diff options
| author | Thibaut Girka <thib@sitedethib.com> | 2020-03-22 17:56:49 +0100 |
|---|---|---|
| committer | ThibG <thib@sitedethib.com> | 2020-03-24 12:07:47 +0100 |
| commit | 02f1c04fabab221130de8dfb5611be81825b193b (patch) | |
| tree | c54df9c99e6d2e4e2b4f384362ff9a28002b064d /spec | |
| parent | 2c510ee00a9fb4141a428d9a21dbd561171b3409 (diff) | |
Make sanitizer *not* add no-referrer etc. in local markdown toots if the link is “safe”
Diffstat (limited to 'spec')
| -rw-r--r-- | spec/lib/sanitize_config_spec.rb | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/spec/lib/sanitize_config_spec.rb b/spec/lib/sanitize_config_spec.rb index 2d82c00ea..7370c536b 100644 --- a/spec/lib/sanitize_config_spec.rb +++ b/spec/lib/sanitize_config_spec.rb @@ -7,6 +7,12 @@ describe Sanitize::Config do describe '::MASTODON_STRICT' do subject { Sanitize::Config::MASTODON_STRICT } + around do |example| + original_web_domain = Rails.configuration.x.web_domain + example.run + Rails.configuration.x.web_domain = original_web_domain + end + it 'keeps h1' do expect(Sanitize.fragment('<h1>Foo</h1>', subject)).to eq '<h1>Foo</h1>' end @@ -32,7 +38,12 @@ describe Sanitize::Config do end it 'keeps a with href and rel tag' do - expect(Sanitize.fragment('<a href="http://example.com" rel="tag">Test</a>', subject)).to eq '<a href="http://example.com" rel="nofollow noopener noreferrer tag" target="_blank">Test</a>' + expect(Sanitize.fragment('<a href="http://example.com" rel="tag">Test</a>', subject)).to eq '<a href="http://example.com" rel="tag nofollow noopener noreferrer" target="_blank">Test</a>' + end + + it 'keeps a with href and rel tag, not adding to rel if url is local' do + Rails.configuration.x.web_domain = 'domain.test' + expect(Sanitize.fragment('<a href="http://domain.test/tags/foo" rel="tag">Test</a>', subject.merge(outgoing: true))).to eq '<a href="http://domain.test/tags/foo" rel="tag" target="_blank">Test</a>' end end end |