[Magento Community Engineering] Community Contributions - 2.3-develop

 - merged latest code from mainline branch

Author: magento-engcom-team

dev/tests/static/framework/Magento/Sniffs/Html/HtmlBindingSniff.php

@@ -0,0 +1,91 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+namespace Magento\Sniffs\Html;
+
+use PHP_CodeSniffer\Sniffs\Sniff;
+use PHP_CodeSniffer\Files\File;
+
+/**
+ * Sniffing improper HTML bindings.
+ */
+class HtmlBindingSniff implements Sniff
+{
+    /**
+     * @inheritDoc
+     */
+    public function register()
+    {
+        return [T_INLINE_HTML];
+    }
+
+    /**
+     * Load HTML document to validate.
+     *
+     * @param int $stackPointer
+     * @param File $file
+     * @return \DOMDocument|null
+     */
+    private function loadHtmlDocument(int $stackPointer, File $file): ?\DOMDocument
+    {
+        if ($stackPointer === 0) {
+            $html = $file->getTokensAsString($stackPointer, count($file->getTokens()));
+            $dom = new \DOMDocument();
+            try {
+                // phpcs:disable Generic.PHP.NoSilencedErrors
+                @$dom->loadHTML($html);
+                return $dom;
+            } catch (\Throwable $exception) {
+                return null;
+            }
+        }
+
+        return null;
+    }
+
+    /**
+     * @inheritDoc
+     *
+     * Find HTML data bindings and check variables used.
+     */
+    public function process(File $phpcsFile, $stackPtr)
+    {
+        if (!$dom = $this->loadHtmlDocument($stackPtr, $phpcsFile)) {
+            return;
+        }
+
+        /** @var string[] $htmlBindings */
+        $htmlBindings = [];
+        $domXpath = new \DOMXPath($dom);
+        $dataBindAttributes = $domXpath->query('//@*[name() = "data-bind"]');
+        foreach ($dataBindAttributes as $dataBindAttribute) {
+            $knockoutBinding = $dataBindAttribute->nodeValue;
+            preg_match('/^(.+\s*?)?html\s*?\:(.+)/ims', $knockoutBinding, $htmlBindingStart);
+            if ($htmlBindingStart) {
+                $htmlBinding = trim(preg_replace('/\,[a-z0-9\_\s]+\:.+/ims', '', $htmlBindingStart[2]));
+                $htmlBindings[] = $htmlBinding;
+            }
+        }
+        $htmlAttributes = $domXpath->query('//@*[name() = "html"]');
+        foreach ($htmlAttributes as $htmlAttribute) {
+            $magentoBinding = $htmlAttribute->nodeValue;
+            $htmlBindings[] = trim($magentoBinding);
+        }
+        foreach ($htmlBindings as $htmlBinding) {
+            if (!preg_match('/^[0-9\\\'\"]/ims', $htmlBinding)
+                && !preg_match('/UnsanitizedHtml(\(.*?\))*?$/', $htmlBinding)
+            ) {
+                $phpcsFile->addError(
+                    'Variables/functions used for HTML binding must have UnsanitizedHtml suffix'
+                    . ' - "' . $htmlBinding . '" doesn\'t,' . PHP_EOL
+                    . 'consider using text binding if the value is supposed to be text',
+                    null,
+                    'UIComponentTemplate.KnockoutBinding.HtmlSuffix'
+                );
+            }
+        }
+    }
+}

dev/tests/static/framework/Magento/TestFramework/CodingStandard/Tool/CodeSniffer/HtmlWrapper.php

@@ -0,0 +1,27 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+namespace Magento\TestFramework\CodingStandard\Tool\CodeSniffer;
+
+/**
+ * Add HTML files extension to config.
+ */
+class HtmlWrapper extends Wrapper
+{
+    const FILE_EXTENSION = 'html';
+
+    private const TOKENIZER = 'PHP';
+
+    /**
+     * @inheritDoc
+     */
+    public function init()
+    {
+        parent::init();
+
+        $this->config->extensions += [self::FILE_EXTENSION => self::TOKENIZER];
+    }
+}

dev/tests/static/framework/tests/unit/testsuite/Magento/Sniffs/Html/HtmlBindingSniffTest.php

