mirror of
https://github.com/gosticks/wordpress-develop.git
synced 2025-10-16 12:05:38 +00:00
164b22cf6a
This ensures that not only the return values match the expected results, but also that their type is the same. Going forward, stricter type checking by using `assertSame()` should generally be preferred to `assertEquals()` where appropriate, to make the tests more reliable. Props johnbillion, jrf, SergeyBiryukov. See #38266. git-svn-id: https://develop.svn.wordpress.org/trunk@48937 602fd350-edb4-49c9-b593-d223f7449a82
266 lines
10 KiB
PHP
266 lines
10 KiB
PHP
<?php
|
||
|
||
/**
|
||
* @group formatting
|
||
*/
|
||
class Tests_Formatting_EscUrl extends WP_UnitTestCase {
|
||
|
||
/**
|
||
* @ticket 23605
|
||
*/
|
||
function test_spaces() {
|
||
$this->assertSame( 'http://example.com/Mr%20WordPress', esc_url( 'http://example.com/Mr WordPress' ) );
|
||
$this->assertSame( 'http://example.com/Mr%20WordPress', esc_url( 'http://example.com/Mr%20WordPress' ) );
|
||
$this->assertSame( 'http://example.com/Mr%20%20WordPress', esc_url( 'http://example.com/Mr%20%20WordPress' ) );
|
||
$this->assertSame( 'http://example.com/Mr+WordPress', esc_url( 'http://example.com/Mr+WordPress' ) );
|
||
$this->assertSame( 'http://example.com/Mr+WordPress', esc_url( ' http://example.com/Mr+WordPress' ) );
|
||
|
||
$this->assertSame( 'http://example.com/?foo=one%20two%20three&bar=four', esc_url( 'http://example.com/?foo=one two three&bar=four' ) );
|
||
$this->assertSame( 'http://example.com/?foo=one%20two%20three&bar=four', esc_url( 'http://example.com/?foo=one%20two%20three&bar=four' ) );
|
||
}
|
||
|
||
function test_bad_characters() {
|
||
$this->assertSame( 'http://example.com/watchthelinefeedgo', esc_url( 'http://example.com/watchthelinefeed%0Ago' ) );
|
||
$this->assertSame( 'http://example.com/watchthelinefeedgo', esc_url( 'http://example.com/watchthelinefeed%0ago' ) );
|
||
$this->assertSame( 'http://example.com/watchthecarriagereturngo', esc_url( 'http://example.com/watchthecarriagereturn%0Dgo' ) );
|
||
$this->assertSame( 'http://example.com/watchthecarriagereturngo', esc_url( 'http://example.com/watchthecarriagereturn%0dgo' ) );
|
||
// Nesting checks.
|
||
$this->assertSame( 'http://example.com/watchthecarriagereturngo', esc_url( 'http://example.com/watchthecarriagereturn%0%0ddgo' ) );
|
||
$this->assertSame( 'http://example.com/watchthecarriagereturngo', esc_url( 'http://example.com/watchthecarriagereturn%0%0DDgo' ) );
|
||
$this->assertSame( 'http://example.com/', esc_url( 'http://example.com/%0%0%0DAD' ) );
|
||
$this->assertSame( 'http://example.com/', esc_url( 'http://example.com/%0%0%0ADA' ) );
|
||
$this->assertSame( 'http://example.com/', esc_url( 'http://example.com/%0%0%0DAd' ) );
|
||
$this->assertSame( 'http://example.com/', esc_url( 'http://example.com/%0%0%0ADa' ) );
|
||
}
|
||
|
||
function test_relative() {
|
||
$this->assertSame( '/example.php', esc_url( '/example.php' ) );
