function BlockXssTest::testXssInCategory

Tests XSS in category.

File

core/modules/block/tests/src/Functional/BlockXssTest.php, line 70

Class

BlockXssTest: Tests that the block module properly escapes block descriptions.

Namespace

Code

public function testXssInCategory() {
  $this->container
    ->get('module_installer')
    ->install([
    'block_test',
  ]);
  $this->drupalPlaceBlock('test_xss_title');
  $this->drupalLogin($this->drupalCreateUser([
    'administer blocks',
    'access administration pages',
  ]));
  $this->drupalGet(Url::fromRoute('block.admin_display'));
  $this->clickLink('Place block');
  $this->assertSession()
    ->responseNotContains("<script>alert('XSS category');</script>");
}

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.

function BlockXssTest::testXssInCategory

File

Class

Namespace

Code

Search drupal 9

API Navigation

Breadcrumb

function BlockXssTest::testXssInCategory

File

Class

Namespace

Code

Search drupal 9

API Navigation