@@ -0,0 +1,65 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+declare(strict_types=1);
+
+namespace Magento\Sniffs\Html;
+
+use Magento\TestFramework\CodingStandard\Tool\CodeSniffer\HtmlWrapper;
+use PHPUnit\Framework\TestCase;
+use Magento\TestFramework\CodingStandard\Tool\CodeSniffer;
+
+/**
+ * Test the html binding sniff on real files.
+ */
+class HtmlBindingSniffTest extends TestCase
+{
+    /**
+     * Files to sniff and expected reports.
+     *
+     * @return array
+     */
+    public function processDataProvider(): array
+    {
+        return [
+            [
+                'test-html-binding.html',
+                'test-html-binding-errors.txt'
+            ]
+        ];
+    }
+
+    /**
+     * Run CS on provided files.
+     *
+     * @param string $fileUnderTest
+     * @param string $expectedReportFile
+     * @return void
+     * @dataProvider processDataProvider
+     */
+    public function testProcess(string $fileUnderTest, string $expectedReportFile): void
+    {
+        $reportFile = __DIR__ . DIRECTORY_SEPARATOR . '_files' . DIRECTORY_SEPARATOR . 'phpcs_report.txt';
+        $ruleSetDir = __DIR__ . DIRECTORY_SEPARATOR . '_files';
+        $wrapper = new HtmlWrapper();
+        $codeSniffer = new CodeSniffer($ruleSetDir, $reportFile, $wrapper);
+        $codeSniffer->setExtensions([HtmlWrapper::FILE_EXTENSION]);
+        $result = $codeSniffer->run(
+            [__DIR__ . DIRECTORY_SEPARATOR . '_files' . DIRECTORY_SEPARATOR . $fileUnderTest]
+        );
+        // Remove the absolute path to the file from the output
+        //phpcs:ignore
+        $actual = preg_replace('/^.+\n/', '', ltrim(file_get_contents($reportFile)));
+        //phpcs:ignore
+        $expected = file_get_contents(
+            __DIR__ . DIRECTORY_SEPARATOR . '_files' . DIRECTORY_SEPARATOR . $expectedReportFile
+        );
+        //phpcs:ignore
+        unlink($reportFile);
+        $this->assertEquals(1, $result);
+        $this->assertEquals($expected, $actual);
+    }
+}

dev/tests/static/framework/tests/unit/testsuite/Magento/Sniffs/Html/_files/ruleset.xml

@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+-->
+<ruleset name="Magento">
+    <description>UI Component Coding Standard</description>
+    <rule ref="Internal.NoCodeFound">
+        <severity>0</severity>
+    </rule>
+    <rule ref="../../../../../../../Magento/Sniffs/Html"/>
+</ruleset>

dev/tests/static/framework/tests/unit/testsuite/Magento/Sniffs/Html/_files/test-html-binding-errors.txt

@@ -0,0 +1,18 @@
+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
+FOUND 6 ERRORS AFFECTING 1 LINE
+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
+ 1 | ERROR | Variables/functions used for HTML binding must have UnsanitizedHtml suffix - "testError()" doesn't,
+   |       | consider using text binding if the value is supposed to be text
+ 1 | ERROR | Variables/functions used for HTML binding must have UnsanitizedHtml suffix - "test.getSomething().value.error()" doesn't,
+   |       | consider using text binding if the value is supposed to be text
+ 1 | ERROR | Variables/functions used for HTML binding must have UnsanitizedHtml suffix - "bind_stuff(1, 2)" doesn't,
+   |       | consider using text binding if the value is supposed to be text
+ 1 | ERROR | Variables/functions used for HTML binding must have UnsanitizedHtml suffix - "testError()" doesn't,
+   |       | consider using text binding if the value is supposed to be text
+ 1 | ERROR | Variables/functions used for HTML binding must have UnsanitizedHtml suffix - "test.getSomething().value.error(1)" doesn't,
+   |       | consider using text binding if the value is supposed to be text
+ 1 | ERROR | Variables/functions used for HTML binding must have UnsanitizedHtml suffix - "bind_stuff()" doesn't,
+   |       | consider using text binding if the value is supposed to be text
+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
+
+

dev/tests/static/framework/tests/unit/testsuite/Magento/Sniffs/Html/_files/test-html-binding.html

