search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Fix newline issues in tests.
[htmlpurifier/darkodev.git] / tests / HTMLPurifier / HTMLModule / SafeObjectTest.php
blob67f91d6eb7341d4ba57f423027d0f3b03f5d88ff
1 <?php
2
3 class HTMLPurifier_HTMLModule_SafeObjectTest extends HTMLPurifier_HTMLModuleHarness
4 {
5
6 function setUp() {
7 parent::setUp();
8 $this->config->set('HTML', 'DefinitionID', 'HTMLPurifier_HTMLModule_SafeObjectTest');
9 $def = $this->config->getHTMLDefinition(true);
10 $def->manager->addModule('SafeObject');
11 }
12
13 function testMinimal() {
14 $this->assertResult(
15 '<object></object>',
16 '<object type="application/x-shockwave-flash"><param name="allowScriptAccess" value="never" /><param name="allowNetworking" value="internal" /></object>'
17 );
18 }
19
20 function testYouTube() {
21 // embed is purposely removed
22 $this->assertResult(
23 '<object width="425" height="344"><param name="movie" value="http://www.youtube.com/v/RVtEQxH7PWA&hl=en"></param><embed src="http://www.youtube.com/v/RVtEQxH7PWA&hl=en" type="application/x-shockwave-flash" width="425" height="344"></embed></object>',
24 '<object width="425" height="344" data="http://www.youtube.com/v/RVtEQxH7PWA&amp;hl=en" type="application/x-shockwave-flash"><param name="allowScriptAccess" value="never" /><param name="allowNetworking" value="internal" /><param name="movie" value="http://www.youtube.com/v/RVtEQxH7PWA&amp;hl=en" /></object>'
25 );
26 }
27
28 function testMalicious() {
29 $this->assertResult(
30 '<object width="9999999" height="9999999"><param name="allowScriptAccess" value="always" /><param name="movie" value="http://example.com/attack.swf" /></object>',
31 '<object width="1200" height="1200" data="http://example.com/attack.swf" type="application/x-shockwave-flash"><param name="allowScriptAccess" value="never" /><param name="allowNetworking" value="internal" /><param name="movie" value="http://example.com/attack.swf" /></object>'
32 );
33 }
34
35 function testFull() {
36 $this->assertResult(
37 '<b><object width="425" height="344" type="application/x-shockwave-flash" data="Foobar"><param name="allowScriptAccess" value="never" /><param name="allowNetworking" value="internal" /><param name="movie" value="http://www.youtube.com/v/RVtEQxH7PWA&amp;hl=en" /><param name="wmode" value="window" /></object></b>'
38 );
39 }
40
41 }
42
Fixing PHP 7 reserved words in constant names