function BlockXssTest::doMenuTest

Same name and namespace in other branches

9 core/modules/block/tests/src/Functional/BlockXssTest.php \Drupal\Tests\block\Functional\BlockXssTest::doMenuTest()
8.9.x core/modules/block/tests/src/Functional/BlockXssTest.php \Drupal\Tests\block\Functional\BlockXssTest::doMenuTest()
11.x core/modules/block/tests/src/Functional/BlockXssTest.php \Drupal\Tests\block\Functional\BlockXssTest::doMenuTest()

Tests XSS coming from Menu block labels.

1 call to BlockXssTest::doMenuTest()

BlockXssTest::testBlockXss in core/modules/block/tests/src/Functional/BlockXssTest.php: Tests various modules that provide blocks for XSS.

File

core/modules/block/tests/src/Functional/BlockXssTest.php, line 154

Class

BlockXssTest: Tests that the block module properly escapes block descriptions.

Namespace

Drupal\Tests\block\Functional

Code

protected function doMenuTest() {
  Menu::create([
    'id' => $this->randomMachineName(),
    'label' => '<script>alert("menu");</script>',
  ])
    ->save();
  $this->drupalGet(Url::fromRoute('block.admin_display'));
  $this->clickLink('Place block');
  $this->assertSession()
    ->assertEscaped('<script>alert("menu");</script>');
  $this->assertSession()
    ->responseNotContains('<script>alert("menu");</script>');
}

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.

function BlockXssTest::doMenuTest

File

Class

Namespace

Code

Search drupal 10

API Navigation

Breadcrumb

function BlockXssTest::doMenuTest

File

Class

Namespace

Code

Search drupal 10

API Navigation