EditorSecurityTest::$sampleContentSecuredEmbedAllowed
The secured sample content to use in tests when the <embed> tag is allowed.
Type: string
File
-
core/
modules/ editor/ tests/ src/ Functional/ EditorSecurityTest.php, line 43
Class
- EditorSecurityTest
- Tests XSS protection for content creators when using text editors.
Namespace
Drupal\Tests\editor\FunctionalCode
protected static $sampleContentSecuredEmbedAllowed = '<p>Hello, Dumbo Octopus!</p>alert(0)<embed type="image/svg+xml" src="image.svg" />';
Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.