debian-mirror-gitlab/spec/validators/html_safety_validator_spec.rb

# frozen_string_literal: true

require 'spec_helper'

RSpec.describe HtmlSafetyValidator do
  let(:validator) { described_class.new(attributes: [:name]) }
  let(:group) { build(:group) }

  def validate(value)
    validator.validate_each(group, :name, value)
  end

  it 'adds an error when a script is included in the name' do
    validate('My group <script>evil_script</script>')

    expect(group.errors[:name]).to eq([HtmlSafetyValidator.error_message])
  end

  it 'does not add an error when an ampersand is included in the name' do
    validate('Group with 1 & 2')

    expect(group.errors).to be_empty
  end
end
New upstream version 13.1.2 2020-07-02 01:45:43 +05:30			`# frozen_string_literal: true`

			`require 'spec_helper'`

			`RSpec.describe HtmlSafetyValidator do`
			`let(:validator) { described_class.new(attributes: [:name]) }`
			`let(:group) { build(:group) }`

			`def validate(value)`
			`validator.validate_each(group, :name, value)`
			`end`

			`it 'adds an error when a script is included in the name' do`
			`validate('My group <script>evil_script</script>')`

			`expect(group.errors[:name]).to eq([HtmlSafetyValidator.error_message])`
			`end`

			`it 'does not add an error when an ampersand is included in the name' do`
			`validate('Group with 1 & 2')`

			`expect(group.errors).to be_empty`
			`end`
			`end`