protected static $modules =
['node', 'user', 'views_ui', 'views_ui_test'
];
/**
* {@inheritdoc}
*/
protected $defaultTheme = 'stark';
public function testViewsUi() { $this->
drupalGet('admin/structure/views/view/sa_contrib_2013_035'
);
// Verify that the field admin label is properly escaped.
$this->
assertSession()->
assertEscaped('<marquee>test</marquee>'
);
$this->
drupalGet('admin/structure/views/nojs/handler/sa_contrib_2013_035/page_1/header/area'
);
// Verify that the token label is properly escaped.
$this->
assertSession()->
assertEscaped('{{ title }} == <marquee>test</marquee>'
);
$this->
assertSession()->
assertEscaped('{{ title_1 }} == <script>alert("XSS")</script>'
);
} /**
* Checks the admin UI for double escaping.
*/
public function testNoDoubleEscaping() {