Experimental support for data-* attributes in HTML #2194

tests/unit/framework/filters/HTMLFilterTest.php

@@ -257,9 +257,30 @@ class HTMLFilterTest extends \Codeception\TestCase\Test
 		$target = '<p><img src="foo.jpg" alt="foobar" data-file-srl="1234" /></p>';
 		$this->assertEquals($target, Rhymix\Framework\Filters\HTMLFilter::clean($source));
 
+		$source = '<p><img src="foo.jpg" alt="foobar" data-file-srl="NaN" /></p>';
+		$target = '<p><img src="foo.jpg" alt="foobar" /></p>';
+		$this->assertEquals($target, Rhymix\Framework\Filters\HTMLFilter::clean($source));
+
 		$source = '<p><img src="foo.jpg" alt="foobar" data-file-srl="javascript:xss()" /></p>';
 		$target = '<p><img src="foo.jpg" alt="foobar" /></p>';
 		$this->assertEquals($target, Rhymix\Framework\Filters\HTMLFilter::clean($source));
+
+		// Other data-* attribute
+		$source = '<div data-foo="foobar" data-bar="bazz" style="width:100%;">Hello World</div>';
+		$target = '<div style="width:100%;" data-foo="foobar" data-bar="bazz">Hello World</div>';
+		$this->assertEquals($target, Rhymix\Framework\Filters\HTMLFilter::clean($source));
+
+		$source = '<a href="#" data-not-properly-encoded="Rhymix\'s Future">Hello World</a>';
+		$target = '<a href="#" data-not-properly-encoded="Rhymix&#039;s Future">Hello World</a>';
+		$this->assertEquals($target, Rhymix\Framework\Filters\HTMLFilter::clean($source));
+
+		$source = '<article nonsense="#" data-json="{&quot;foo&quot;:[&quot;bar&quot;,777]}"><p>Hello World<p></article>';
+		$target = '<article data-json="{&quot;foo&quot;:[&quot;bar&quot;,777]}"><p>Hello World</p><p></p></article>';
+		$this->assertEquals($target, Rhymix\Framework\Filters\HTMLFilter::clean($source));
+
+		$source = '<p data-dangerous=" javascript: xss() ">Hello World</p>';
+		$target = '<p>Hello World</p>';
+		$this->assertEquals($target, Rhymix\Framework\Filters\HTMLFilter::clean($source));
 	}
 
 	public function testHTMLFilterFixMediaUrls()