/PortletReviewer/Test/JspValidatorTest.hs

http://hdbc.googlecode.com/ · Haskell · 131 lines · 114 code · 16 blank · 1 comment · 1 complexity · 70f74e93e36a49c441e39e8383eb48c4 MD5 · raw file 

    

  1. module Test.JspValidatorTest where

    2. 

  2. 

    3. 

  3. import Test.HUnit

    4. 

  4. import JspValidator

    5. 

  5. import Definitions

    6. 

  6. 

    7. 

  7. runAllTests :: IO Counts

    8. 

  8. runAllTests = runTestTT (

    9. 

  9.     TestList [TestLabel "testValidateJavascriptFunctionsEncoded" testValidateJavascriptFunctionsEncoded,

    10. 

  10.               TestLabel "testValidateElementIdsEncoded" testValidateElementIdsEncoded,

    11. 

  11.               TestLabel "testValidateNoHtmlComments" testValidateNoHtmlComments,

    12. 

  12.               TestLabel "testValidateImagesAreAccessible" testValidateImagesAreAccessible,

    13. 

  13.               TestLabel "testValidateFormNamesEncoded" testValidateFormNamesEncoded,

    14. 

  14.               TestLabel "testValidateNoIllegalHtmlTags" testValidateNoIllegalHtmlTags,

    15. 

  15.               TestLabel "testValidatUsingPortletClasses" testValidatUsingPortletClasses,

    16. 

  16.               TestLabel "testValidateContextPathCalls" testValidateContextPathCalls,

    17. 

  17.               TestLabel "testValidateNoSessionCreated" testValidateNoSessionCreated,

    18. 

  18.               TestLabel "testValidateTextBoxesHaveLabels" testValidateTextBoxesHaveLabels,

    19. 

  19.               TestLabel "testValidateTextBoxesHaveLabels2" testValidateTextBoxesHaveLabels2,

    20. 

  20.               TestLabel "testValidateTextBoxesHaveLabels3" testValidateTextBoxesHaveLabels3]

    21. 

  21.     )

    22. 

  22. 

    23. 

  23. isErrorFree :: [ErrorMessage] -> Bool

    24. 

  24. isErrorFree errs = length errs == 0

    25. 

  25. 

    26. 

  26. testValidateJavascriptFunctionsEncoded :: Test

    27. 

  27. testValidateJavascriptFunctionsEncoded = TestCase (do

    28. 

  28.     let fileContents1 = ["", "\n", ""]

    29. 

  29.         fileContents2 = ["", "function myFunction() {", "}"]

    30. 

  30.         fileContents3 = ["<portlet:namespace  />function myFnc ()"]

    31. 

  31.     assertEqual "contents1 has no javascript functions" True 

    32. 

  32.                     (isErrorFree (validateJavascriptFunctionsEncoded fileContents1))

    33. 

  33.     assertEqual "contents2 is not properly encoded"  False  

    34. 

  34.                     (isErrorFree (validateJavascriptFunctionsEncoded fileContents2))

    35. 

  35.     assertEqual "contents3 is properly encoded" True  

    36. 

  36.                     (isErrorFree (validateJavascriptFunctionsEncoded fileContents3))

    37. 

  37.     )                                                   

    38. 

  38. 

    39. 

  39. testValidateElementIdsEncoded :: Test

    40. 

  40. testValidateElementIdsEncoded = TestCase ( do

    41. 

  41.     let contents1 = ["", "", "\n"]

    42. 

  42.         contents2 = ["<form id=\"primary\" action=\"post\">", "<input name=\"insert\" />"]

    43. 

  43.         contents3 = ["<form id=\"<portlet:namespace />primary\" >"]

    44. 

  44.     assertEqual "contents1: expected 'valid'" True  (isErrorFree (validateElementIdsEncoded contents1))

    45. 

  45.     assertEqual "contents2: expected 'invalid'" False  (isErrorFree (validateElementIdsEncoded contents2))

    46. 

  46.     assertEqual "contents3: expected 'valid'" True  (isErrorFree (validateElementIdsEncoded contents3))

    47. 

  47.     )

    48. 

  48. 

    49. 

  49. testValidateFormNamesEncoded :: Test

    50. 

  50. testValidateFormNamesEncoded = TestCase (do

    51. 

  51.     let contents1 = ["<form name=bad_name"]

    52. 

  52.         contents2 = ["<form id=\"some_id\" name='bad_name'"]

    53. 

  53.         contents3 = ["<form action=post name=\"bad_name\""]

    54. 

  54.         contents4 = ["<FORM method=POST name=\"<portlet:namespace />form1\" >"]

    55. 

  55.     assertEqual "contents1 expected invalid" False (isErrorFree (validateFormNamesEncoded contents1))

    56. 

  56.     assertEqual "contents2 expected invalid" False (isErrorFree (validateFormNamesEncoded contents2))

    57. 

  57.     assertEqual "contents3 expected invalid" False (isErrorFree (validateFormNamesEncoded contents3))

    58. 

  58.     assertEqual "contents4 expected invalid" True (isErrorFree (validateFormNamesEncoded contents4))

    59. 

  59.     )

    60. 

  60. 

    61. 

  61. testValidateImagesAreAccessible :: Test

    62. 

  62. testValidateImagesAreAccessible = TestCase (do

    63. 

  63.     let contents1 = ["<img src=./and/a/path/file.img />"]

    64. 

  64.         contents2 = ["<IMG src=\"\" alt=\"yo\""]

    65. 

  65.     assertEqual "contents1 expected invalid" False (isErrorFree (validateImagesAreAccessible contents1))

    66. 

