streams/tests/unit/AntiXSSTest.php

<?php

/**
 * tests several functions which are used to prevent xss attacks
 *
 * @package test.util
 */

use PHPUnit\Framework\TestCase;

require_once('include/misc.php');

class AntiXSSTest extends TestCase
{

    /**
     * test, that tags are escaped
     */
    public function testEscapeTags()
    {
        $invalidstring = '<submit type="button" onclick="alert(\'failed!\');" />';

        $validstring = notags($invalidstring);
        $escapedString = escape_tags($invalidstring);

        $this->assertEquals('[submit type="button" onclick="alert(\'failed!\');" /]', $validstring);
        $this->assertEquals("&lt;submit type=&quot;button&quot; onclick=&quot;alert('failed!');&quot; /&gt;", $escapedString);
    }

    /**
     *xmlify and unxmlify
     */
    public function testXmlify()
    {
        $text = "<tag>I want to break\n this!11!<?hard?></tag>";
        $xml = xmlify($text);
        $retext = unxmlify($text);

        $this->assertEquals($text, $retext);
    }

    /**
     * xmlify and put in a document
     */
    public function testXmlifyDocument()
    {
        $tag = "<tag>I want to break</tag>";
        $xml = xmlify($tag);
        $text = '<text>' . $xml . '</text>';

        $xml_parser = xml_parser_create();
        //should be possible to parse it
        $values = [];
        $index = [];
        $this->assertEquals(1, xml_parse_into_struct($xml_parser, $text, $values, $index));

        $this->assertEquals(
            array('TEXT' => array(0)),
            $index
        );
        $this->assertEquals(
            array(array('tag' => 'TEXT', 'type' => 'complete', 'level' => 1, 'value' => $tag)),
            $values
        );

        xml_parser_free($xml_parser);
    }

    /**
     * test hex2bin and reverse
     */
    public function testHex2Bin()
    {
        $this->assertEquals(-3, hex2bin(bin2hex(-3)));
        $this->assertEquals(0, hex2bin(bin2hex(0)));
        $this->assertEquals(12, hex2bin(bin2hex(12)));
        $this->assertEquals(PHP_INT_MAX, hex2bin(bin2hex(PHP_INT_MAX)));
    }

    //function qp, quick and dirty??
    //get_mentions
    //get_contact_block, bis Zeile 538
}
better tests 2012-03-08 16:43:12 +00:00			`<?php`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00
better tests 2012-03-08 16:43:12 +00:00			`/**`
splitted tests into several files 2012-03-14 11:54:49 +00:00			`* tests several functions which are used to prevent xss attacks`
[TASK] Restructure tests/ folder. Move unit tests to tests/unit/. Get the old still working UnitTests into a working state again. Updated composer.json with required-dev packages. Create a new folder tests/acceptance for Behat functional/acceptance testing. Add a first Feature draft of a Behat functional test for local login. 2016-10-12 19:50:49 +00:00			`*`
added some tests 2012-03-09 11:16:58 +00:00			`* @package test.util`
			`*/`
better tests 2012-03-08 16:43:12 +00:00
[TASK] Restructure tests/ folder. Move unit tests to tests/unit/. Get the old still working UnitTests into a working state again. Updated composer.json with required-dev packages. Create a new folder tests/acceptance for Behat functional/acceptance testing. Add a first Feature draft of a Behat functional test for local login. 2016-10-12 19:50:49 +00:00			`use PHPUnit\Framework\TestCase;`

rename include/text -> include/misc 2022-06-17 23:59:11 +00:00			`require_once('include/misc.php');`
better tests 2012-03-08 16:43:12 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`class AntiXSSTest extends TestCase`
			`{`
better tests 2012-03-08 16:43:12 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`/**`
			`* test, that tags are escaped`
			`*/`
			`public function testEscapeTags()`
			`{`
			`$invalidstring = '<submit type="button" onclick="alert(\'failed!\');" />';`
better tests 2012-03-08 16:43:12 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`$validstring = notags($invalidstring);`
			`$escapedString = escape_tags($invalidstring);`
better tests 2012-03-08 16:43:12 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`$this->assertEquals('[submit type="button" onclick="alert(\'failed!\');" /]', $validstring);`
			`$this->assertEquals("<submit type="button" onclick="alert('failed!');" />", $escapedString);`
			`}`
better tests 2012-03-08 16:43:12 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`/**`
			`*xmlify and unxmlify`
			`*/`
			`public function testXmlify()`
			`{`
			`$text = "<tag>I want to break\n this!11!<?hard?></tag>";`
			`$xml = xmlify($text);`
			`$retext = unxmlify($text);`
better tests 2012-03-08 16:43:12 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`$this->assertEquals($text, $retext);`
			`}`
[TASK] Restructure tests/ folder. Move unit tests to tests/unit/. Get the old still working UnitTests into a working state again. Updated composer.json with required-dev packages. Create a new folder tests/acceptance for Behat functional/acceptance testing. Add a first Feature draft of a Behat functional test for local login. 2016-10-12 19:50:49 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`/**`
			`* xmlify and put in a document`
			`*/`
			`public function testXmlifyDocument()`
			`{`
			`$tag = "<tag>I want to break</tag>";`
			`$xml = xmlify($tag);`
			`$text = '<text>' . $xml . '</text>';`
[TASK] Restructure tests/ folder. Move unit tests to tests/unit/. Get the old still working UnitTests into a working state again. Updated composer.json with required-dev packages. Create a new folder tests/acceptance for Behat functional/acceptance testing. Add a first Feature draft of a Behat functional test for local login. 2016-10-12 19:50:49 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`$xml_parser = xml_parser_create();`
			`//should be possible to parse it`
			`$values = [];`
			`$index = [];`
			`$this->assertEquals(1, xml_parse_into_struct($xml_parser, $text, $values, $index));`
[TASK] Restructure tests/ folder. Move unit tests to tests/unit/. Get the old still working UnitTests into a working state again. Updated composer.json with required-dev packages. Create a new folder tests/acceptance for Behat functional/acceptance testing. Add a first Feature draft of a Behat functional test for local login. 2016-10-12 19:50:49 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`$this->assertEquals(`
			`array('TEXT' => array(0)),`
			`$index`
			`);`
			`$this->assertEquals(`
			`array(array('tag' => 'TEXT', 'type' => 'complete', 'level' => 1, 'value' => $tag)),`
			`$values`
			`);`
[TASK] Restructure tests/ folder. Move unit tests to tests/unit/. Get the old still working UnitTests into a working state again. Updated composer.json with required-dev packages. Create a new folder tests/acceptance for Behat functional/acceptance testing. Add a first Feature draft of a Behat functional test for local login. 2016-10-12 19:50:49 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`xml_parser_free($xml_parser);`
			`}`
better tests 2012-03-08 16:43:12 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`/**`
			`* test hex2bin and reverse`
			`*/`
			`public function testHex2Bin()`
			`{`
			`$this->assertEquals(-3, hex2bin(bin2hex(-3)));`
			`$this->assertEquals(0, hex2bin(bin2hex(0)));`
			`$this->assertEquals(12, hex2bin(bin2hex(12)));`
			`$this->assertEquals(PHP_INT_MAX, hex2bin(bin2hex(PHP_INT_MAX)));`
			`}`
added some tests 2012-03-09 11:16:58 +00:00
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`//function qp, quick and dirty??`
			`//get_mentions`
			`//get_contact_block, bis Zeile 538`
better tests 2012-03-08 16:43:12 +00:00			`}`