mirror of
https://codeberg.org/Codeberg/pages-server.git
synced 2024-11-23 06:18:59 +00:00
39 lines
1002 B
Go
39 lines
1002 B
Go
|
package html
|
||
|
|
||
|
import (
|
||
|
"net/http"
|
||
|
"strings"
|
||
|
"testing"
|
||
|
)
|
||
|
|
||
|
func TestValidMessage(t *testing.T) {
|
||
|
testString := "requested blacklisted path"
|
||
|
statusCode := http.StatusForbidden
|
||
|
|
||
|
expected := strings.ReplaceAll(
|
||
|
strings.ReplaceAll(ErrorPage, "%message%", testString),
|
||
|
"%status%",
|
||
|
http.StatusText(statusCode))
|
||
|
actual := generateResponse(testString, statusCode)
|
||
|
|
||
|
if expected != actual {
|
||
|
t.Errorf("generated response did not match: expected: '%s', got: '%s'", expected, actual)
|
||
|
}
|
||
|
}
|
||
|
|
||
|
func TestMessageWithHtml(t *testing.T) {
|
||
|
testString := `abc<img src=1 onerror=alert("xss");`
|
||
|
escapedString := "abc<img src=1 onerror=alert("xss");"
|
||
|
statusCode := http.StatusNotFound
|
||
|
|
||
|
expected := strings.ReplaceAll(
|
||
|
strings.ReplaceAll(ErrorPage, "%message%", escapedString),
|
||
|
"%status%",
|
||
|
http.StatusText(statusCode))
|
||
|
actual := generateResponse(testString, statusCode)
|
||
|
|
||
|
if expected != actual {
|
||
|
t.Errorf("generated response did not match: expected: '%s', got: '%s'", expected, actual)
|
||
|
}
|
||
|
}
|