UNPKG

@revoloo/cypress6

Version:

Cypress.io end to end testing tool

github.com/cypress-io/cypress

cypress-io/cypress

80 lines (63 loc) 2.13 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
import * as inject from './inject' import * as astRewriter from './ast-rewriter' import * as regexRewriter from './regex-rewriter' export type SecurityOpts = { isHtml?: boolean url: string useAstSourceRewriting: boolean deferSourceMapRewrite: (opts: any) => string } export type InjectionOpts = { domainName: string wantsInjection: WantsInjection wantsSecurityRemoved: any } const doctypeRe = /(<\!doctype.*?>)/i const headRe = /(<head(?!er).*?>)/i const bodyRe = /(<body.*?>)/i const htmlRe = /(<html.*?>)/i type WantsInjection = 'full' | 'partial' | false function getRewriter (useAstSourceRewriting: boolean) { return useAstSourceRewriting ? astRewriter : regexRewriter } function getHtmlToInject ({ domainName, wantsInjection }: InjectionOpts) { switch (wantsInjection) { case 'full': return inject.full(domainName) case 'partial': return inject.partial(domainName) default: return } } export async function html (html: string, opts: SecurityOpts & InjectionOpts) { const replace = (re, str) => { return html.replace(re, str) } const htmlToInject = getHtmlToInject(opts) // strip clickjacking and framebusting // from the HTML if we've been told to if (opts.wantsSecurityRemoved) { html = await Promise.resolve(getRewriter(opts.useAstSourceRewriting).strip(html, opts)) } if (!htmlToInject) { return html } // TODO: move this into regex-rewriting and have ast-rewriting handle this in its own way switch (false) { case !headRe.test(html): return replace(headRe, `$1 ${htmlToInject}`) case !bodyRe.test(html): return replace(bodyRe, `<head> ${htmlToInject} </head> $1`) case !htmlRe.test(html): return replace(htmlRe, `$1 <head> ${htmlToInject} </head>`) case !doctypeRe.test(html): // if only <!DOCTYPE> content, inject <head> after doctype return `${html}<head> ${htmlToInject} </head>` default: return `<head> ${htmlToInject} </head>${html}` } } export function security (opts: SecurityOpts) { return getRewriter(opts.useAstSourceRewriting).stripStream(opts) }