function Test::escapedScript

Same name in other branches
  1. 9 core/modules/system/tests/modules/test_page_test/src/Controller/Test.php \Drupal\test_page_test\Controller\Test::escapedScript()
  2. 8.9.x core/modules/system/tests/modules/test_page_test/src/Controller/Test.php \Drupal\test_page_test\Controller\Test::escapedScript()
  3. 11.x core/modules/system/tests/modules/test_page_test/src/Controller/Test.php \Drupal\test_page_test\Controller\Test::escapedScript()
1 string reference to 'Test::escapedScript'
test_page_test.routing.yml in core/modules/system/tests/modules/test_page_test/test_page_test.routing.yml
core/modules/system/tests/modules/test_page_test/test_page_test.routing.yml

File

core/modules/system/tests/modules/test_page_test/src/Controller/Test.php, line 143

Class

Test
Defines a test controller for page titles.

Namespace

Drupal\test_page_test\Controller

Code

public function escapedScript() {
    return [
        '#prefix' => '<div class="escaped">',
        // We use #plain_text because #markup would be filtered and that is not
        // being tested here.
'#plain_text' => "<script>alert('XSS');alert(\"XSS\");</script>",
        '#suffix' => '</div>',
    ];
}

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.