22 lines
482 B
Ruby
22 lines
482 B
Ruby
|
require 'spec_helper'
|
||
|
|
||
|
feature 'Hook logs' do
|
||
|
given(:web_hook_log) { create(:web_hook_log, response_body: '<script>') }
|
||
|
given(:project) { web_hook_log.web_hook.project }
|
||
|
given(:user) { create(:user) }
|
||
|
|
||
|
before do
|
||
|
project.add_master(user)
|
||
|
|
||
|
sign_in(user)
|
||
|
end
|
||
|
|
||
|
scenario 'user reads log without getting XSS' do
|
||
|
visit(
|
||
|
project_hook_hook_log_path(
|
||
|
project, web_hook_log.web_hook, web_hook_log))
|
||
|
|
||
|
expect(page).to have_content('<script>')
|
||
|
end
|
||
|
end
|