View source
<?php
namespace Drupal\Tests\filter\Kernel;
use Drupal\Component\Render\FormattableMarkup;
use Drupal\Core\Language\LanguageInterface;
use Drupal\Core\Session\AnonymousUserSession;
use Drupal\Core\TypedData\OptionsProviderInterface;
use Drupal\Core\TypedData\DataDefinition;
use Drupal\filter\Entity\FilterFormat;
use Drupal\filter\Plugin\DataType\FilterFormat as FilterFormatDataType;
use Drupal\filter\Plugin\FilterInterface;
use Drupal\KernelTests\Core\Entity\EntityKernelTestBase;
use Symfony\Component\Validator\ConstraintViolationListInterface;
class FilterAPITest extends EntityKernelTestBase {
public static $modules = [
'system',
'filter',
'filter_test',
'user',
];
protected function setUp() {
parent::setUp();
$this
->installConfig([
'system',
'filter',
'filter_test',
]);
}
public function testCheckMarkupFilterOrder() {
$crazy_format = FilterFormat::create([
'format' => 'crazy',
'name' => 'Crazy',
'weight' => 1,
'filters' => [
'filter_html_escape' => [
'weight' => 10,
'status' => 1,
],
'filter_html' => [
'weight' => -10,
'status' => 1,
'settings' => [
'allowed_html' => '<p>',
],
],
],
]);
$crazy_format
->save();
$text = "<p>Llamas are <not> awesome!</p>";
$expected_filtered_text = "<p>Llamas are awesome!</p>";
$this
->assertEqual(check_markup($text, 'crazy'), $expected_filtered_text, 'Filters applied in correct order.');
}
public function testCheckMarkupFilterSubset() {
$text = "Text with <marquee>evil content and</marquee> a URL: https://www.drupal.org!";
$expected_filtered_text = "Text with evil content and a URL: <a href=\"https://www.drupal.org\">https://www.drupal.org</a>!";
$expected_filter_text_without_html_generators = "Text with evil content and a URL: https://www.drupal.org!";
$actual_filtered_text = check_markup($text, 'filtered_html', '', []);
$this
->verbose("Actual:<pre>{$actual_filtered_text}</pre>Expected:<pre>{$expected_filtered_text}</pre>");
$this
->assertEqual($actual_filtered_text, $expected_filtered_text, 'Expected filter result.');
$actual_filtered_text_without_html_generators = check_markup($text, 'filtered_html', '', [
FilterInterface::TYPE_MARKUP_LANGUAGE,
]);
$this
->verbose("Actual:<pre>{$actual_filtered_text_without_html_generators}</pre>Expected:<pre>{$expected_filter_text_without_html_generators}</pre>");
$this
->assertEqual($actual_filtered_text_without_html_generators, $expected_filter_text_without_html_generators, 'Expected filter result when skipping FilterInterface::TYPE_MARKUP_LANGUAGE filters.');
$actual_filtered_text_without_html_generators = check_markup($text, 'filtered_html', '', [
FilterInterface::TYPE_HTML_RESTRICTOR,
FilterInterface::TYPE_MARKUP_LANGUAGE,
]);
$this
->verbose("Actual:<pre>{$actual_filtered_text_without_html_generators}</pre>Expected:<pre>{$expected_filter_text_without_html_generators}</pre>");
$this
->assertEqual($actual_filtered_text_without_html_generators, $expected_filter_text_without_html_generators, 'Expected filter result when skipping FilterInterface::TYPE_MARKUP_LANGUAGE filters, even when trying to disable filters of the FilterInterface::TYPE_HTML_RESTRICTOR type.');
}
public function testFilterFormatAPI() {
$filtered_html_format = FilterFormat::load('filtered_html');
$this
->assertIdentical($filtered_html_format
->getHtmlRestrictions(), [
'allowed' => [
'p' => FALSE,
'br' => FALSE,
'strong' => FALSE,
'a' => [
'href' => TRUE,
'hreflang' => TRUE,
],
'*' => [
'style' => FALSE,
'on*' => FALSE,
'lang' => TRUE,
'dir' => [
'ltr' => TRUE,
'rtl' => TRUE,
],
],
],
