[1.2.0]

- Added %URI.DisableExternal, which prevents links to external websites. You can also use %URI.Host to permit absolute linking to subdomains - Fixed a few bugs involving null configuration values git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@522 48356398-32a2-884e-a903-53898d9a118a
2025-07-31 19:30:21 +02:00 · 2006-11-12 03:35:41 +00:00
parent 926b94bdd3
commit f38fe431ed
6 changed files with 81 additions and 7 deletions
--- a/tests/HTMLPurifier/AttrDef/URITest.php
+++ b/tests/HTMLPurifier/AttrDef/URITest.php
@@ -233,7 +233,6 @@ class HTMLPurifier_AttrDef_URITest extends HTMLPurifier_AttrDefHarness
    function testIntegration() {
        
        $this->def = new HTMLPurifier_AttrDef_URI();
-        $this->config = $this->context = null;
        
        $this->assertDef('http://www.google.com/');
        $this->assertDef('javascript:bad_stuff();', false);
@@ -244,6 +243,24 @@ class HTMLPurifier_AttrDef_URITest extends HTMLPurifier_AttrDefHarness
        
    }
    
+    function testDisableExternal() {
+        
+        $this->def = new HTMLPurifier_AttrDef_URI();
+        $this->config->set('URI', 'DisableExternal', true);
+        
+        $this->assertDef('/foobar.txt');
+        $this->assertDef('http://google.com/', false);
+        $this->assertDef('http://sub.example.com/alas?foo=asd', false);
+        
+        $this->config->set('URI', 'Host', 'sub.example.com');
+        
+        $this->assertDef('http://sub.example.com/alas?foo=asd');
+        $this->assertDef('http://example.com/teehee', false);
+        $this->assertDef('http://www.example.com/#man', false);
+        $this->assertDef('http://go.sub.example.com/perhaps?p=foo');
+        
+    }
+    
 }

 ?>
--- a/tests/HTMLPurifier/ConfigTest.php
+++ b/tests/HTMLPurifier/ConfigTest.php
@@ -37,6 +37,10 @@ class HTMLPurifier_ConfigTest extends UnitTestCase
            'Core', 'Encoding', 'utf-8', 'istring', 'Case insensitivity!'
        );
        
+        HTMLPurifier_ConfigSchema::define(
+            'Extension', 'CanBeNull', null, 'string/null', 'Null or string!'
+        );
+        
        HTMLPurifier_ConfigSchema::defineAllowedValues(
            'Extension', 'Pert', array('foo', 'moo')
        );
@@ -92,6 +96,21 @@ class HTMLPurifier_ConfigTest extends UnitTestCase
        $this->assertNoErrors();
        $this->assertIdentical($config->get('Core', 'Encoding'), 'iso-8859-1');
        
+        // set null to directive that allows null
+        $config->set('Extension', 'CanBeNull', null);
+        $this->assertNoErrors();
+        $this->assertIdentical($config->get('Extension', 'CanBeNull'), null);
+        
+        $config->set('Extension', 'CanBeNull', 'foobar');
+        $this->assertNoErrors();
+        $this->assertIdentical($config->get('Extension', 'CanBeNull'), 'foobar');
+        
+        // set null to directive that doesn't allow null
+        $config->set('Extension', 'Pert', null);
+        $this->assertError('Value is of invalid type');
+        $this->assertNoErrors();
+        $this->swallowErrors();
+        
    }
    
    function test_getDefinition() {