UNPKG

@gitlab/ui

Version:

GitLab UI Components

gitlab.com/gitlab-org/gitlab-ui

89 lines (72 loc) 2.48 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
import { mount } from '@vue/test-utils'; import Link from './link.vue'; describe('link component', () => { let wrapper; const createWrapper = (options) => { wrapper = mount(Link, options); }; describe('default settings', () => { beforeEach(() => { createWrapper(); }); it('should not have a target attribute', () => { expect(wrapper.attributes('target')).toBeUndefined(); }); it('should not have a rel attribute', () => { expect(wrapper.attributes('rel')).toBeUndefined(); }); it('should have a default href as #', () => { expect(wrapper.attributes('href')).toBe('#'); }); }); describe('target blank', () => { it('should set secure rels for hrefs in a different domain', () => { createWrapper({ propsData: { target: '_blank', href: 'http://example.com', }, }); expect(wrapper.attributes('rel')).toBe('noopener noreferrer'); }); it('should set noopener rel for hrefs for the same domain', () => { // This behavior is due to the fact that // bootstrap-vue link component adds rel="noopener" when target is set as "_blank" // https://github.com/bootstrap-vue/bootstrap-vue/pull/418/files#diff-997fcb1eb150236aec5306a4d72229beR25 createWrapper({ propsData: { target: '_blank', href: window.location.hostname, }, }); expect(wrapper.attributes('rel')).toBe('noopener'); }); it('should keep rel attribute for hrefs in the same domain', () => { createWrapper({ attrs: { rel: 'nofollow', href: window.location.hostname } }); expect(wrapper.attributes('rel')).toBe('nofollow'); }); }); describe('unsafe urls', () => { // eslint-disable-next-line no-script-url const unsafeUrl = 'javascript:alert(1)'; // GlSafeLinkDirective is actually responsible to handle the unsafe URLs // and GlLink uses this directive to make all the links secure by default it('should set href to blank', () => { createWrapper({ propsData: { href: unsafeUrl, }, }); expect(wrapper.attributes('href')).toBe('about:blank'); }); it('should allow unsafe URL if isUnsafeLink is true', () => { createWrapper({ propsData: { href: unsafeUrl, isUnsafeLink: true, }, }); expect(wrapper.attributes('href')).toBe(unsafeUrl); }); }); });