], 'FilterFormatInterface::getHtmlRestrictions() works as expected for the filtered_html format.');
$this
->assertIdentical($filtered_html_format
->getFilterTypes(), [
FilterInterface::TYPE_HTML_RESTRICTOR,
FilterInterface::TYPE_MARKUP_LANGUAGE,
], 'FilterFormatInterface::getFilterTypes() works as expected for the filtered_html format.');
$full_html_format = FilterFormat::load('full_html');
$this
->assertIdentical($full_html_format
->getHtmlRestrictions(), FALSE, 'FilterFormatInterface::getHtmlRestrictions() works as expected for the full_html format.');
$this
->assertIdentical($full_html_format
->getFilterTypes(), [], 'FilterFormatInterface::getFilterTypes() works as expected for the full_html format.');
$stupid_filtered_html_format = FilterFormat::create([
'format' => 'stupid_filtered_html',
'name' => 'Stupid Filtered HTML',
'filters' => [
'filter_html' => [
'status' => 1,
'settings' => [
'allowed_html' => '',
],
],
],
]);
$stupid_filtered_html_format
->save();
$this
->assertIdentical($stupid_filtered_html_format
->getHtmlRestrictions(), [
'allowed' => [],
], 'FilterFormatInterface::getHtmlRestrictions() works as expected for the stupid_filtered_html format.');
$this
->assertIdentical($stupid_filtered_html_format
->getFilterTypes(), [
FilterInterface::TYPE_HTML_RESTRICTOR,
], 'FilterFormatInterface::getFilterTypes() works as expected for the stupid_filtered_html format.');
$very_restricted_html_format = FilterFormat::create([
'format' => 'very_restricted_html',
'name' => 'Very Restricted HTML',
'filters' => [
'filter_html' => [
'status' => 1,
'settings' => [
'allowed_html' => '<p> <br> <a href> <strong>',
],
],
'filter_test_restrict_tags_and_attributes' => [
'status' => 1,
'settings' => [
'restrictions' => [
'allowed' => [
'p' => TRUE,
'br' => FALSE,
'a' => [
'href' => TRUE,
],
'em' => TRUE,
],
],
],
],
],
]);
$very_restricted_html_format
->save();
$this
->assertIdentical($very_restricted_html_format
->getHtmlRestrictions(), [
'allowed' => [
'p' => FALSE,
'br' => FALSE,
'a' => [
'href' => TRUE,
],
'*' => [
'style' => FALSE,
'on*' => FALSE,
'lang' => TRUE,
'dir' => [
'ltr' => TRUE,
'rtl' => TRUE,
],
],
],
], 'FilterFormatInterface::getHtmlRestrictions() works as expected for the very_restricted_html format.');
$this
->assertIdentical($very_restricted_html_format
->getFilterTypes(), [
FilterInterface::TYPE_HTML_RESTRICTOR,
], 'FilterFormatInterface::getFilterTypes() works as expected for the very_restricted_html format.');
$nonsensical_restricted_html = FilterFormat::create([
'format' => 'nonsensical_restricted_html',
'name' => 'Nonsensical Restricted HTML',
'filters' => [
'filter_html' => [
'status' => 1,
'settings' => [
'allowed_html' => '<a> <b class> <c class="*"> <d class="foo bar-* *">',
],
],
],
]);
$nonsensical_restricted_html
->save();
$this
->assertIdentical($nonsensical_restricted_html
->getHtmlRestrictions(), [
'allowed' => [
'a' => FALSE,
'b' => [
'class' => TRUE,
],
'c' => [
'class' => TRUE,
],
'd' => [
'class' => [
'foo' => TRUE,
'bar-*' => TRUE,
],
],
'*' => [
'style' => FALSE,
'on*' => FALSE,
'lang' => TRUE,
'dir' => [
'ltr' => TRUE,
'rtl' => TRUE,
],
],
],
], 'FilterFormatInterface::getHtmlRestrictions() works as expected for the nonsensical_restricted_html format.');
$this
->assertIdentical($very_restricted_html_format
->getFilterTypes(), [
FilterInterface::TYPE_HTML_RESTRICTOR,
], 'FilterFormatInterface::getFilterTypes() works as expected for the very_restricted_html format.');
}
public function testProcessedTextElement() {
FilterFormat::create([
'format' => 'element_test',
