mirror of
https://github.com/gosticks/wordpress-develop.git
synced 2026-07-04 01:00:04 +00:00
Security: move Content-Security-Policy script loaders.
Move `wp_get_script_tag()`, `wp_print_script_tag()`, `wp_print_inline_script_tag()` and `wp_get_inline_script_tag()` functions from `functions.php` to `script-loader.php`. Relocate related tests to `dependencies` sub-directory. Follow up to [50167]. Props adamsilverstein, hellofromTonya, SergeyBiryukov. Fixes #39941. git-svn-id: https://develop.svn.wordpress.org/trunk@50409 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
132
tests/phpunit/tests/dependencies/wpSanitizeScriptAttributes.php
Normal file
132
tests/phpunit/tests/dependencies/wpSanitizeScriptAttributes.php
Normal file
@@ -0,0 +1,132 @@
|
||||
<?php
|
||||
|
||||
/**
|
||||
* Test wp_sanitize_script_attributes().
|
||||
*
|
||||
* @group dependencies
|
||||
* @group scripts
|
||||
* @covers ::wp_sanitize_script_attributes
|
||||
*/
|
||||
class Tests_Functions_wpSanitizeScriptAttributes extends WP_UnitTestCase {
|
||||
|
||||
function test_sanitize_script_attributes_type_set() {
|
||||
add_theme_support( 'html5', array( 'script' ) );
|
||||
|
||||
$this->assertSame(
|
||||
' type="application/javascript" src="https://DOMAIN.TLD/PATH/FILE.js" nomodule',
|
||||
wp_sanitize_script_attributes(
|
||||
array(
|
||||
'type' => 'application/javascript',
|
||||
'src' => 'https://DOMAIN.TLD/PATH/FILE.js',
|
||||
'async' => false,
|
||||
'nomodule' => true,
|
||||
)
|
||||
)
|
||||
);
|
||||
|
||||
remove_theme_support( 'html5' );
|
||||
|
||||
$this->assertSame(
|
||||
' src="https://DOMAIN.TLD/PATH/FILE.js" type="application/javascript" nomodule="nomodule"',
|
||||
wp_sanitize_script_attributes(
|
||||
array(
|
||||
'src' => 'https://DOMAIN.TLD/PATH/FILE.js',
|
||||
'type' => 'application/javascript',
|
||||
'async' => false,
|
||||
'nomodule' => true,
|
||||
)
|
||||
)
|
||||
);
|
||||
}
|
||||
|
||||
function test_sanitize_script_attributes_type_not_set() {
|
||||
add_theme_support( 'html5', array( 'script' ) );
|
||||
|
||||
$this->assertSame(
|
||||
' src="https://DOMAIN.TLD/PATH/FILE.js" nomodule',
|
||||
wp_sanitize_script_attributes(
|
||||
array(
|
||||
'src' => 'https://DOMAIN.TLD/PATH/FILE.js',
|
||||
'async' => false,
|
||||
'nomodule' => true,
|
||||
)
|
||||
)
|
||||
);
|
||||
|
||||
remove_theme_support( 'html5' );
|
||||
|
||||
$this->assertSame(
|
||||
' src="https://DOMAIN.TLD/PATH/FILE.js" nomodule="nomodule"',
|
||||
wp_sanitize_script_attributes(
|
||||
array(
|
||||
'src' => 'https://DOMAIN.TLD/PATH/FILE.js',
|
||||
'async' => false,
|
||||
'nomodule' => true,
|
||||
)
|
||||
)
|
||||
);
|
||||
}
|
||||
|
||||
|
||||
function test_sanitize_script_attributes_no_attributes() {
|
||||
add_theme_support( 'html5', array( 'script' ) );
|
||||
|
||||
$this->assertSame(
|
||||
'',
|
||||
wp_sanitize_script_attributes( array() )
|
||||
);
|
||||
|
||||
remove_theme_support( 'html5' );
|
||||
}
|
||||
|
||||
function test_sanitize_script_attributes_relative_src() {
|
||||
add_theme_support( 'html5', array( 'script' ) );
|
||||
|
||||
$this->assertSame(
|
||||
' src="PATH/FILE.js" nomodule',
|
||||
wp_sanitize_script_attributes(
|
||||
array(
|
||||
'src' => 'PATH/FILE.js',
|
||||
'async' => false,
|
||||
'nomodule' => true,
|
||||
)
|
||||
)
|
||||
);
|
||||
|
||||
remove_theme_support( 'html5' );
|
||||
}
|
||||
|
||||
|
||||
function test_sanitize_script_attributes_only_false_boolean_attributes() {
|
||||
add_theme_support( 'html5', array( 'script' ) );
|
||||
|
||||
$this->assertSame(
|
||||
'',
|
||||
wp_sanitize_script_attributes(
|
||||
array(
|
||||
'async' => false,
|
||||
'nomodule' => false,
|
||||
)
|
||||
)
|
||||
);
|
||||
|
||||
remove_theme_support( 'html5' );
|
||||
}
|
||||
|
||||
function test_sanitize_script_attributes_only_true_boolean_attributes() {
|
||||
add_theme_support( 'html5', array( 'script' ) );
|
||||
|
||||
$this->assertSame(
|
||||
' async nomodule',
|
||||
wp_sanitize_script_attributes(
|
||||
array(
|
||||
'async' => true,
|
||||
'nomodule' => true,
|
||||
)
|
||||
)
|
||||
);
|
||||
|
||||
remove_theme_support( 'html5' );
|
||||
}
|
||||
|
||||
}
|
||||
Reference in New Issue
Block a user