delta/gitlab/gitlab-ce.git - gitlab.com: gitlab-org/gitlab-ce.git

diff options


context:
space:
mode:

Diffstat (limited to 'spec/features/issues/gfm_autocomplete_spec.rb')

-rw-r--r--

spec/features/issues/gfm_autocomplete_spec.rb

1 files changed, 43 insertions, 0 deletions

diff --git a/spec/features/issues/gfm_autocomplete_spec.rb b/spec/features/issues/gfm_autocomplete_spec.rb
index ff78b9e608f..06f79f94e8d 100644
--- a/spec/features/issues/gfm_autocomplete_spec.rb
+++ b/spec/features/issues/gfm_autocomplete_spec.rb

@@ -535,6 +535,21 @@ RSpec.describe 'GFM autocomplete', :js do

expect(find('.tribute-container ul', visible: true)).to have_text(user_xss.username)

end

+ it 'opens autocomplete menu for Milestone when field starts with text with item escaping HTML characters' do

+ milestone_xss_title = 'alert milestone <img src=x onerror="alert(\'Hello xss\');" a'

+ create(:milestone, project: project, title: milestone_xss_title)

+ page.within '.timeline-content-form' do

+ find('#note-body').native.send_keys('%')

+ end

+ wait_for_requests

+ expect(page).to have_selector('.tribute-container', visible: true)

+ expect(find('.tribute-container ul', visible: true)).to have_text('alert milestone')

+ end

it 'selects the first item for assignee dropdowns' do

page.within '.timeline-content-form' do

find('#note-body').native.send_keys('@')

@@ -799,6 +814,13 @@ RSpec.describe 'GFM autocomplete', :js do

end

+ context 'issues' do

+ let(:object) { issue }

+ let(:expected_body) { object.to_reference }

+ it_behaves_like 'autocomplete suggestions'

+ end

context 'merge requests' do

let(:object) { create(:merge_request, source_project: project) }

let(:expected_body) { object.to_reference }

@@ -806,6 +828,27 @@ RSpec.describe 'GFM autocomplete', :js do

it_behaves_like 'autocomplete suggestions'

end

+ context 'project snippets' do

+ let!(:object) { create(:project_snippet, project: project, title: 'code snippet') }

+ let(:expected_body) { object.to_reference }

+ it_behaves_like 'autocomplete suggestions'

+ end

+ context 'label' do

+ let!(:object) { label }

+ let(:expected_body) { object.title }

+ it_behaves_like 'autocomplete suggestions'

+ end

+ context 'milestone' do

+ let!(:object) { create(:milestone, project: project) }

+ let(:expected_body) { object.to_reference }

+ it_behaves_like 'autocomplete suggestions'

+ end

context 'when other notes are destroyed' do

let!(:discussion) { create(:discussion_note_on_issue, noteable: issue, project: issue.project) }