diff options
Diffstat (limited to 'spec/models/user_spec.rb')
| -rw-r--r-- | spec/models/user_spec.rb | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/spec/models/user_spec.rb b/spec/models/user_spec.rb index e6724d8..7552a1e 100644 --- a/spec/models/user_spec.rb +++ b/spec/models/user_spec.rb @@ -8,6 +8,11 @@ describe User do new_user.role.should == :recruit end + it "should escape emails" do + u = User.new :email_address => "<script>alert('foo')<script>@foo.com" + u.email_address.to_html.should == "<script>alert('foo')<script> at foo dot com" + end + it { should allow_value(:mentor).for(:role) } it { should allow_value(:recruiter).for(:role) } |