enableViewsTestModule(); } /** * Tests for incorrectly escaped markup in the views-view-fields.html.twig. */ public function testViewsViewFieldsEscaping() { // Test with system theme using theme function. $this->drupalGet('test_page_display_200'); // Assert that there are no escaped '<'s characters. $this->assertNoEscaped('<'); // Install theme to test with template system. \Drupal::service('theme_handler')->install(['views_test_theme']); // Make base theme default then test for hook invocations. $this->config('system.theme') ->set('default', 'views_test_theme') ->save(); $this->assertEqual($this->config('system.theme')->get('default'), 'views_test_theme'); $this->drupalGet('test_page_display_200'); // Assert that we are using the correct template. $this->assertText('force', 'The force is strong with this one'); // Assert that there are no escaped '<'s characters. $this->assertNoEscaped('<'); } /** * Tests for incorrectly escaped markup in a header label on a display table. */ public function testViewsFieldHeaderEscaping() { // Test with a field header label having an html element wrapper. $this->drupalGet('test_field_header'); // Assert that there are no escaped '<'s characters. $this->assertNoEscaped('<'); // Test with a field header label having a XSS test as a wrapper. $this->drupalGet('test_field_header_xss'); // Assert that XSS test is escaped. $this->assertNoRaw('', 'Harmful tags are escaped in header label.'); } }