +0000