View Directory | Revision Log | View Changeset
/hippo/hippo-components/htmlcleaner/trunk/src/test
Revision 34417 - Directory Listing - [select for diffs]
Modified Wed May 9 10:41:12 2012 UTC (10 years, 6 months ago) by jbloemendal
Diff to previous 34416
CMS7-6095: root javascript element xss get transformed into head script xss
 
Add test to validate explicit allowed javascript as child of the body element is not getting cleaned.
Revision 34416 - Directory Listing - [select for diffs]
Modified Wed May 9 10:24:21 2012 UTC (10 years, 6 months ago) by jbloemendal
Diff to previous 34047
CMS7-6095: root javascript element xss get transformed into head script xss
 
 XSS which is part of a head element with no following body element is not getting removed. The neko parser transforms the html structure, if no body element is present the HtmlRepairer is throwing an exception. The  html-element cleanup method is split up into html- and head-element, in case the body-element is reached the head-element method is skipping further processing.
Revision 34047 - Directory Listing - [select for diffs]
Modified Wed Apr 11 16:29:58 2012 UTC (10 years, 7 months ago) by fvlankvelt
Diff to previous 33994
HTMLCLEANER-6: add some unit tests that describe the implemented behavior
Revision 33994 - Directory Listing - [select for diffs]
Modified Fri Apr 6 13:59:03 2012 UTC (10 years, 7 months ago) by jjoachimsthal
Diff to previous 33986
HTMLCLEANER-39 HTMLCleaner does not check individual class names for special elements
Revision 33986 - Directory Listing - [select for diffs]
Modified Fri Apr 6 13:01:24 2012 UTC (10 years, 7 months ago) by jjoachimsthal
Diff to previous 33984
HTMLCLEANER-38 Add option to allow any CSS class in div, span, pre and p.
Use * as wildcard (which is not allowed as regular CSS classname so it cannot conflict with the output of the WYSIWYG editor)
Revision 33984 - Directory Listing - [select for diffs]
Modified Fri Apr 6 11:16:24 2012 UTC (10 years, 7 months ago) by jjoachimsthal
Diff to previous 26408
HTMLCLEANER-6 add log4j configuration for test purposes
Revision 26408 - Directory Listing - [select for diffs]
Modified Sat Jan 8 12:04:39 2011 UTC (11 years, 10 months ago) by fvlankvelt
Diff to previous 25479
HTMLCLEANER-35: apply patch

Patch supplied by Marijan Milicevic:

- adding generics (where possible) 
- checks for string.length ==0 instead of equals("") 
- other, small micro performance improvements, like zero array allocations 
- foreach loops instead of for loops (with k, z, etc loop variables, which is really confusing and error prone) 
- removed unnecessary castings 


Revision 25479 - Directory Listing - [select for diffs]
Modified Mon Nov 29 17:11:02 2010 UTC (12 years ago) by jjoachimsthal
Diff to previous 24286
HTMLCLEANER-33 Fix incorrect nested lists from Xinha
Revision 24286 - Directory Listing - [select for diffs]
Modified Tue Oct 12 09:04:09 2010 UTC (12 years, 1 month ago) by jjoachimsthal
Diff to previous 23397
HTMLCLEANER-32 only add a p in table cell if there is already a block element. Otherwise the cell contains tabular data which doesn't need a p.
Small refactoring for readability and reusing the same String.
Added unittest for this.
Revision 23397 - Directory Listing - [select for diffs]
Modified Tue Jul 6 09:37:25 2010 UTC (12 years, 4 months ago) by abogaart
Diff to previous 22580
HTMLCLEANER-30 - <style> element outside of the <head> is removed, but character data is preserved
 - Character data in <style> elements found outside of the <head> are now skipped.
 - Added unit test for <head> and <style> cleanup, as well a lineWidth test
Revision 22580 - Directory Listing - [select for diffs]
Modified Wed Apr 28 11:15:40 2010 UTC (12 years, 7 months ago) by abogaart
Diff to previous 22422
HTMLCLEANER-27 - Whitespace characters (including non-breaking-space) inside body/td/th/blockquote should not be wrapped in a <p> element
- fixed and added test
Revision 22422 - Directory Listing - [select for diffs]
Added Fri Apr 9 16:18:47 2010 UTC (12 years, 7 months ago) by abogaart
HTMLCLEANER-23: Created test for newly introduced AllowSingleWhitespaceElement with ignoreTrailing whitespace

Convenience Links