4 use RT::Test tests => undef;
7 my ($base, $m) = RT::Test->started_ok;
9 my $ticket = RT::Test->create_ticket(
11 Subject => 'test ticket A',
14 ok $id, "created ticket";
17 'javascript:alert("xss")',
18 'data:text/html,<script>alert("xss")</script>',
21 for my $link ( map { ($_, ucfirst $_) } @links ) {
24 ($ok, $msg) = $ticket->AddLink(
28 } [qr/Could not determine a URI scheme/, qr/Couldn't resolve/];
31 ok $m->login, "logged in";
33 $m->follow_link_ok({ text => 'test ticket A' }, 'ticket page');
34 $m->follow_link_ok({ text => 'Links' }, 'links page');
37 "$id-RefersTo" => $link,
39 button => 'SubmitTicket',
40 }, 'submitted links page');
41 $m->content_contains("Couldn't resolve ");
42 $m->next_warning_like(qr/Could not determine a URI scheme/, 'expected warning');
43 $m->next_warning_like(qr/Couldn't resolve/, 'expected warning');
45 my $element = $m->find_link( url => $link );
46 ok !$element, "no <a> link";
49 $m->no_leftover_warnings_ok;