|
||
$this->assertSame( 'example.php', esc_url( 'example.php' ) );
|
||
$this->assertSame( '#fragment', esc_url( '#fragment' ) );
|
||
$this->assertSame( '?foo=bar', esc_url( '?foo=bar' ) );
|
||
}
|
||
|
||
function test_all_url_parts() {
|
||
$url = 'https://user:pass@host.example.com:1234/path;p=1?query=2&r[]=3#fragment';
|
||
|
||
$this->assertSame(
|
||
array(
|
||
'scheme' => 'https',
|
||
'host' => 'host.example.com',
|
||
'port' => 1234,
|
||
'user' => 'user',
|
||
'pass' => 'pass',
|
||
'path' => '/path;p=1',
|
||
'query' => 'query=2&r[]=3',
|
||
'fragment' => 'fragment',
|
||
),
|
||
parse_url( $url )
|
||
);
|
||
$this->assertSame( 'https://user:pass@host.example.com:1234/path;p=1?query=2&r%5B%5D=3#fragment', esc_url_raw( $url ) );
|
||
$this->assertSame( 'https://user:pass@host.example.com:1234/path;p=1?query=2&r%5B%5D=3#fragment', esc_url( $url ) );
|
||
}
|
||
|
||
function test_bare() {
|
||
$this->assertSame( 'http://example.com?foo', esc_url( 'example.com?foo' ) );
|
||
$this->assertSame( 'http://example.com', esc_url( 'example.com' ) );
|
||
$this->assertSame( 'http://localhost', esc_url( 'localhost' ) );
|
||
$this->assertSame( 'http://example.com/foo', esc_url( 'example.com/foo' ) );
|
||
$this->assertSame( 'http://баба.org/баба', esc_url( 'баба.org/баба' ) );
|
||
}
|
||
|
||
function test_encoding() {
|
||
$this->assertSame( 'http://example.com?foo=1&bar=2', esc_url_raw( 'http://example.com?foo=1&bar=2' ) );
|
||
$this->assertSame( 'http://example.com?foo=1&bar=2', esc_url_raw( 'http://example.com?foo=1&bar=2' ) );
|
||
$this->assertSame( 'http://example.com?foo=1&bar=2', esc_url_raw( 'http://example.com?foo=1&bar=2' ) );
|
||
|
||
$this->assertSame( 'http://example.com?foo=1&bar=2', esc_url( 'http://example.com?foo=1&bar=2' ) );
|
||
$this->assertSame( 'http://example.com?foo=1&bar=2', esc_url( 'http://example.com?foo=1&bar=2' ) );
|
||
$this->assertSame( 'http://example.com?foo=1&bar=2', esc_url( 'http://example.com?foo=1&bar=2' ) );
|
||
|
||
$param = urlencode( 'http://example.com/?one=1&two=2' );
|
||
$this->assertSame( "http://example.com?url={$param}", esc_url( "http://example.com?url={$param}" ) );
|
||
}
|
||
|
||
function test_protocol() {
|
||
$this->assertSame( 'http://example.com', esc_url( 'http://example.com' ) );
|
||
$this->assertSame( '', esc_url( 'nasty://example.com/' ) );
|
||
$this->assertSame(
|
||
'',
|
||
esc_url(
|
||
'example.com',
|
||
array(
|
||
'https',
|
||
)
|
||
)
|
||
);
|
||
$this->assertSame(
|
||
'',
|
||
esc_url(
|
||
'http://example.com',
|
||
array(
|
||
'https',
|
||
)
|
||
)
|
||
);
|
||
$this->assertSame(
|
||
'https://example.com',
|
||
esc_url(
|
||
'https://example.com',
|
||
array(
|
||
'http',
|
||
'https',
|
||
)
|
||
)
|
||
);
|
||
|
||
foreach ( wp_allowed_protocols() as $scheme ) {
|
||
$this->assertSame( "{$scheme}://example.com", esc_url( "{$scheme}://example.com" ), $scheme );
|
||
$this->assertSame(
|
||
