go.chromium.org/luci@v0.0.0-20240309015107-7cdc2e660f33/milo/ui/src/common/components/sanitized_html/sanitized_html.test.tsx (about) 1 // Copyright 2023 The LUCI Authors. 2 // 3 // Licensed under the Apache License, Version 2.0 (the "License"); 4 // you may not use this file except in compliance with the License. 5 // You may obtain a copy of the License at 6 // 7 // http://www.apache.org/licenses/LICENSE-2.0 8 // 9 // Unless required by applicable law or agreed to in writing, software 10 // distributed under the License is distributed on an "AS IS" BASIS, 11 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12 // See the License for the specific language governing permissions and 13 // limitations under the License. 14 15 import { render, screen } from '@testing-library/react'; 16 17 import { SanitizedHtml } from './sanitized_html'; 18 19 const DIRTY_HTML = ` 20 <div data-testid="safe-content">Safe Content</div> 21 <a data-testid="unsafe-link" href="javascript:alert('unsafe')">unsafe_link</a> 22 <script data-testid="unsafe-script"> 23 throw new Error('Unsafe content'); 24 </script> 25 `; 26 27 describe('SanitizedHtml', () => { 28 it('should sanitize HTML', () => { 29 render(<SanitizedHtml html={DIRTY_HTML} />); 30 31 const safeContent = screen.getByTestId('safe-content'); 32 expect(safeContent).toBeInTheDocument(); 33 expect(safeContent).toHaveTextContent('Safe Content'); 34 35 const unsafeLink = screen.getByTestId('unsafe-link'); 36 expect(unsafeLink).toBeInTheDocument(); 37 expect(unsafeLink).not.toHaveAttribute('href'); 38 expect(unsafeLink).toHaveTextContent('unsafe_link'); 39 40 const unsafeScript = screen.queryByTestId('unsafe-script'); 41 expect(unsafeScript).not.toBeInTheDocument(); 42 }); 43 });