view tests/redirect.ur @ 1710:540df112ff62

Remove string-valued style attribute, which may allow injection attacks
author Adam Chlipala <adam@chlipala.net>
date Sun, 15 Apr 2012 12:40:53 -0400
parents 217eb87dde31
children
line wrap: on
line source
fun other () = redirect (bless "http://www.google.com/")

fun further () = case checkUrl "http://www.google.com/" of
                     None => return <xml>Darn.</xml>
                   | Some url => redirect url

fun failing () = case checkUrl "http://www.yahoo.com/" of
                     None => return <xml>Darn.</xml>
                   | Some url => redirect url

fun main () = return <xml><body>
  <a link={other ()}>Go there</a><br/>
  <a link={further ()}>Go also there</a><br/>
  <a link={failing ()}>Fail there</a>
</body></xml>