"{$scheme}://example.com",
|
||
esc_url(
|
||
"{$scheme}://example.com",
|
||
array(
|
||
$scheme,
|
||
)
|
||
),
|
||
$scheme
|
||
);
|
||
}
|
||
|
||
$this->assertTrue( ! in_array( 'data', wp_allowed_protocols(), true ) );
|
||
$this->assertSame( '', esc_url( 'data:text/plain;base64,SGVsbG8sIFdvcmxkIQ%3D%3D' ) );
|
||
|
||
$this->assertTrue( ! in_array( 'foo', wp_allowed_protocols(), true ) );
|
||
$this->assertSame(
|
||
'foo://example.com',
|
||
esc_url(
|
||
'foo://example.com',
|
||
array(
|
||
'foo',
|
||
)
|
||
)
|
||
);
|
||
|
||
}
|
||
|
||
/**
|
||
* @ticket 23187
|
||
*/
|
||
function test_protocol_case() {
|
||
$this->assertSame( 'http://example.com', esc_url( 'HTTP://example.com' ) );
|
||
$this->assertSame( 'http://example.com', esc_url( 'Http://example.com' ) );
|
||
}
|
||
|
||
function test_display_extras() {
|
||
$this->assertSame( 'http://example.com/'quoted'', esc_url( 'http://example.com/\'quoted\'' ) );
|
||
$this->assertSame( 'http://example.com/\'quoted\'', esc_url( 'http://example.com/\'quoted\'', null, 'notdisplay' ) );
|
||
}
|
||
|
||
function test_non_ascii() {
|
||
$this->assertSame( 'http://example.org/баба', esc_url( 'http://example.org/баба' ) );
|
||
$this->assertSame( 'http://баба.org/баба', esc_url( 'http://баба.org/баба' ) );
|
||
$this->assertSame( 'http://müller.com/', esc_url( 'http://müller.com/' ) );
|
||
}
|
||
|
||
function test_feed() {
|
||
$this->assertSame( '', esc_url( 'feed:javascript:alert(1)' ) );
|
||
$this->assertSame( '', esc_url( 'feed:javascript:feed:alert(1)' ) );
|
||
$this->assertSame( '', esc_url( 'feed:feed:javascript:alert(1)' ) );
|
||
$this->assertSame( 'feed:feed:alert(1)', esc_url( 'feed:feed:alert(1)' ) );
|
||
$this->assertSame( 'feed:http://wordpress.org/feed/', esc_url( 'feed:http://wordpress.org/feed/' ) );
|
||
}
|
||
|
||
/**
|
||
* @ticket 16859
|
||
*/
|
||
function test_square_brackets() {
|
||
$this->assertSame( '/example.php?one%5B%5D=two', esc_url( '/example.php?one[]=two' ) );
|
||
$this->assertSame( '?foo%5Bbar%5D=baz', esc_url( '?foo[bar]=baz' ) );
|
||
$this->assertSame( '//example.com/?foo%5Bbar%5D=baz', esc_url( '//example.com/?foo[bar]=baz' ) );
|
||
$this->assertSame( 'http://example.com/?foo%5Bbar%5D=baz', esc_url( 'example.com/?foo[bar]=baz' ) );
|
||
$this->assertSame( 'http://localhost?foo%5Bbar%5D=baz', esc_url( 'localhost?foo[bar]=baz' ) );
|
||
$this->assertSame( 'http://example.com/?foo%5Bbar%5D=baz', esc_url( 'http://example.com/?foo[bar]=baz' ) );
|
||
$this->assertSame( 'http://example.com/?foo%5Bbar%5D=baz', esc_url( 'http://example.com/?foo%5Bbar%5D=baz' ) );
|
||
$this->assertSame( 'http://example.com/?baz=bar&foo%5Bbar%5D=baz', esc_url( 'http://example.com/?baz=bar&foo[bar]=baz' ) );
|
||
$this->assertSame( 'http://example.com/?baz=bar&foo%5Bbar%5D=baz', esc_url( 'http://example.com/?baz=bar&foo%5Bbar%5D=baz' ) );
|
||
}
|
||
|
||
/**
|
||
