RSpec testing views for escaped HTML
Posted by Jim Morris on Fri Jul 06 18:22:57 -0700 2007
For my social networking site snowdogsr.us I decided to escape all user input that gets displayed. I know people like to trick out their profiles with HTML but I want to avoid the various hacks that it allows.
So thinking I had done a good job of using h everywhere I output user input fields, I decided to see if I could actually test this with RSpec view tests.
... Show more ...