UNPKG

@v4fire/client

Version:

V4Fire client core library

github.com/V4Fire/Client

V4Fire/Client

117 lines (92 loc) 2.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
/*! * V4Fire Client Core * https://github.com/V4Fire/Client * * Released under the MIT license * https://github.com/V4Fire/Client/blob/master/LICENSE */ import type { Locator, Page } from 'playwright'; import test from 'tests/config/unit/test'; import { Component } from 'tests/helpers'; import type { SafeHtmlDirectiveParams } from 'core/component/directives/safe-html/interface'; test.describe('core/component/directives/safe-html', () => { test.beforeEach(({demoPage}) => demoPage.goto()); const options = { USE_PROFILES: { html: true, svg: true } }; test('should insert sanitized html', async ({page}) => { const dangerousString = '<div>HTML</div><img src="some/src" onerror=alert(1)><math></math>'; const safeString = '<div>HTML</div><img src="some/src">'; const component = await createComponent(page, dangerousString); await test.expect(component.innerHTML()).toBeResolvedTo(safeString); }); test('should insert sanitized html that satisfies options', async ({page}) => { const dangerousString = '<div>HTML</div><img src="some/src" onerror=alert(1)><svg><rect height="50"></rect></svg>'; const safeString = '<div>HTML</div><img src="some/src"><svg><rect height="50"></rect></svg>'; const component = await createComponent(page, { value: dangerousString, options }); await test.expect(component.innerHTML()).toBeResolvedTo(safeString); }); [ { title: 'with options', withOptions: true }, { title: 'with a raw value', withOptions: false } ].forEach(({title, withOptions}) => { test.describe(title, () => { test('should correctly insert a non-nullish primitive value', async ({page}) => { const primitiveValue = 123; const safeString = '123'; const component = await createComponent( page, withOptions ? { value: primitiveValue, options } : primitiveValue ); await test.expect(component.innerHTML()).toBeResolvedTo(safeString); }); test('should insert an empty string for the nullish value', async ({page}) => { const component = await createComponent( page, withOptions ? { value: null, options } : null ); await test.expect(component.innerHTML()).toBeResolvedTo(''); }); }); }); }); async function createComponent( page: Page, safeHtml: SafeHtmlDirectiveParams['value'] ): Promise<Locator> { const componentTestId = 'target'; await Component.createComponent(page, 'b-dummy', { content: { default: { tag: 'div', attrs: { 'data-testid': componentTestId, 'v-safe-html': safeHtml } } } }); return page.getByTestId(componentTestId); }