| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501 | <?php/** * @file * Tests that exercise the validation functions in the link module. */class LinkValidateTestCase extends LinkBaseTestClass {  function setUp($modules = array()) {    parent::setUp($modules);  }  function createLink($url, $title, $attributes = array()) {    return array(      'url' => $url,      'title' => $title,      'attributes' => $attributes,    );  }  /**   * Takes a url, and sees if it can validate that the url is valid.   */  public function link_test_validate_url($url) {    $field_name = $this->createLinkField();    $permission = 'create page content';    $this->checkPermissions(array($permission), TRUE);    $this->drupalGet('node/add/page');    $label = $this->randomName();    $edit = array(      'title' => $label,      $field_name . '[und][0][title]' => $label,      $field_name . '[und][0][url]' => $url,    );    $this->drupalPost(NULL, $edit, t('Save'));    $this->assertRaw(t(' has been created.'), 'Node created');    $nid = 1; //$matches[1];    $node = node_load($nid);    $this->assertEqual($url, $node->{$field_name}['und'][0]['url']);  }}class LinkValidateTest extends LinkValidateTestCase {  public static function getInfo() {    return array(      'name' => 'Link Validation Tests',      'description' => 'Tests the field validation.',      'group' => 'Link',    );  }  function test_link_validate_basic_url() {    $this->link_test_validate_url('http://www.example.com');  }  /**   * Test if we're stopped from posting a bad url on default validation.   */  function test_link_validate_bad_url_validate_default() {    $account = $this->drupalCreateUser(array('administer content types',                                             'administer nodes',                                             'administer filters',                                             'access content',                                             'create page content',                                             'access administration pages'));    $this->drupalLogin($account);    // create field    $name = strtolower($this->randomName());    $edit = array(      'fields[_add_new_field][label]' => $name,      'fields[_add_new_field][field_name]' => $name,      'fields[_add_new_field][type]' => 'link_field',      'fields[_add_new_field][widget_type]' => 'link_field',    );    $this->drupalPost('admin/structure/types/manage/page/fields', $edit, t('Save'));    $this->drupalPost(NULL, array(), t('Save field settings'));    $this->drupalPost(NULL, array(), t('Save settings'));    // Is field created?    $this->assertRaw(t('Saved %label configuration', array('%label' => $name)), 'Field added');    node_types_rebuild();    menu_rebuild();    // create page form    $this->drupalGet('node/add/page');    $field_name = 'field_' . $name;    $this->assertField('edit-field-'. $name .'-und-0-title', 'Title found');    $this->assertField('edit-field-'. $name .'-und-0-url', 'URL found');    $edit = array(      'title' => 'Simple Title',      $field_name .'[und][0][url]' => 'edik:naw',    );    $this->drupalPost(NULL, $edit, t('Save'));    $this->assertText(t('Not a valid URL.'));  }  /**   * Test if we're stopped from posting a bad url with validation on.   */  function test_link_validate_bad_url_validate_on() {    $account = $this->drupalCreateUser(array('administer content types',                                             'administer nodes',                                             'administer filters',                                             'access content',                                             'create page content',                                             'access administration pages'));    $this->drupalLogin($account);    // create field    $name = strtolower($this->randomName());    $edit = array(      'fields[_add_new_field][label]' => $name,      'fields[_add_new_field][field_name]' => $name,      'fields[_add_new_field][type]' => 'link_field',      'fields[_add_new_field][widget_type]' => 'link_field',    );    $this->drupalPost('admin/structure/types/manage/page/fields', $edit, t('Save'));    $this->drupalPost(NULL, array(), t('Save field settings'));    $this->drupalPost(NULL, array('instance[settings][validate_url]' => TRUE), t('Save settings'));    // Is field created?    $this->assertRaw(t('Saved %label configuration', array('%label' => $name)), 'Field added');    node_types_rebuild();    menu_rebuild();    // create page form    $this->drupalGet('node/add/page');    $field_name = 'field_' . $name;    $this->assertField('edit-field-'. $name .'-und-0-title', 'Title found');    $this->assertField('edit-field-'. $name .'-und-0-url', 'URL found');    $edit = array(      'title' => 'Simple Title',      $field_name .'[und][0][url]' => 'edik:naw',    );    $this->drupalPost(NULL, $edit, t('Save'));    $this->assertText(t('Not a valid URL.'));  }  /**   * Test if we can post a bad url if the validation is expressly turned off.   */  function test_link_validate_bad_url_validate_off() {    $account = $this->drupalCreateUser(array('administer content types',                                             'administer nodes',                                             'administer filters',                                             'access content',                                             'create page content',                                             'access administration pages'));    $this->drupalLogin($account);    // create field    $name = strtolower($this->randomName());    $edit = array(      'fields[_add_new_field][label]' => $name,      'fields[_add_new_field][field_name]' => $name,      'fields[_add_new_field][type]' => 'link_field',      'fields[_add_new_field][widget_type]' => 'link_field',    );    $this->drupalPost('admin/structure/types/manage/page/fields', $edit, t('Save'));    $this->drupalPost(NULL, array(), t('Save field settings'));    $this->drupalPost(NULL, array('instance[settings][validate_url]' => FALSE), t('Save settings'));    /*$instance_details = db_query("SELECT * FROM {field_config_instance} WHERE field_name = :field_name AND bundle = 'page'", array(':field_name' => 'field_'. $name))->fetchObject();    $this->fail('<pre>'. print_r($instance_details, TRUE) .'</pre>');    $this->fail('<pre>'. print_r(unserialize($instance_details->data), TRUE) .'</pre>');*/    // Is field created?    $this->assertRaw(t('Saved %label configuration', array('%label' => $name)), 'Field added');    node_types_rebuild();    menu_rebuild();    // create page form    $this->drupalGet('node/add/page');    $field_name = 'field_' . $name;    $this->assertField('edit-field-'. $name .'-und-0-title', 'Title found');    $this->assertField('edit-field-'. $name .'-und-0-url', 'URL found');    $edit = array(      'title' => 'Simple Title',      $field_name .'[und][0][url]' => 'edik:naw',    );    $this->drupalPost(NULL, $edit, t('Save'));    $this->assertNoText(t('Not a valid URL.'));  }  /**   * Test if a bad url can sneak through un-filtered if we play with the validation...   */  function x_test_link_validate_switching_between_validation_status() {    $this->acquireContentTypes(1);    $account = $this->drupalCreateUser(array('administer content types',                                             'administer nodes',                                             'access administration pages',                                             'access content',                                             'create '. $this->content_types[0]->type .' content',                                             'edit any '. $this->content_types[0]->type .' content'));    $this->drupalLogin($account);    variable_set('node_options_'. $this->content_types[0]->name, array('status', 'promote'));    $field_settings = array(      'type' => 'link',      'widget_type' => 'link',      'type_name' => $this->content_types[0]->name,      'attributes' => array(), // <-- This is needed or we have an error      'validate_url' => 0,    );    $field = $this->createField($field_settings, 0);    //$this->fail('<pre>'. print_r($field, TRUE) .'</pre>');    $field_db_info = content_database_info($field);    $this->acquireNodes(2);    $node = node_load($this->nodes[0]->nid);    $this->drupalGet('node/'. $this->nodes[0]->nid);    $edit = array();    $title = $this->randomName();    $url = 'javascript:alert("http://example.com/' . $this->randomName() . '")';    $edit[$field['field_name'] .'[0][url]'] = $url;    $edit[$field['field_name'] .'[0][title]'] = $title;    $this->drupalPost('node/'. $this->nodes[0]->nid .'/edit', $edit, t('Save'));    //$this->pass($this->content);    $this->assertNoText(t('Not a valid URL.'));    // Make sure we get a new version!    $node = node_load($this->nodes[0]->nid, NULL, TRUE);    $this->assertEqual($url, $node->{$field['field_name']}[0]['url']);    $this->drupalGet('node/'. $node->nid);    $this->assertNoRaw($url, 'Make sure Javascript does not display.');    // Turn the array validation back _on_.    $edit = array('validate_url' => TRUE);    $node_type_link = str_replace('_', '-', $node->type);    //$this->drupalGet('admin/content/node-type/'. $node_type_link .'/fields'); ///'. $field['field_name']);    //$this->fail($this->content);    $this->drupalPost('admin/content/node-type/'. $node_type_link .'/fields/'. $field['field_name'], $edit, t('Save field settings'));    $this->drupalGet('node/'. $node->nid);    // This actually works because the display_url goes through the core    // url() function.  But we should have a test that makes sure it continues    // to work.    $this->assertNoRaw($url, 'Make sure Javascript does not display.');    //$this->fail($this->content);  }  // Validate that '<front>' is a valid url.  function test_link_front_url() {    $this->link_test_validate_url('<front>');  }  // Validate that an internal url would be accepted.  function test_link_internal_url() {    $this->link_test_validate_url('node/32');  }  // Validate a simple mailto.  function test_link_mailto() {    $this->link_test_validate_url('mailto:jcfiala@gmail.com');  }  function test_link_external_https() {    $this->link_test_validate_url('https://www.example.com/');  }  function test_link_ftp() {    $this->link_test_validate_url('ftp://www.example.com/');  }}class LinkValidateTestNews extends LinkValidateTestCase {  public static function getInfo() {    return array(      'name' => 'Link News Validation Tests',      'description' => 'Tests the field validation for usenet urls.',      'group' => 'Link',    );  }  // Validate a news link to a message group  function test_link_news() {    $this->link_test_validate_url('news:comp.infosystems.www.misc');  }  // Validate a news link to a message id.  Said ID copied off of google groups.  function test_link_news_message() {    $this->link_test_validate_url('news:hj0db8$vrm$1@news.eternal-september.org');  }}class LinkValidateSpecificURL extends LinkValidateTestCase {  public static function getInfo() {    return array(      'name' => 'Link Specific URL Validation Tests',      'description' => 'Tests field validation with unusual urls',      'group' => 'Link',    );  }  // Lets throw in a lot of umlouts for testing!  function test_umlout_url() {    $this->link_test_validate_url('http://üÜü.exämple.com/nöde');  }  function test_umlout_mailto() {    $this->link_test_validate_url('mailto:Üser@exÅmple.com');  }  function test_german_b_url() {    $this->link_test_validate_url('http://www.test.com/ßstuff');  }  function test_special_n_url() {    $this->link_test_validate_url('http://www.testÑñ.com/');  }  function test_curly_brackets_in_query() {    $this->link_test_validate_url('http://www.healthyteennetwork.org/index.asp?Type=B_PR&SEC={2AE1D600-4FC6-4B4D-8822-F1D5F072ED7B}&DE={235FD1E7-208D-4363-9854-4E6775EB8A4C}');  }  /**   * Here, we're testing that a very long url is stored properly in the db.   *   * Basicly, trying to test http://drupal.org/node/376818   */  function testLinkURLFieldIsBig() {    $long_url = 'http://th.wikipedia.org/wiki/%E0%B9%82%E0%B8%A3%E0%B8%87%E0%B9%80%E0%B8%A3%E0%B8%B5%E0%B8%A2%E0%B8%99%E0%B9%80%E0%B8%9A%E0%B8%8D%E0%B8%88%E0%B8%A1%E0%B8%A3%E0%B8%B2%E0%B8%8A%E0%B8%B9%E0%B8%97%E0%B8%B4%E0%B8%A8_%E0%B8%99%E0%B8%84%E0%B8%A3%E0%B8%A8%E0%B8%A3%E0%B8%B5%E0%B8%98%E0%B8%A3%E0%B8%A3%E0%B8%A1%E0%B8%A3%E0%B8%B2%E0%B8%8A';    $this->link_test_validate_url($long_url);  }}/** * A series of tests of links, only going against the link_validate_url function in link.module. * * Validation is guided by the rules in http://tools.ietf.org/html/rfc1738 ! */class LinkValidateUrlLight extends DrupalWebTestCase {  //function setUp() {    // do we need to include something here?    //module_load_include('inc', 'link');  //}  public static function getInfo() {    return array(      'name' => 'Link Light Validation Tests',      'description' => 'Tests the link_validate_url() function by itself, without invoking the full drupal/cck lifecycle.',      'group' => 'Link',    );  }  /**   * Translates the LINK type constants to english for display and debugging of tests   */  function name_Link_Type($type) {    switch ($type) {      case LINK_FRONT:        return "Front";      case LINK_EMAIL:        return "Email";      case LINK_NEWS:        return "Newsgroup";      case LINK_INTERNAL:        return "Internal Link";      case LINK_EXTERNAL:        return "External Link";      case FALSE:        return "Invalid Link";      default:        return "Bad Value:". $type;    }  }  // Make sure that a link labelled <front> works.  