You are here

public function Test::escapedScript in Drupal 8

Same name and namespace in other branches
  1. 9 core/modules/system/tests/modules/test_page_test/src/Controller/Test.php \Drupal\test_page_test\Controller\Test::escapedScript()
1 string reference to 'Test::escapedScript'
test_page_test.routing.yml in core/modules/system/tests/modules/test_page_test/test_page_test.routing.yml
core/modules/system/tests/modules/test_page_test/test_page_test.routing.yml

File

core/modules/system/tests/modules/test_page_test/src/Controller/Test.php, line 128

Class

Test
Defines a test controller for page titles.

Namespace

Drupal\test_page_test\Controller

Code

public function escapedScript() {
  return [
    '#prefix' => '<div class="escaped">',
    // We use #plain_text because #markup would be filtered and that is not
    // being tested here.
    '#plain_text' => "<script>alert('XSS');alert(\"XSS\");</script>",
    '#suffix' => '</div>',
  ];
}