'name' => 'processed_text element test format',
'filters' => [
'filter_test_assets' => [
'weight' => -1,
'status' => TRUE,
],
'filter_test_cache_tags' => [
'weight' => 0,
'status' => TRUE,
],
'filter_test_cache_contexts' => [
'weight' => 0,
'status' => TRUE,
],
'filter_test_cache_merge' => [
'weight' => 0,
'status' => TRUE,
],
'filter_test_placeholders' => [
'weight' => 1,
'status' => TRUE,
],
'filter_htmlcorrector' => [
'weight' => 10,
'status' => TRUE,
],
],
])
->save();
$build = [
'#type' => 'processed_text',
'#text' => '<p>Hello, world!</p>',
'#format' => 'element_test',
];
\Drupal::service('renderer')
->renderRoot($build);
$expected_attachments = [
'library' => [
'filter/caption',
],
'placeholders' => [],
];
$this
->assertEqual($expected_attachments, $build['#attached'], 'Expected attachments present');
$expected_cache_tags = [
'config:filter.format.element_test',
'foo:bar',
'foo:baz',
'merge:tag',
];
$this
->assertEqual($expected_cache_tags, $build['#cache']['tags'], 'Expected cache tags present.');
$expected_cache_contexts = [
'languages:' . LanguageInterface::TYPE_CONTENT,
'languages:' . LanguageInterface::TYPE_INTERFACE,
'theme',
'user.permissions',
];
$this
->assertEqual($expected_cache_contexts, $build['#cache']['contexts'], 'Expected cache contexts present.');
$expected_markup = '<p>Hello, world!</p><p>This is a dynamic llama.</p>';
$this
->assertEqual($expected_markup, $build['#markup'], 'Expected #lazy_builder callback has been applied.');
}
public function testTypedDataAPI() {
$definition = DataDefinition::create('filter_format');
$data = \Drupal::typedDataManager()
->create($definition);
$this
->assertInstanceOf(OptionsProviderInterface::class, $data);
$filtered_html_user = $this
->createUser([
'uid' => 2,
], [
FilterFormat::load('filtered_html')
->getPermissionName(),
]);
$user = new AnonymousUserSession();
\Drupal::currentUser()
->setAccount($user);
$expected_available_options = [
'filtered_html' => 'Filtered HTML',
'full_html' => 'Full HTML',
'filter_test' => 'Test format',
'plain_text' => 'Plain text',
];
$available_values = $data
->getPossibleValues();
$this
->assertEqual($available_values, array_keys($expected_available_options));
$available_options = $data
->getPossibleOptions();
$this
->assertEqual($available_options, $expected_available_options);
$allowed_values = $data
->getSettableValues($user);
$this
->assertEqual($allowed_values, [
'plain_text',
]);
$allowed_options = $data
->getSettableOptions($user);
$this
->assertEqual($allowed_options, [
'plain_text' => 'Plain text',
]);
$data
->setValue('foo');
$violations = $data
->validate();
$this
->assertFilterFormatViolation($violations, 'foo');
$violation = $violations[0];
$this
->assertEqual($violation
->getRoot(), $data, 'Violation root is filter format.');
$this
->assertEqual($violation
->getPropertyPath(), '', 'Violation property path is correct.');
$this
->assertEqual($violation
->getInvalidValue(), 'foo', 'Violation contains invalid value.');
$data
->setValue('plain_text');
$violations = $data
->validate();
$this
->assertCount(0, $violations, "No validation violation for format 'plain_text' found");
$data
->setValue('filtered_html');
$violations = $data
->validate();
$this
->assertFilterFormatViolation($violations, 'filtered_html');
\Drupal::currentUser()
->setAccount($filtered_html_user);
$violations = $data
->validate();
$this
->assertCount(0, $violations, "No validation violation for accessible format 'filtered_html' found.");
$allowed_values = $data
->getSettableValues($filtered_html_user);
$this
