diff options
| author | William Pitcock <nenolod@dereferenced.org> | 2018-10-05 21:11:22 +0000 |
|---|---|---|
| committer | William Pitcock <nenolod@dereferenced.org> | 2018-10-05 21:11:22 +0000 |
| commit | 497814cbbb4baea91b2882fbddd5cd8d5ad6e170 (patch) | |
| tree | 02f4173dd2d6c7540021df04a88b4e8943fc2f33 | |
| parent | bd76d9cee6f166c20af9194d4d83f5276041ef75 (diff) | |
| download | pleroma-497814cbbb4baea91b2882fbddd5cd8d5ad6e170.tar.gz | |
test: update test for new html scrub policy
| -rw-r--r-- | test/web/common_api/common_api_test.exs | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/test/web/common_api/common_api_test.exs b/test/web/common_api/common_api_test.exs index cd5aca961..cd36e409c 100644 --- a/test/web/common_api/common_api_test.exs +++ b/test/web/common_api/common_api_test.exs @@ -26,7 +26,7 @@ defmodule Pleroma.Web.CommonAPI.Test do test "it filters out obviously bad tags when accepting a post as HTML" do user = insert(:user) - post = "<h1>2hu</h1><script>alert('xss')</script>" + post = "<p><b>2hu</b></p><script>alert('xss')</script>" {:ok, activity} = CommonAPI.post(user, %{ @@ -35,13 +35,13 @@ defmodule Pleroma.Web.CommonAPI.Test do }) content = activity.data["object"]["content"] - assert content == "<h1>2hu</h1>alert('xss')" + assert content == "<p><b>2hu</b></p>alert('xss')" end test "it filters out obviously bad tags when accepting a post as Markdown" do user = insert(:user) - post = "<h1>2hu</h1><script>alert('xss')</script>" + post = "<p><b>2hu</b></p><script>alert('xss')</script>" {:ok, activity} = CommonAPI.post(user, %{ @@ -50,7 +50,7 @@ defmodule Pleroma.Web.CommonAPI.Test do }) content = activity.data["object"]["content"] - assert content == "<h1>2hu</h1>alert('xss')" + assert content == "<p><b>2hu</b></p>alert('xss')" end end end |