summaryrefslogtreecommitdiffstats
path: root/testing/web-platform/tests/sanitizer-api/sanitizer-sanitize.https.tentative.html
diff options
context:
space:
mode:
Diffstat (limited to 'testing/web-platform/tests/sanitizer-api/sanitizer-sanitize.https.tentative.html')
-rw-r--r--testing/web-platform/tests/sanitizer-api/sanitizer-sanitize.https.tentative.html76
1 files changed, 76 insertions, 0 deletions
diff --git a/testing/web-platform/tests/sanitizer-api/sanitizer-sanitize.https.tentative.html b/testing/web-platform/tests/sanitizer-api/sanitizer-sanitize.https.tentative.html
new file mode 100644
index 0000000000..82eaeb4832
--- /dev/null
+++ b/testing/web-platform/tests/sanitizer-api/sanitizer-sanitize.https.tentative.html
@@ -0,0 +1,76 @@
+<!DOCTYPE html>
+<html>
+<head>
+ <script src="/resources/testharness.js"></script>
+ <script src="/resources/testharnessreport.js"></script>
+ <script src="support/testcases.sub.js"></script>
+</head>
+
+<body>
+<script>
+ function getString(fragment) {
+ d = document.createElement("div");
+ d.replaceChildren(...fragment.cloneNode(true).childNodes);
+ return d.innerHTML;
+ }
+
+ function getFragment(markup) {
+ const d = document.createElement("div");
+ d.innerHTML = markup;
+ let f = document.createDocumentFragment();
+ f.replaceChildren(...d.childNodes);
+ return f;
+ }
+ function getDoc(markup) {
+ return new DOMParser().parseFromString(markup, "text/html");
+ }
+ function assert_node_equals(node1, node2) {
+ assert_true(node1 instanceof Node && node1.isEqualNode(node2),
+ `Node[${getString(node1)}] == Node[${getString(node2)}]`);
+ }
+
+ test(t => {
+ let s = new Sanitizer();
+ assert_throws_js(TypeError, _ => s.sanitize());
+ }, "Sanitizer.sanitize() should throw an error.");
+
+ test(t => {
+ let s = new Sanitizer();
+ assert_throws_js(TypeError, _ => s.sanitize(null));
+ }, "Sanitizer.sanitize(null).");
+
+ const probe_string = `<a href="about:blank">hello</a><script>cons` +
+ `ole.log("world!");<` + `/script>`;
+ test(t => {
+ const sanitized = new Sanitizer().sanitize(getFragment(probe_string));
+ const expected = getFragment(probe_string.substr(0, 31));
+ assert_node_equals(expected, sanitized);
+ }, "Sanitizer.sanitze(DocumentFragment)");
+
+ test(t => {
+ const sanitized = new Sanitizer().sanitize(getDoc(probe_string));
+ const expected = getFragment(probe_string.substr(0, 31));
+ assert_node_equals(expected, sanitized);
+ }, "Sanitizer.sanitze(Document)");
+
+ testcases.forEach(c => test(t => {
+ let s = new Sanitizer(c.config_input);
+ var dom = new DOMParser().parseFromString("<!DOCTYPE html><body>" + c.value, "text/html");
+ fragment = s.sanitize(dom);
+ assert_true(fragment instanceof DocumentFragment);
+
+ let result = getString(fragment);
+ assert_equals(result, c.result);
+ }, "SanitizerAPI with config: " + c.message + ", sanitize from document function for <body>"));
+
+ testcases.forEach(c => test(t => {
+ let s = new Sanitizer(c.config_input);
+ let tpl = document.createElement("template");
+ tpl.innerHTML = c.value;
+ fragment = s.sanitize(tpl.content);
+ assert_true(fragment instanceof DocumentFragment);
+ assert_equals(getString(fragment), c.result);
+ }, "SanitizerAPI with config: " + c.message + ", sanitize from document fragment function for <template>"));
+</script>
+</body>
+</html>