wordpress-develop/tests/phpunit/tests/formatting/antispambot.php at 6fac136a796262c548582e1523fd3f600d62feca · WordPress/wordpress-develop · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
<?php
/**
 * Tests for the antispambot() function.
 *
 * @group formatting
 * @covers ::antispambot
 */
class Tests_Formatting_Antispambot extends WP_UnitTestCase {
	/**
	 * Ensures that antispambot will not produce invalid UTF-8 when hiding email addresses.
	 *
	 * Were a non-US-ASCII email address be sent into `antispambot()`, then a naive approach
	 * to obfuscation could break apart multibyte characters and leave invalid UTF-8 as a
	 * result.
	 *
	 * @ticket 31992
	 *
	 * @dataProvider data_returns_valid_utf8
	 *
	 * @param string $email    The email address to obfuscate.
	 */
	public function test_returns_valid_utf8( $email ) {
		$this->assertTrue( wp_is_valid_utf8( antispambot( $email ) ) );
	}

	/**
	 * Data provider.
	 *
	 * return array[]
	 */
	public function data_returns_valid_utf8() {
		return array(
			'plain'                => array( 'bob@example.com' ),
			'plain with ip'        => array( 'ace@204.32.222.14' ),
			'deep subdomain'       => array( 'kevin@many.subdomains.make.a.happy.man.edu' ),
			'short address'        => array( 'a@b.co' ),
			'weird but legal dots' => array( '..@example.com' ),
			'umlauts'              => array( 'bücher@gmx.de' ),
			'three-byte UTF-8'     => array( "\u{FFFD}@who.knows.com" ),
		);
	}

	/**
	 * This tests that antispambot performs some sort of obfuscation
	 * and that the obfuscation maps back to the original value.
	 *
	 * @ticket 31992
	 *
	 * @dataProvider data_antispambot_obfuscates
	 *
	 * @param string $provided The email address to obfuscate.
	 */
	public function test_antispambot_obfuscates( $provided ) {
		$obfuscated = antispambot( $provided, 1 );
		$processor  = new WP_HTML_Tag_Processor( $obfuscated );

		// The only token should be the email address, so advance once and treat as a text node.
		$processor->next_token();
		$decoded = rawurldecode( $processor->get_modifiable_text() );

		$this->assertNotSame(
			$provided,
			$obfuscated,
			'Should have produced an obfuscated representation.'
		);

		$this->assertSame(
			$provided,
			$decoded,
			'Should have decoded to the original email after restoring.'
		);
	}

	/**
	 * Data provider.
	 *
	 * @return Generator
	 */
	public function data_antispambot_obfuscates() {
		$addresses = array(
			'example@example.com',
			'#@example.com',
			'πετρος@example.com',
			"\u{FFFD}@mad.mail.com",
		);

		foreach ( $addresses as $address ) {
			yield $address => array( $address );
		}
	}
}