fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-05 09:41:40 +09:00
Code Issues Projects Releases Packages Wiki Activity

In template v2, process escape filters before other filters

Browse source
This commit is contained in:
Kijin Sung 2025-08-18 22:09:31 +09:00
parent 3b2fa4208d
commit f7543e4c9a
2 changed files with 23 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

14
tests/unit/framework/parsers/TemplateParserV2Test.php
View file

@ -446,9 +446,19 @@ class TemplateParserV2Test extends \Codeception\Test\Unit
$target = "<?php echo nl2br(htmlspecialchars(\$__Context->foo ?? '', \ENT_QUOTES, 'UTF-8', false)); ?>";
$this->assertEquals($target, $this->_parse($source));
// nl2br() with gratuitous escape
// nl2br() with extra escape
$source = '{{ $foo|nl2br|escape }}';
$target = "<?php echo htmlspecialchars(nl2br(htmlspecialchars(\$__Context->foo ?? '', \ENT_QUOTES, 'UTF-8', false)), \ENT_QUOTES, 'UTF-8', true); ?>";
$target = "<?php echo nl2br(htmlspecialchars(\$__Context->foo ?? '', \ENT_QUOTES, 'UTF-8', true)); ?>";
$this->assertEquals($target, $this->_parse($source));
// nl2br() with noescape
$source = '{{ $foo|nl2br|noescape }}';
$target = "<?php echo nl2br(\$__Context->foo ?? ''); ?>";
$this->assertEquals($target, $this->_parse($source));
// nl2br() with noescape and autoescape
$source = '{{ $foo|noescape|nl2br|autoescape }}';
$target = "<?php echo nl2br(htmlspecialchars(\$__Context->foo ?? '', \ENT_QUOTES, 'UTF-8', false)); ?>";
$this->assertEquals($target, $this->_parse($source));
// Array join (default joiner is comma)