htmlpurifier/tests/HTMLPurifier/Test.php

<?php

require_once 'HTMLPurifier.php';

// integration test

class HTMLPurifier_Test extends UnitTestCase
{
    var $purifier;
    
    function setUp() {
        $this->purifier = new HTMLPurifier();
    }
    
    function assertPurification($input, $expect = null) {
        if ($expect === null) $expect = $input;
        $result = $this->purifier->purify($input);
        $this->assertIdentical($expect, $result);
    }
    
    function testNull() {
        $this->assertPurification("Null byte\0", "Null byte");
    }
    
    function testStrict() {
        $config = HTMLPurifier_Config::createDefault();
        $config->set('HTML', 'Strict', true);
        $this->purifier = new HTMLPurifier( $config ); // verbose syntax
        
        $this->assertPurification(
            '<u>Illegal underline</u>',
            'Illegal underline'
        );
        
        $this->assertPurification(
            '<blockquote>Illegal contents</blockquote>',
            '<blockquote><p>Illegal contents</p></blockquote>'
        );
        
    }
    
    function testDifferentAllowedElements() {
        
        $this->purifier = new HTMLPurifier(array(
            'HTML.AllowedElements' => array('b', 'i', 'p', 'a'),
            'HTML.AllowedAttributes' => array('a.href', '*.id')
        ));
        
        $this->assertPurification(
            '<p>Par.</p><p>Para<a href="http://google.com/">gr</a>aph</p>Text<b>Bol<i>d</i></b>'
        );
        
        $this->assertPurification(
            '<span>Not allowed</span><a class="mef" id="foobar">Foobar</a>',
            'Not allowed<a>Foobar</a>' // no ID!!!
        );
        
    }
    
    function testDisableURI() {
        
        $this->purifier = new HTMLPurifier( array('Attr.DisableURI' => true) );
        
        $this->assertPurification(
            '<img src="foobar"/>',
            ''
        );
        
    }
    
    function test_purifyArray() {
        
        $this->purifier = new HTMLPurifier();
        
        $this->assertEqual(
            $this->purifier->purifyArray(
                array('Good', '<b>Sketchy', 'foo' => '<script>bad</script>')
            ),
            array('Good', '<b>Sketchy</b>', 'foo' => 'bad')
        );
        
        $this->assertIsA($this->purifier->context, 'array');
        
    }
    
}

?>
Merged 371:372 from branches/1.0/ to trunk/ - Add integration test. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@374 48356398-32a2-884e-a903-53898d9a118a 2006-09-01 17:56:55 +00:00			`<?php`

			`require_once 'HTMLPurifier.php';`

			`// integration test`

			`class HTMLPurifier_Test extends UnitTestCase`
			`{`
			`var $purifier;`

[1.3.0] More control of URIs granted # Invalid images are now removed, rather than replaced with a dud <img src="" alt="Invalid image" />. Previous behavior can be restored with new directive %Core.RemoveInvalidImg set to false. ! New directives %URI.DisableExternalResources and %URI.DisableResources ! New directive %Attr.DisableURI, which eliminates all hyperlinking - Missing "Available since" documentation added git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@575 48356398-32a2-884e-a903-53898d9a118a 2006-11-23 23:59:20 +00:00			`function setUp() {`
			`$this->purifier = new HTMLPurifier();`
			`}`

[1.0.1] Fixed rejection of inline style declarations that had lots of extra space in them. This manifested in TinyMCE. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@382 48356398-32a2-884e-a903-53898d9a118a 2006-09-04 23:01:47 +00:00			`function assertPurification($input, $expect = null) {`
			`if ($expect === null) $expect = $input;`
Merged 371:372 from branches/1.0/ to trunk/ - Add integration test. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@374 48356398-32a2-884e-a903-53898d9a118a 2006-09-01 17:56:55 +00:00			`$result = $this->purifier->purify($input);`
			`$this->assertIdentical($expect, $result);`
			`}`

[1.3.0] Implement user-unfriendly implementation of Strict doctype. We will try not to ship this one. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@556 48356398-32a2-884e-a903-53898d9a118a 2006-11-22 18:17:39 +00:00			`function testNull() {`
			`$this->assertPurification("Null byte\0", "Null byte");`
			`}`

			`function testStrict() {`
Merged 371:372 from branches/1.0/ to trunk/ - Add integration test. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@374 48356398-32a2-884e-a903-53898d9a118a 2006-09-01 17:56:55 +00:00			`$config = HTMLPurifier_Config::createDefault();`
[1.3.0] Implement user-unfriendly implementation of Strict doctype. We will try not to ship this one. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@556 48356398-32a2-884e-a903-53898d9a118a 2006-11-22 18:17:39 +00:00			`$config->set('HTML', 'Strict', true);`
[1.3.2] ! HTMLPurifier object now accepts configuration arrays, no need to manually instantiate a configuration object ! Context object now accessible to outside . HTMLPurifier_Config::create() added, takes mixed variable and converts into a HTMLPurifier_Config object. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@611 48356398-32a2-884e-a903-53898d9a118a 2006-12-15 02:12:03 +00:00			`$this->purifier = new HTMLPurifier( $config ); // verbose syntax`
[1.3.0] Implement user-unfriendly implementation of Strict doctype. We will try not to ship this one. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@556 48356398-32a2-884e-a903-53898d9a118a 2006-11-22 18:17:39 +00:00
			`$this->assertPurification(`
			`'<u>Illegal underline</u>',`
			`'Illegal underline'`
			`);`

