function AttributeTest::providerTestAttributeValues

Same name in other branches
  1. 9 core/tests/Drupal/Tests/Core/Template/AttributeTest.php \Drupal\Tests\Core\Template\AttributeTest::providerTestAttributeValues()
  2. 8.9.x core/tests/Drupal/Tests/Core/Template/AttributeTest.php \Drupal\Tests\Core\Template\AttributeTest::providerTestAttributeValues()
  3. 11.x core/tests/Drupal/Tests/Core/Template/AttributeTest.php \Drupal\Tests\Core\Template\AttributeTest::providerTestAttributeValues()

File

core/tests/Drupal/Tests/Core/Template/AttributeTest.php, line 367

Class

AttributeTest
@coversDefaultClass \Drupal\Core\Template\Attribute @group Template

Namespace

Drupal\Tests\Core\Template

Code

public static function providerTestAttributeValues() {
    $data = [];
    $string = '"> <script>alert(123)</script>"';
    $data['safe-object-xss1'] = [
        [
            'title' => Markup::create($string),
        ],
        ' title="&quot;&gt; alert(123)&quot;"',
    ];
    $data['non-safe-object-xss1'] = [
        [
            'title' => $string,
        ],
        ' title="' . Html::escape($string) . '"',
    ];
    $string = '&quot;><script>alert(123)</script>';
    $data['safe-object-xss2'] = [
        [
            'title' => Markup::create($string),
        ],
        ' title="&quot;&gt;alert(123)"',
    ];
    $data['non-safe-object-xss2'] = [
        [
            'title' => $string,
        ],
        ' title="' . Html::escape($string) . '"',
    ];
    return $data;
}

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.