UNPKG

@defra-fish/gafl-webapp-service

Version:

The websales frontend for the GAFL service

github.com/DEFRA/rod-licensing

DEFRA/rod-licensing

30 lines (24 loc) 905 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
import { start, stop, initialize, injectWithCookies, server } from '../__mocks__/test-utils-system.js' beforeAll(() => new Promise(resolve => start(resolve))) beforeAll(() => new Promise(resolve => initialize(resolve))) beforeAll(() => { server.route({ method: 'POST', path: '/public/input-input/{uri}', handler: async request => ({ payload: request.payload, uri: request.params.uri, query: request.query }) }) }) afterAll(d => stop(d)) describe('That the server', () => { it('sanitizes user input', async () => { const data = await injectWithCookies('POST', '/public/input-input/<script>?thing=<script>', { foo: '<script></script>' }) expect(data.statusCode).toBe(200) expect(JSON.parse(data.payload).payload.foo).toBe('') expect(JSON.parse(data.payload).uri).toBe('') expect(JSON.parse(data.payload).query).toEqual({ thing: '' }) }) })