			`$this->assertPurification(`
			`'<blockquote>Illegal contents</blockquote>',`
[1.3.0] Huge upgrade, (X)HTML Strict now supported + Transparently handles inline elements in block context (blockquote) ! Added GET method to demo for easier validation, added 50kb max input size ! New directive %HTML.BlockWrapper, for block-ifying inline elements ! New directive %HTML.Parent, allows you to only allow inline content - Added missing type to ChildDef_Chameleon . ChildDef_Required guards against empty tags . Lookup table HTMLDefinition->info_flow_elements added . Added peace-of-mind variable initialization to Strategy_FixNesting git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@560 48356398-32a2-884e-a903-53898d9a118a 2006-11-23 03:23:35 +00:00			`'<blockquote><p>Illegal contents</p></blockquote>'`
[1.3.0] Implement user-unfriendly implementation of Strict doctype. We will try not to ship this one. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@556 48356398-32a2-884e-a903-53898d9a118a 2006-11-22 18:17:39 +00:00			`);`

Merged 371:372 from branches/1.0/ to trunk/ - Add integration test. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@374 48356398-32a2-884e-a903-53898d9a118a 2006-09-01 17:56:55 +00:00			`}`
[1.3.0] Implement user-unfriendly implementation of Strict doctype. We will try not to ship this one. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@556 48356398-32a2-884e-a903-53898d9a118a 2006-11-22 18:17:39 +00:00
[1.3.0] New directives %HTML.AllowedElements and %HTML.AllowedAttributes to let users narrow the set of allowed tags . Added HTMLPurifier->info_parent_def, parent child processing made special git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@565 48356398-32a2-884e-a903-53898d9a118a 2006-11-23 13:51:19 +00:00			`function testDifferentAllowedElements() {`
[1.3.2] ! HTMLPurifier object now accepts configuration arrays, no need to manually instantiate a configuration object ! Context object now accessible to outside . HTMLPurifier_Config::create() added, takes mixed variable and converts into a HTMLPurifier_Config object. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@611 48356398-32a2-884e-a903-53898d9a118a 2006-12-15 02:12:03 +00:00
			`$this->purifier = new HTMLPurifier(array(`
			`'HTML.AllowedElements' => array('b', 'i', 'p', 'a'),`
			`'HTML.AllowedAttributes' => array('a.href', '*.id')`
			`));`
[1.3.0] New directives %HTML.AllowedElements and %HTML.AllowedAttributes to let users narrow the set of allowed tags . Added HTMLPurifier->info_parent_def, parent child processing made special git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@565 48356398-32a2-884e-a903-53898d9a118a 2006-11-23 13:51:19 +00:00
			`$this->assertPurification(`
			`'<p>Par.</p><p>Para<a href="http://google.com/">gr</a>aph</p>Text<b>Bol<i>d</i></b>'`
			`);`

			`$this->assertPurification(`
			`'<span>Not allowed</span><a class="mef" id="foobar">Foobar</a>',`
			`'Not allowed<a>Foobar</a>' // no ID!!!`
			`);`

			`}`

[1.3.0] More control of URIs granted # Invalid images are now removed, rather than replaced with a dud <img src="" alt="Invalid image" />. Previous behavior can be restored with new directive %Core.RemoveInvalidImg set to false. ! New directives %URI.DisableExternalResources and %URI.DisableResources ! New directive %Attr.DisableURI, which eliminates all hyperlinking - Missing "Available since" documentation added git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@575 48356398-32a2-884e-a903-53898d9a118a 2006-11-23 23:59:20 +00:00			`function testDisableURI() {`

[1.3.2] ! HTMLPurifier object now accepts configuration arrays, no need to manually instantiate a configuration object ! Context object now accessible to outside . HTMLPurifier_Config::create() added, takes mixed variable and converts into a HTMLPurifier_Config object. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@611 48356398-32a2-884e-a903-53898d9a118a 2006-12-15 02:12:03 +00:00			`$this->purifier = new HTMLPurifier( array('Attr.DisableURI' => true) );`
[1.3.0] More control of URIs granted # Invalid images are now removed, rather than replaced with a dud <img src="" alt="Invalid image" />. Previous behavior can be restored with new directive %Core.RemoveInvalidImg set to false. ! New directives %URI.DisableExternalResources and %URI.DisableResources ! New directive %Attr.DisableURI, which eliminates all hyperlinking - Missing "Available since" documentation added git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@575 48356398-32a2-884e-a903-53898d9a118a 2006-11-23 23:59:20 +00:00
			`$this->assertPurification(`
			`'<img src="foobar"/>',`
			`''`
			`);`

			`}`

[1.3.2] Added purifyArray(), which takes a list of HTML and purifies it all git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@615 48356398-32a2-884e-a903-53898d9a118a 2006-12-20 23:51:09 +00:00			`function test_purifyArray() {`

			`$this->purifier = new HTMLPurifier();`

			`$this->assertEqual(`
			`$this->purifier->purifyArray(`
			`array('Good', '<b>Sketchy', 'foo' => '<script>bad</script>')`
			`),`
			`array('Good', '<b>Sketchy</b>', 'foo' => 'bad')`
			`);`

			`$this->assertIsA($this->purifier->context, 'array');`

			`}`

Merged 371:372 from branches/1.0/ to trunk/ - Add integration test. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@374 48356398-32a2-884e-a903-53898d9a118a 2006-09-01 17:56:55 +00:00			`}`

			`?>`