view tests/redirect.ur @ 1241:58f5ac1bb849

Check for implicit flows via expressions injected into SQL
author Adam Chlipala <adamc@hcoop.net>
date Thu, 15 Apr 2010 14:21:12 -0400
parents 217eb87dde31
children
line wrap: on
line source
fun other () = redirect (bless "http://www.google.com/")

fun further () = case checkUrl "http://www.google.com/" of
                     None => return <xml>Darn.</xml>
                   | Some url => redirect url

fun failing () = case checkUrl "http://www.yahoo.com/" of
                     None => return <xml>Darn.</xml>
                   | Some url => redirect url

fun main () = return <xml><body>
  <a link={other ()}>Go there</a><br/>
  <a link={further ()}>Go also there</a><br/>
  <a link={failing ()}>Fail there</a>
</body></xml>