function testValidateFrontLink() {    $valid = link_validate_url('<front>');    $this->assertEqual(LINK_FRONT, $valid, 'Make sure that front link is verfied and identified');  }  function testValidateEmailLink() {    $valid = link_validate_url('mailto:bob@example.com');    $this->assertEqual(LINK_EMAIL, $valid, "Make sure a basic mailto is verified and identified");  }  function testValidateEmailLinkBad() {    $valid = link_validate_url(':bob@example.com');    $this->assertEqual(FALSE, $valid, 'Make sure just a bad address is correctly failed');  }  function testValidateNewsgroupLink() {    $valid = link_validate_url('news:comp.infosystems.www.misc');    $this->assertEqual(LINK_NEWS, $valid, 'Make sure link to newsgroup validates as news.');  }  function testValidateNewsArticleLink() {    $valid = link_validate_url('news:hj0db8$vrm$1@news.eternal-september.org');    $this->assertEqual(LINK_NEWS, $valid, 'Make sure link to specific article valiates as news.');  }  function testValidateBadNewsgroupLink() {    $valid = link_validate_url('news:comp.bad_name.misc');    $this->assertEqual(FALSE, $valid, 'newsgroup names can\'t contain underscores, so it should come back as invalid.');  }  function testValidateInternalLink() {    $valid = link_validate_url('node/5');    $this->assertEqual(LINK_INTERNAL, $valid, 'Test normal internal link.');  }  function testValidateInternalLinkWithDot() {    $valid = link_validate_url('rss.xml');    $this->assertEqual(LINK_INTERNAL, $valid, 'Test rss.xml internal link.');  }  function testValidateInternalLinkToFile() {    $valid = link_validate_url('files/test.jpg');    $this->assertEqual(LINK_INTERNAL, $valid, 'Test files/test.jpg internal link.');  }  function testValidateExternalLinks() {    $links = array(      'http://localhost:8080/',      'www.example.com',      'www.example.com/',      'http://username:p%40ssw0rd!@www.example.com/',      'http://@www.example.com/',      'http://username:@www.example.com/',      'http://username:password@www.example.com:8080/',      'http://127.0.0.1:80/',      'http://127.173.24.255:4723/',      '127.173.24.255:4723/',      'http://255.255.255.255:4823/',      'www.test-site.com',      'http://example.com/index.php?q=node/123',      'http://example.com/index.php?page=this\that',      'http://example.com/?first_name=Joe Bob&last_name=Smith',      // Anchors      'http://www.example.com/index.php#test',      'http://www.example.com/index.php#this@that.',      'http://www.example.com/index.php#',      'http://www.cnn.com/video/#/video/politics/2008/12/09/intv.madeleine.albright.cnn',      'http://www.archive.org/stream/aesopsfables00aesorich#page/n7/mode/2up',      'http://www.example.com/blah/#this@that?',    );    // Test all of the protocols.    $allowed_protocols = variable_get('filter_allowed_protocols', array('http', 'https', 'ftp', 'news', 'nntp', 'telnet', 'mailto', 'irc', 'ssh', 'sftp', 'webcal'));    foreach ($allowed_protocols as $protocol) {      if ($protocol !== 'news' && $protocol !== 'mailto') {        $links[] = $protocol .'://www.example.com';      }    }    foreach ($links as $link) {      $valid = link_validate_url($link);      $this->assertEqual(LINK_EXTERNAL, $valid, 'Testing that '. $link .' is a valid external link.');      // The following two lines are commented out and only used for comparisons.      //$valid2 = valid_url($link, TRUE);      //$this->assertEqual(TRUE, $valid2, "Using valid_url() on $link.");    }  }  function testInvalidExternalLinks() {    $links = array(      'http://www.ex ample.com/',      '//www.example.com/',      'http://25.0.0/', // bad ip!      'http://4827.0.0.2/',      'http://www.testß.com/', // ß not allowed in domain names!      //'http://www.-fudge.com/', // domains can't have sections starting with a dash.    );    foreach ($links as $link) {      $valid = link_validate_url($link);      $this->assertEqual(FALSE, $valid, 'Testing that '. $link .' is not a valid link.');    }  }}
 |