| 7 filter.test | FilterUnitTestCase::testFilterXSSAdmin() |
| 8 filter.test | FilterUnitTestCase::testFilterXSSAdmin() |
Test the loose, admin HTML filter.
File
- modules/
filter/ filter.test, line 1152 - Tests for filter.module.
Code
function testFilterXSSAdmin() {
// DRUPAL-SA-2008-044
$f = filter_xss_admin('<object />');
$this->assertNoNormalized($f, 'object', t('Admin HTML filter -- should not allow object tag.'));
$f = filter_xss_admin('<script />');
$this->assertNoNormalized($f, 'script', t('Admin HTML filter -- should not allow script tag.'));
$f = filter_xss_admin('<style /><iframe /><frame /><frameset /><meta /><link /><embed /><applet /><param /><layer />');
$this->assertEqual($f, '', t('Admin HTML filter -- should never allow some tags.'));
}