@@ -0,0 +1,30 @@
+<!--
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+-->
+
+<div data-bind="attr: test.value"></div>
+<p>Test</p>
+<span data-bind="html: testError()"></span>
+<div data-bind="
+    attr : tst,
+    html: test.getSomething().value.error()
+"></div>
+<p data-bind="html: '<b>Some html</b>', attr: test"></p>
+<div data-bind="html: valueUnsanitizedHtml"></div>
+<div data-bind="attr: testhtml, html: valueUnsanitizedHtml()"></div>
+<p data-bind="other_html: bind, html: bind_stuff(1, 2)"></p>
+
+<div style="tst()"></div>
+<span html="testError()"></span>
+<div html="
+    test.getSomething().value.error(1)
+"></div>
+<p html="'<b>Some html</b>'"></p>
+<div html="valueUnsanitizedHtml"></div>
+<div html="
+valueUnsanitizedHtml('test')
+"></div>
+<p html="bind_stuff()"></p>

dev/tests/static/phpunit.xml.dist

@@ -18,6 +18,9 @@
         <testsuite name="Less Static Code Analysis">
             <file>testsuite/Magento/Test/Less/LiveCodeTest.php</file>
         </testsuite>
+        <testsuite name="HTML Static Code Analysis">
+            <file>testsuite/Magento/Test/Html/LiveCodeTest.php</file>
+        </testsuite>
         <testsuite name="PHP Coding Standard Verification">
             <file>testsuite/Magento/Test/Php/LiveCodeTest.php</file>
         </testsuite>

dev/tests/static/testsuite/Magento/Test/Html/LiveCodeTest.php

@@ -0,0 +1,64 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+namespace Magento\Test\Html;
+
+use Magento\Framework\App\Utility;
+use Magento\TestFramework\CodingStandard\Tool\CodeSniffer;
+use Magento\Framework\App\Utility\Files;
+use Magento\Test\Php\LiveCodeTest as PHPCodeTest;
+use PHPUnit\Framework\TestCase;
+
+/**
+ * Set of tests for static code style
+ */
+class LiveCodeTest extends TestCase
+{
+    /**
+     * @var string
+     */
+    private static $reportDir = '';
+
+    /**
+     * Setup basics for all tests
+     *
+     * @return void
+     */
+    public static function setUpBeforeClass(): void
+    {
+        self::$reportDir = BP . '/dev/tests/static/report';
+        if (!is_dir(self::$reportDir)) {
+            mkdir(self::$reportDir, 0770);
+        }
+    }
+
+    /**
+     * Run the magento specific coding standards on the code
+     *
+     * @return void
+     */
+    public function testCodeStyle(): void
+    {
+        $reportFile = self::$reportDir . '/html_report.txt';
+        $wrapper = new CodeSniffer\HtmlWrapper();
+        $codeSniffer = new CodeSniffer(realpath(__DIR__ . '/_files/html'), $reportFile, $wrapper);
+        if (!$codeSniffer->canRun()) {
+            $this->markTestSkipped('PHP Code Sniffer is not installed.');
+        }
+        $codeSniffer->setExtensions([CodeSniffer\HtmlWrapper::FILE_EXTENSION]);
+        //Looking for changed .html files
+        $fileList = PHPCodeTest::getWhitelist([CodeSniffer\HtmlWrapper::FILE_EXTENSION], __DIR__, __DIR__);
+
+        $result = $codeSniffer->run($fileList);
+
+        $report = file_exists($reportFile) ? file_get_contents($reportFile) : "";
+        $this->assertEquals(
+            0,
+            $result,
+            "PHP Code Sniffer has found {$result} error(s): " . PHP_EOL . $report
+        );
+    }
+}

dev/tests/static/testsuite/Magento/Test/Html/_files/html/ruleset.xml

@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+-->
+<ruleset name="Magento">
+    <description>UI Component Coding Standard</description>
+    <rule ref="Internal.NoCodeFound">
+        <severity>0</severity>
+    </rule>
+    <rule ref="../../../../../../framework/Magento/Sniffs/Html"/>
+</ruleset>

dev/tests/static/testsuite/Magento/Test/Html/_files/whitelist/common.txt

@@ -0,0 +1,2 @@
+# Format: <componentType=module|library|theme|language|*> <componentName> <globPattern> or simply <globPattern>
+* * /