TestXSSInFullName (Atlassian Jira - Server 10.7.0 API)

java.lang.Object

com.atlassian.jira.functest.framework.BaseJiraFuncTest

com.atlassian.jira.webtests.ztests.misc.TestXSSInFullName

public class TestXSSInFullName extends BaseJiraFuncTest

Test Cross-site scripting vulnerabilities when script entered in fullname

Field Summary

Fields

Modifier and Type

Field

Description

static final String

ALANS_PASSWORD

Fields inherited from class com.atlassian.jira.functest.framework.BaseJiraFuncTest
assertions, backdoor, environmentData, initClass, navigation, tester, testRule
Constructor Summary

Constructors

Constructor

Description

TestXSSInFullName()
Method Summary

Modifier and Type

Method

Description

void

_testAssigneeFieldinMoveOperation()

void

_testAssigneeNavigatorView()

void

_testChangeHistoryTab()

void

_testDashboardPortlets()

void

_testDeveloperWorkloadReport()

void

_testEditAssigneeField()

void

_testFullUsernameInComment()

Ensure that a user's fullname is html escaped correctly in the comments and in the bodytop where the fullname of the logged in user is displayed.

void

_testMultiUserCustomFieldView()

void

_testReporterInBulkEdit()

void

_testReporterInNavigatorView()

void

_testTimeTrackingExcel()

void

_testUserPickerCustomField()

void

_testWatchersTable()

void

_testWorklogTab()

void

setUp()

void

tearDown()

void

testFullNameWithScript()

Methods inherited from class com.atlassian.jira.functest.framework.BaseJiraFuncTest
getAssertions, getBackdoor, getEnvironmentData, getTester

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details
- ALANS_PASSWORD
  
  public static final String ALANS_PASSWORD
  See Also:
  
  Constant Field Values
Constructor Details
- TestXSSInFullName
  
  public TestXSSInFullName()
Method Details
- setUp
  
  public void setUp()
- tearDown
  
  public void tearDown()
- testFullNameWithScript
  
  public void testFullNameWithScript()
- _testFullUsernameInComment
  
  public void _testFullUsernameInComment()
  
  Ensure that a user's fullname is html escaped correctly in the comments and in the bodytop where the fullname of the logged in user is displayed.
- _testEditAssigneeField
  
  public void _testEditAssigneeField()
- _testAssigneeNavigatorView
  
  public void _testAssigneeNavigatorView()
- _testAssigneeFieldinMoveOperation
  
  public void _testAssigneeFieldinMoveOperation()
- _testChangeHistoryTab
  
  public void _testChangeHistoryTab()
- _testDeveloperWorkloadReport
  
  public void _testDeveloperWorkloadReport()
- _testWorklogTab
  
  public void _testWorklogTab()
- _testUserPickerCustomField
  
  public void _testUserPickerCustomField()
- _testReporterInNavigatorView
  
  public void _testReporterInNavigatorView()
- _testWatchersTable
  
  public void _testWatchersTable()
- _testDashboardPortlets
  
  public void _testDashboardPortlets()
- _testReporterInBulkEdit
  
  public void _testReporterInBulkEdit()
- _testMultiUserCustomFieldView
  
  public void _testMultiUserCustomFieldView()
- _testTimeTrackingExcel
  
  public void _testTimeTrackingExcel()