3
import simplejson.decoder
4
import simplejson.encoder
7
class TestEncodeForHTML(unittest.TestCase):
10
self.decoder = simplejson.decoder.JSONDecoder()
11
self.encoder = simplejson.encoder.JSONEncoderForHTML()
13
def test_basic_encode(self):
14
self.assertEqual(r'"\u0026"', self.encoder.encode('&'))
15
self.assertEqual(r'"\u003c"', self.encoder.encode('<'))
16
self.assertEqual(r'"\u003e"', self.encoder.encode('>'))
18
def test_basic_roundtrip(self):
21
char, self.decoder.decode(
22
self.encoder.encode(char)))
24
def test_prevent_script_breakout(self):
25
bad_string = '</script><script>alert("gotcha")</script>'
27
r'"\u003c/script\u003e\u003cscript\u003e'
28
r'alert(\"gotcha\")\u003c/script\u003e"',
29
self.encoder.encode(bad_string))
31
bad_string, self.decoder.decode(
32
self.encoder.encode(bad_string)))