github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-23 01:47:22 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

FIX: OpenGraph tags not fully sanitized

Browse Source
This commit is contained in:
Régis Hanol 2013-03-22 12:32:56 +01:00
parent 664915fcd2
commit 2ab08ef21d
2 changed files with 9 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
lib/summarize.rb
View File

@ -1,9 +1,10 @@
# Summarize a HTML field into regular text. Used currently # Summarize a HTML field into regular text. Used currently
# for meta tags # for meta tags
class Summarize require 'sanitize'
include ActionView::Helpers
class Summarize
def initialize(text) def initialize(text)
@text = text @text = text
end end
@ -15,7 +16,7 @@ class Summarize
def summary def summary
return nil if @text.blank? return nil if @text.blank?
result = sanitize(@text, tags: [], attributes: []) result = Sanitize.clean(@text)
result.gsub!(/\n/, ' ') result.gsub!(/\n/, ' ')
result.strip! result.strip!

5
spec/components/summarize_spec.rb
View File

@ -15,6 +15,11 @@ describe Summarize do
Summarize.new("hello <b>robin</b>").summary.should == "hello robin" Summarize.new("hello <b>robin</b>").summary.should == "hello robin"
end end
it "removes doctype entries" do
# this is not valid html but this is just testing DOCTYPE entries
Summarize.new("<!DOCTYPE html>Discourse").summary.should == "Discourse"
end
it "strips leading and trailing space" do it "strips leading and trailing space" do
Summarize.new("\t \t hello \t ").summary.should == "hello" Summarize.new("\t \t hello \t ").summary.should == "hello"
end end