fix(IE): Embrace canonicalization of ng-src specified URLs.

rjamet · rjamet · commit c71e082ed85a · 2016-05-26T17:11:34.000+02:00
I'm not really sure why they weren't in the first place, but now they
really are, and that doesn't seem like a negative change.
diff --git a/src/ng/compile.js b/src/ng/compile.js
@@ -1429,7 +1429,6 @@ function $CompileProvider($provide, $$sanitizeUriProvider) {
 
         nodeName = nodeName_(this.$$element);
 
-
         // img[srcset] is a bit too weird of a beast to handle through $sce.
         // Instead, for now at least, sanitize each of the URIs individually.
         // That works even dynamically, but it's not bypassable through the $sce.
diff --git a/src/ng/directive/attrs.js b/src/ng/directive/attrs.js
@@ -415,7 +415,7 @@ forEach(['src', 'srcset', 'href'], function(attrName) {
           // on IE, if "ng:src" directive declaration is used and "src" attribute doesn't exist
           // then calling element.setAttribute('src', 'foo') doesn't do anything, so we need
           // to set the property as well to achieve the desired effect.
-          // we use attr[attrName] value since $set can sanitize the url.
+          // we reuse the value put in attr[name] since $set might have sanitized the url.
           if (msie && propName) element.prop(propName, attr[name]);
         });
       }
diff --git a/src/ng/sce.js b/src/ng/sce.js
@@ -527,9 +527,6 @@ function $SceDelegateProvider() {
  * call `$sce.trustAs` on them (remember to include the `ngSanitize` module) (e.g.
  * `<div ng-bind-html="'<b>implicitly trusted</b>'"></div>`) just works.
  *
- * Additionally, `a[href]` and `img[src]` automatically sanitize their URLs and do not pass them
- * through {@link ng.$sce#getTrusted $sce.getTrusted}.  SCE doesn't play a role here.
- *
  * The included {@link ng.$sceDelegate $sceDelegate} comes with sane defaults to allow you to load
  * templates in `ng-include` from your application's domain without having to even know about SCE.
  * It blocks loading templates from other domains or loading templates over http from an https
diff --git a/test/ng/compileSpec.js b/test/ng/compileSpec.js
@@ -9722,12 +9722,14 @@ describe('$compile', function() {
       inject(function($compile, $rootScope, $sce) {
 
         element = $compile('<img src="{{testUrl}}"></img>')($rootScope);
-        $rootScope.testUrl = $sce.trustAsUrl('javascript:foo();');
+        // Assigning javascript:foo to src makes at least IE9-11 complain, so use another
+        // protocol name.
+        $rootScope.testUrl = $sce.trustAsUrl('someUnsafeThing:foo();');
 
         $$sanitizeUri.and.throwError('Should not have been called');
         $rootScope.$apply();
 
-        expect(element.attr('src')).toEqual('javascript:foo();');
+        expect(element.attr('src')).toEqual('someUnsafeThing:foo();');
       });
     });
   });
diff --git a/test/ng/directive/booleanAttrsSpec.js b/test/ng/directive/booleanAttrsSpec.js
@@ -191,34 +191,32 @@ describe('ngSrc', function() {
   }));
 
 
-  if (msie) {
-    it('should update the element property as well as the attribute', inject(
-        function($compile, $rootScope, $sce) {
-          // on IE, if "ng:src" directive declaration is used and "src" attribute doesn't exist
-          // then calling element.setAttribute('src', 'foo') doesn't do anything, so we need
-          // to set the property as well to achieve the desired effect
+  it('should update the element property as well as the attribute', inject(
+      function($compile, $rootScope, $sce) {
+        // on IE, if "ng:src" directive declaration is used and "src" attribute doesn't exist
+        // then calling element.setAttribute('src', 'foo') doesn't do anything, so we need
+        // to set the property as well to achieve the desired effect
 
-          var element = $compile('<img ng-src="{{id}}"></img>')($rootScope);
+        var element = $compile('<img ng-src="{{id}}"></img>')($rootScope);
 
-          $rootScope.$digest();
-          expect(element.prop('src')).toBeUndefined();
-          dealoc(element);
+        $rootScope.$digest();
+        expect(element.prop('src')).toBe('');
+        dealoc(element);
 
-          element = $compile('<img ng-src="some/"></img>')($rootScope);
+        element = $compile('<img ng-src="some/"></img>')($rootScope);
 
-          $rootScope.$digest();
-          expect(element.prop('src')).toEqual('some/');
-          dealoc(element);
+        $rootScope.$digest();
+        expect(element.prop('src')).toContain('some/');
+        dealoc(element);
 
-          element = $compile('<img ng-src="{{id}}"></img>')($rootScope);
-          $rootScope.$apply(function() {
-            $rootScope.id = $sce.trustAsResourceUrl('http://somewhere');
-          });
-          expect(element.prop('src')).toEqual('http://somewhere');
+        element = $compile('<img ng-src="{{id}}"></img>')($rootScope);
+        $rootScope.$apply(function() {
+          $rootScope.id = $sce.trustAsResourceUrl('http://somewhere');
+        });
+        expect(element.prop('src')).toEqual('http://somewhere/');
 
-          dealoc(element);
-        }));
-  }
+        dealoc(element);
+      }));
 });
 
 

Original file line number	Diff line number	Diff line change
`@@ -415,7 +415,7 @@ forEach(['src', 'srcset', 'href'], function(attrName) {`
`415`	`415`	`// on IE, if "ng:src" directive declaration is used and "src" attribute doesn't exist`
`416`	`416`	`// then calling element.setAttribute('src', 'foo') doesn't do anything, so we need`
`417`	`417`	`// to set the property as well to achieve the desired effect.`
`418`		`- // we use attr[attrName] value since $set can sanitize the url.`
	`418`	`+ // we reuse the value put in attr[name] since $set might have sanitized the url.`
`419`	`419`	`if (msie && propName) element.prop(propName, attr[name]);`
`420`	`420`	`});`
`421`	`421`	`}`