Wolfmans Howlings

A programmers Blog about Programming solutions and a few other issues

RSpec testing views for escaped HTML

Posted by Jim Morris on Fri Jul 06 18:22:57 -0700 2007

For my social networking site snowdogsr.us I decided to escape all user input that gets displayed. I know people like to trick out their profiles with HTML but I want to avoid the various hacks that it allows.

So thinking I had done a good job of using h everywhere I output user input fields, I decided to see if I could actually test this with RSpec view tests.

... Show more ...

Posted in Rails,RSpec  |  Tags rails,rspec,escapinghtml  |  4 comments