OXIESEC PANEL
- Current Dir:
/
/
var
/
www
/
reader
/
API
/
swagger-ui-5.17.14
/
test
/
e2e-cypress
/
e2e
/
security
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
08/07/2024 04:34:14 AM
rwxr-xr-x
📄
anonymous.cy.js
988 bytes
08/07/2024 04:34:15 AM
rw-r--r--
📄
apikey.cy.js
494 bytes
08/07/2024 04:34:15 AM
rw-r--r--
📄
oauth2.cy.js
614 bytes
08/07/2024 04:34:15 AM
rw-r--r--
📄
sequential-import-chaining.cy.js
2.4 KB
08/07/2024 04:34:15 AM
rw-r--r--
Editing: oauth2.cy.js
Close
describe("XSS: OAuth2 authorizationUrl sanitization", () => { it("should filter out a javascript URL", () => { cy.visit("/?url=/documents/security/xss-oauth2.yaml") .window() .then(win => { let args = null const stub = cy.stub(win, "open", (...callArgs) => { args = callArgs }).as("windowOpen") cy.get(".authorize") .click() .get(".modal-btn.authorize") .click() .wait(100) .then(() => { console.log(args) expect(args[0]).to.match(/^about:blank/) }) }) }) })