001/*
002 * Licensed to the Apache Software Foundation (ASF) under one
003 * or more contributor license agreements.  See the NOTICE file
004 * distributed with this work for additional information
005 * regarding copyright ownership.  The ASF licenses this file
006 * to you under the Apache License, Version 2.0 (the
007 * "License"); you may not use this file except in compliance
008 * with the License.  You may obtain a copy of the License at
009 *
010 *     http://www.apache.org/licenses/LICENSE-2.0
011 *
012 * Unless required by applicable law or agreed to in writing, software
013 * distributed under the License is distributed on an "AS IS" BASIS,
014 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
015 * See the License for the specific language governing permissions and
016 * limitations under the License.
017 */
018package org.apache.hadoop.hbase.http;
019
020import static org.junit.Assert.assertEquals;
021import static org.junit.Assert.fail;
022
023import java.util.Arrays;
024import java.util.List;
025import org.apache.hadoop.hbase.HBaseClassTestRule;
026import org.apache.hadoop.hbase.testclassification.SmallTests;
027import org.junit.ClassRule;
028import org.junit.Test;
029import org.junit.experimental.categories.Category;
030
031@Category({ SmallTests.class })
032public class TestProfileOutputServlet {
033  @ClassRule
034  public static final HBaseClassTestRule CLASS_RULE =
035    HBaseClassTestRule.forClass(TestProfileOutputServlet.class);
036
037  @Test
038  public void testSanitization() {
039    List<String> good =
040      Arrays.asList("abcd", "key=value", "key1=value&key2=value2", "", "host=host-1.example.com");
041    for (String input : good) {
042      assertEquals(input, ProfileOutputServlet.sanitize(input));
043    }
044    List<String> bad = Arrays.asList("function(){console.log(\"oops\")}", "<strong>uhoh</strong>");
045    for (String input : bad) {
046      try {
047        ProfileOutputServlet.sanitize(input);
048        fail("Expected sanitization of \"" + input + "\" to fail");
049      } catch (RuntimeException e) {
050        // Pass
051      }
052    }
053  }
054
055}