dradis-html_export 4.2.0 → 4.3.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +3 -0
- data/app/presenters/dradis/plugins/html_export/template_presenter.rb +38 -0
- data/app/views/dradis/plugins/html_export/export/_index-content.html.erb +10 -11
- data/lib/dradis/plugins/html_export/gem_version.rb +1 -1
- data/spec/presenters/dradis/plugins/html_export/template_presenter_spec.rb +47 -0
- metadata +5 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d0d9fc4de71f006fa98925432abe6ebc106be1412f0d16199679b71b1ddd2cb4
|
|
4
|
+
data.tar.gz: b97d97b658c813c94cfc62397bade68f4e5f466386768f1f6410f8819334fadd
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 0d42f27e5cbce3ca6087b213fdb3a47bf01193cdc87d2cee2d85781ab2d9a17866181c57f352c741127bc95605e6c787658760c9fcc44600ceb8cee6322dcf0c
|
|
7
|
+
data.tar.gz: 30807f3bda9b6c23aa8023df4446404b3701e4290160766601ede9cfc5df92402b59a4d6f6335bb8e61d12f06c2b6c87d99ce8aca6062087b90a5ba0835af55d
|
data/CHANGELOG.md
CHANGED
|
@@ -0,0 +1,38 @@
|
|
|
1
|
+
module Dradis
|
|
2
|
+
module Plugins
|
|
3
|
+
module HtmlExport
|
|
4
|
+
class TemplatePresenter < BasePresenter
|
|
5
|
+
presents :template
|
|
6
|
+
|
|
7
|
+
def self.each_template(&block)
|
|
8
|
+
templates.each(&block)
|
|
9
|
+
end
|
|
10
|
+
|
|
11
|
+
def self.templates
|
|
12
|
+
if defined?(Dradis::Pro)
|
|
13
|
+
ReportTemplateProperties.all.where(plugin_name: :html_export).order(:title)
|
|
14
|
+
else
|
|
15
|
+
Dir["%s/*" % templates_dir].map { |t| File.basename(t) }.sort
|
|
16
|
+
end
|
|
17
|
+
end
|
|
18
|
+
|
|
19
|
+
def self.templates_dir
|
|
20
|
+
File.join(::Configuration::paths_templates_reports, 'html_export')
|
|
21
|
+
end
|
|
22
|
+
|
|
23
|
+
def title
|
|
24
|
+
return template if template.is_a?(String)
|
|
25
|
+
|
|
26
|
+
content_tag(:span, "#{template.title} - ") +
|
|
27
|
+
content_tag(:small, template.template_file)
|
|
28
|
+
end
|
|
29
|
+
|
|
30
|
+
def filename
|
|
31
|
+
return template if template.is_a?(String)
|
|
32
|
+
|
|
33
|
+
template.template_file
|
|
34
|
+
end
|
|
35
|
+
end
|
|
36
|
+
end
|
|
37
|
+
end
|
|
38
|
+
end
|
|
@@ -1,21 +1,20 @@
|
|
|
1
|
-
<%
|
|
2
|
-
templates_dir = File.join(::Configuration::paths_templates_reports, 'html_export')
|
|
3
|
-
templates = Dir["%s/*" % templates_dir].map { |t| File.basename(t) }.sort
|
|
4
|
-
%>
|
|
5
|
-
|
|
6
1
|
<%= content_tag :div, id: 'plugin-html_export', class: 'tab-pane fade' do %>
|
|
7
2
|
<%= form_tag project_export_manager_path(current_project), target: '_blank' do %>
|
|
8
3
|
<%= hidden_field_tag :plugin, :html_export %>
|
|
9
4
|
<%= hidden_field_tag :route, :root %>
|
|
10
5
|
|
|
11
6
|
<h4 class="header-underline">Choose a template</h4>
|
|
12
|
-
<p>Please choose one of the templates available for this plugin (find them in <code>.<%= templates_dir[Rails.root.to_s.length..-1] %></code>)</p>
|
|
7
|
+
<p>Please choose one of the templates available for this plugin (find them in <code>.<%= Dradis::Plugins::HtmlExport::TemplatePresenter.templates_dir[Rails.root.to_s.length..-1] %></code>)</p>
|
|
13
8
|
|
|
14
|
-
<%
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
9
|
+
<% Dradis::Plugins::HtmlExport::TemplatePresenter.each_template do |template| %>
|
|
10
|
+
<% present(template, Dradis::Plugins::HtmlExport::TemplatePresenter) do |template_presenter| %>
|
|
11
|
+
<div class="custom-control custom-radio">
|
|
12
|
+
<%= radio_button_tag :template, template_presenter.filename, Dradis::Plugins::HtmlExport::TemplatePresenter.templates.first == template , class: 'custom-control-input' %>