* Courtesy of http://blog.lunatech.com/2009/02/03/what-every-web-developer-must-know-about-url-encoding
|
||
*/
|
||
function test_reserved_characters() {
|
||
$url = "http://example.com/:@-._~!$&'()*+,=;:@-._~!$&'()*+,=:@-._~!$&'()*+,==?/?:@-._~!$%27()*+,;=/?:@-._~!$%27()*+,;==#/?:@-._~!$&'()*+,;=";
|
||
$this->assertSame( $url, esc_url_raw( $url ) );
|
||
}
|
||
|
||
/**
|
||
* @ticket 21974
|
||
*/
|
||
function test_protocol_relative_with_colon() {
|
||
$this->assertSame( '//example.com/foo?foo=abc:def', esc_url( '//example.com/foo?foo=abc:def' ) );
|
||
}
|
||
|
||
/**
|
||
* @ticket 31632
|
||
*/
|
||
function test_mailto_with_newline() {
|
||
$body = <<<EOT
|
||
Hi there,
|
||
|
||
I thought you might want to sign up for this newsletter
|
||
EOT;
|
||
$body = str_replace( "\r\n", "\n", $body );
|
||
$email_link = 'mailto:?body=' . rawurlencode( $body );
|
||
$email_link = esc_url( $email_link );
|
||
$this->assertSame( 'mailto:?body=Hi%20there%2C%0A%0AI%20thought%20you%20might%20want%20to%20sign%20up%20for%20this%20newsletter', $email_link );
|
||
}
|
||
|
||
/**
|
||
* @ticket 31632
|
||
*/
|
||
function test_mailto_in_http_url_with_newline() {
|
||
$body = <<<EOT
|
||
Hi there,
|
||
|
||
I thought you might want to sign up for this newsletter
|
||
EOT;
|
||
$body = str_replace( "\r\n", "\n", $body );
|
||
$email_link = 'http://example.com/mailto:?body=' . rawurlencode( $body );
|
||
$email_link = esc_url( $email_link );
|
||
$this->assertSame( 'http://example.com/mailto:?body=Hi%20there%2CI%20thought%20you%20might%20want%20to%20sign%20up%20for%20this%20newsletter', $email_link );
|
||
}
|
||
|
||
/**
|
||
* @ticket 23605
|
||
*/
|
||
function test_mailto_with_spaces() {
|
||
$body = 'Hi there, I thought you might want to sign up for this newsletter';
|
||
|
||
$email_link = 'mailto:?body=' . $body;
|
||
$email_link = esc_url( $email_link );
|
||
$this->assertSame( 'mailto:?body=Hi%20there,%20I%20thought%20you%20might%20want%20to%20sign%20up%20for%20this%20newsletter', $email_link );
|
||
}
|
||
|
||
/**
|
||
* @ticket 28015
|
||
*/
|
||
function test_invalid_charaters() {
|
||
$this->assertEmpty( esc_url_raw( '"^<>{}`' ) );
|
||
}
|
||
|
||
/**
|
||
* @ticket 34202
|
||
*/
|
||
function test_ipv6_hosts() {
|
||
$this->assertSame( '//[::127.0.0.1]', esc_url( '//[::127.0.0.1]' ) );
|
||
$this->assertSame( 'http://[::FFFF::127.0.0.1]', esc_url( 'http://[::FFFF::127.0.0.1]' ) );
|
||
$this->assertSame( 'http://[::127.0.0.1]', esc_url( 'http://[::127.0.0.1]' ) );
|
||
$this->assertSame( 'http://[::DEAD:BEEF:DEAD:BEEF:DEAD:BEEF:DEAD:BEEF]', esc_url( 'http://[::DEAD:BEEF:DEAD:BEEF:DEAD:BEEF:DEAD:BEEF]' ) );
|
||
|
||
// IPv6 with square brackets in the query? Why not.
|
||
$this->assertSame( '//[::FFFF::127.0.0.1]/?foo%5Bbar%5D=baz', esc_url( '//[::FFFF::127.0.0.1]/?foo[bar]=baz' ) );
|
||
$this->assertSame( 'http://[::FFFF::127.0.0.1]/?foo%5Bbar%5D=baz', esc_url( 'http://[::FFFF::127.0.0.1]/?foo[bar]=baz' ) );
|
||
}
|
||
|
||
}
|