  66.     assertEqual "contents2 expected valid" True (isErrorFree (validateImagesAreAccessible contents2))

    67. 

  67.     )

    68. 

  68. 

    69. 

  69. testValidateNoHtmlComments :: Test

    70. 

  70. testValidateNoHtmlComments = TestCase (do

    71. 

  71.     let contents1 = ["<!-- and a comment -->"]

    72. 

  72.     assertEqual "contents1: expected 'invalid'" False  (isErrorFree (validateNoHtmlComments contents1))

    73. 

  73.     )

    74. 

  74. 

    75. 

  75. testValidateNoIllegalHtmlTags :: Test

    76. 

  76. testValidateNoIllegalHtmlTags = TestCase (do

    77. 

  77.     let contents = ["thed <iframe name=\"edkd"]

    78. 

  78.     assertEqual "expected failure - iframe element exists" False (isErrorFree (validateNoIllegalHtmlTags contents))

    79. 

  79.     )

    80. 

  80. 

    81. 

  81. testValidatUsingPortletClasses :: Test

    82. 

  82. testValidatUsingPortletClasses = TestCase (do

    83. 

  83.     let contents1 = ["<div class=\"bogus-class\" >"]

    84. 

  84.         contents2 = ["<p class=\"portlet-msg-error\">"]

    85. 

  85.     assertEqual "contents1: expected 'invalid'" False (isErrorFree (validateUsingPortletClasses contents1))

    86. 

  86.     assertEqual "contents2: expected 'valid'" True (isErrorFree (validateUsingPortletClasses contents2))

    87. 

  87.     )

    88. 

  88. 

    89. 

  89. testValidateContextPathCalls :: Test

    90. 

  90. testValidateContextPathCalls = TestCase (do

    91. 

  91.     let contents1 = ["String pathToImages = (String) renderRequest.getContextPath();"]

    92. 

  92.         contents2 = ["String pathToImages = (String) renderResponse.encodeURL(renderRequest.getContextPath() + /img/stuff.img);"]

    93. 

  93.     assertEqual "contents1: expected 'invalid'" False  (isErrorFree (validateContextPathCalls contents1))

    94. 

  94.     assertEqual "contents2: expected 'valid'" True  (isErrorFree (validateContextPathCalls contents2))

    95. 

  95.     )

    96. 

  96. 

    97. 

  97. testValidateNoSessionCreated :: Test

    98. 

  98. testValidateNoSessionCreated = TestCase (do

    99. 

  99.     let contents1 = ["<%@page session=\"false\" contentType=\"text/html\" %>"]

    100. 

  100.         contents2 = ["<%@ page  contentType=\"text/html\"  session=\"false\"%>"]

    101. 

  101.     assertEqual "contents1:expected 'valid'" True (isErrorFree (validateNoSessionCreated contents1))

    102. 

  102.     assertEqual "contents2:expected 'valid'" True (isErrorFree (validateNoSessionCreated contents2))

    103. 

  103.     )

    104. 

  104. 

    105. 

  105. testValidateTextBoxesHaveLabels :: Test

    106. 

  106. testValidateTextBoxesHaveLabels = TestCase (do

    107. 

  107.      let contents = ["<label for=\"<portlet:namespace/><%=Consts.SOURCE_URL%>\">",

    108. 

  108.                      "<spring:message code=\"config.source.url\" />",

    109. 

  109. 		     "</label>",

    110. 

  110. 		     "<br/>",

    111. 

  111. 		     "<input type=\"text\" id=\"<portlet:namespace/><%=Consts.SOURCE_URL%>\" name=\"<%=Consts.SOURCE_URL%>\" size=\"40\"",

    112. 

  112. 		     "value='<c:out value=\"${attributes.sourceUrl}\"/>' />"]

    113. 

  113.      assertEqual "should pass as control has label" True (isErrorFree (validateTextBoxesHaveLabels contents)))

    114. 

  114. 

    115. 

  115. testValidateTextBoxesHaveLabels2 :: Test

    116. 

  116. testValidateTextBoxesHaveLabels2 = TestCase (do

    117. 

  117.      let contents = ["<textarea >",

    118. 

  118.                      "<spring:message code=\"config.source.url\" />",

    119. 

  119. 		     "</textarea>",

    120. 

  120. 		     "<input type=\"text\" id=\"<portlet:namespace/><%=Consts.SOURCE_URL%>\" name=\"<%=Consts.SOURCE_URL%>\" size=\"40\"",

    121. 

  121. 		     "value='<c:out value=\"${attributes.sourceUrl}\"/>' />"]

    122. 

  122.      assertEqual "should not pass as control has label" False (isErrorFree (validateTextBoxesHaveLabels contents)))

    123. 

  123. 

    124. 

  124. -- sometimes we have stuff like type=text without any quotes. Not valid html, but why would that stop anyone

    125. 

  125. testValidateTextBoxesHaveLabels3 :: Test

    126. 

  126. testValidateTextBoxesHaveLabels3 = TestCase (do

    127. 

  127.      let contents = ["<input type=text name=whatever / >",

    128. 

  128. 		     "<input type=text id=\"<portlet:namespace/><%=Consts.SOURCE_URL%>\" name=\"<%=Consts.SOURCE_URL%>\" size=\"40\"",

    129. 

  129. 		     "value='<c:out value=\"${attributes.sourceUrl}\"/>' />"]

    130. 

  130.      assertEqual "should not pass as we have two text boxes without labels" False (isErrorFree (validateTextBoxesHaveLabels contents)))
    131.