|
|
13
|
+
<label class="custom-control-label" for="template_<%= template_presenter.filename %>">
|
|
14
|
+
<%= template_presenter.title %>
|
|
15
|
+
</label>
|
|
16
|
+
</div>
|
|
17
|
+
<% end %>
|
|
19
18
|
<% end %>
|
|
20
19
|
|
|
21
20
|
<button id="export-button" class="btn btn-lg btn-primary mt-4">Export</button>
|
|
@@ -0,0 +1,47 @@
|
|
|
1
|
+
require 'rails_helper'
|
|
2
|
+
|
|
3
|
+
RSpec.describe Dradis::Plugins::HtmlExport::TemplatePresenter do
|
|
4
|
+
class FakeView
|
|
5
|
+
include ActionView::Helpers::TextHelper
|
|
6
|
+
end
|
|
7
|
+
|
|
8
|
+
let(:template_presenter) { described_class.new(template, FakeView.new) }
|
|
9
|
+
|
|
10
|
+
describe '#title' do
|
|
11
|
+
context 'when template is a string' do
|
|
12
|
+
let(:template) { 'basic.html.erb' }
|
|
13
|
+
|
|
14
|
+
it 'returns the string' do
|
|
15
|
+
expect(template_presenter.title).to eq template
|
|
16
|
+
end
|
|
17
|
+
end
|
|
18
|
+
|
|
19
|
+
context 'when template is a RTP' do
|
|
20
|
+
let(:template) do
|
|
21
|
+
double(
|
|
22
|
+
'ReportTemplateProperties',
|
|
23
|
+
title: 'Basic',
|
|
24
|
+
template_file: 'basic.html.erb'
|
|
25
|
+
)
|
|
26
|
+
end
|
|
27
|
+
|
|
28
|
+
it 'returns a formatted title' do
|
|
29
|
+
expect(template_presenter.title).to eq "<span>#{template.title} - </span><small>#{template.template_file}</small>"
|
|
30
|
+
end
|
|
31
|
+
|
|
32
|
+
context 'when title contains javascript' do
|
|
33
|
+
let(:template) do
|
|
34
|
+
double(
|
|
35
|
+
'ReportTemplateProperties',
|
|
36
|
+
title: '<script>alert("hello world")</script>',
|
|
37
|
+
template_file: 'basic.html.erb'
|
|
38
|
+
)
|
|
39
|
+
end
|
|
40
|
+
|
|
41
|
+
it 'prevents cross site scriptiing' do
|
|
42
|
+
expect(template_presenter.title).to eq "<span><script>alert("hello world")</script> - </span><small>#{template.template_file}</small>"
|
|
43
|
+
end
|
|
44
|
+
end
|
|
45
|
+
end
|
|
46
|
+
end
|
|
47
|
+
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dradis-html_export
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 4.
|
|
4
|
+
version: 4.3.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Daniel Martin
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-
|
|
11
|
+
date: 2022-04-29 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dradis-plugins
|
|
@@ -70,6 +70,7 @@ files:
|
|
|
70
70
|
- README.md
|
|
71
71
|
- Rakefile
|
|
72
72
|
- app/controllers/dradis/plugins/html_export/base_controller.rb
|
|
73
|
+
- app/presenters/dradis/plugins/html_export/template_presenter.rb
|
|
73
74
|
- app/views/dradis/plugins/html_export/export/_index-content.html.erb
|
|
74
75
|
- app/views/dradis/plugins/html_export/export/_index-tabs.html.erb
|
|
75
76
|
- config/routes.rb
|
|
@@ -83,6 +84,7 @@ files:
|
|
|
83
84
|
- lib/tasks/thorfile.rb
|
|
84
85
|
- spec/fixtures/files/template.html.erb
|
|
85
86
|
- spec/lib/dradis/plugins/html_export/exporter_spec.rb
|
|
87
|
+
- spec/presenters/dradis/plugins/html_export/template_presenter_spec.rb
|
|
86
88
|
- spec/requests/html_export_spec.rb
|
|
87
89
|
- spec/spec_helper.rb
|
|
88
90
|
- templates/basic.html.erb
|
|
@@ -113,5 +115,6 @@ summary: Dradis HTML export plugin
|
|
|
113
115
|
test_files:
|
|
114
116
|
- spec/fixtures/files/template.html.erb
|
|
115
117
|
- spec/lib/dradis/plugins/html_export/exporter_spec.rb
|
|
118
|
+
- spec/presenters/dradis/plugins/html_export/template_presenter_spec.rb
|
|
116
119
|
- spec/requests/html_export_spec.rb
|
|
117
120
|
- spec/spec_helper.rb
|