->assertEqual($allowed_values, [
'filtered_html',
'plain_text',
]);
$allowed_options = $data
->getSettableOptions($filtered_html_user);
$expected_allowed_options = [
'filtered_html' => 'Filtered HTML',
'plain_text' => 'Plain text',
];
$this
->assertEqual($allowed_options, $expected_allowed_options);
}
public function testFilterFormatPreSave() {
$crazy_format = FilterFormat::create([
'format' => 'crazy',
'name' => 'Crazy',
'weight' => 1,
'filters' => [
'filter_html_escape' => [
'weight' => 10,
'status' => 1,
],
'filter_html' => [
'weight' => -10,
'status' => 1,
'settings' => [
'allowed_html' => '<p>',
],
],
],
]);
$crazy_format
->save();
$filters = $this
->config('filter.format.crazy')
->get('filters');
$this
->assertEqual([
'filter_html_escape',
'filter_html',
], array_keys($filters));
$crazy_format
->setFilterConfig('filter_html_escape', [
'status' => FALSE,
]);
$crazy_format
->save();
$filters = $this
->config('filter.format.crazy')
->get('filters');
$this
->assertEqual([
'filter_html_escape',
'filter_html',
], array_keys($filters));
$crazy_format
->setFilterConfig('filter_html_escape', [
'weight' => -10,
]);
$crazy_format
->save();
$filters = $this
->config('filter.format.crazy')
->get('filters');
$this
->assertEqual([
'filter_html',
], array_keys($filters));
}
public function assertFilterFormatViolation(ConstraintViolationListInterface $violations, $invalid_value) {
$filter_format_violation_found = FALSE;
foreach ($violations as $violation) {
if ($violation
->getRoot() instanceof FilterFormatDataType && $violation
->getInvalidValue() === $invalid_value) {
$filter_format_violation_found = TRUE;
break;
}
}
$this
->assertTrue($filter_format_violation_found, new FormattableMarkup('Validation violation for invalid value "%invalid_value" found', [
'%invalid_value' => $invalid_value,
]));
}
public function testDependencyRemoval() {
$this
->installSchema('user', [
'users_data',
]);
$filter_format = FilterFormat::load('filtered_html');
$filter_config = [
'weight' => 20,
'status' => 0,
];
$filter_format
->setFilterConfig('filter_test_restrict_tags_and_attributes', $filter_config)
->save();
$filters = $filter_format
->get('filters');
$this
->assertTrue(isset($filters['filter_test_restrict_tags_and_attributes']), 'The filter plugin filter_test_restrict_tags_and_attributes is configured by the filtered_html filter format.');
drupal_static_reset('filter_formats');
\Drupal::entityTypeManager()
->getStorage('filter_format')
->resetCache();
$module_data = \Drupal::service('extension.list.module')
->getList();
$this
->assertFalse(isset($module_data['filter_test']->info['required']), 'The filter_test module is required.');
$this
->assertEqual([
'module' => [
'filter_test',
],
], $filter_format
->getDependencies());
\Drupal::service('module_installer')
->uninstall([
'filter_test',
]);
\Drupal::entityTypeManager()
->getStorage('filter_format')
->resetCache();
$filter_format = FilterFormat::load('filtered_html');
$this
->assertEqual([], $filter_format
->getDependencies());
$filters = $filter_format
->get('filters');
$this
->assertFalse(isset($filters['filter_test_restrict_tags_and_attributes']), 'The filter plugin filter_test_restrict_tags_and_attributes is not configured by the filtered_html filter format.');
}
public function testSleep() {
$filter_format = FilterFormat::load('filtered_html');
$this
->assertNull($filter_format
->get('filterCollection'));
$vars = $filter_format
->__sleep();
$this
->assertContains('filters', $vars);
$this
->assertNotContains('filterCollection', $vars);
}
}