Implement Rawhtml component

PragTob · PragTob · commit f03051d623ee · 2020-02-04T17:52:57.000+01:00
Name is WIP as right now raw clashes with the raw of Rails,
which would give us the desired result (which is nice) but might
be a worse choice if there were some common options etc. we
wanted to use or just well... consistency :)
diff --git a/app/concepts/matestack/ui/core/raw/raw.rb b/app/concepts/matestack/ui/core/raw/raw.rb
@@ -0,0 +1,7 @@
+module Matestack::Ui::Core::Rawhtml
+  class Rawhtml < Matestack::Ui::Core::Component::Static
+    def show
+      @argument
+    end
+  end
+end
diff --git a/docs/components/plain.md b/docs/components/plain.md
@@ -2,7 +2,7 @@
 
 Show [specs](/spec/usage/components/plain_spec.rb)
 
-This element simply renders the value of a variable (or simple a string) wherever you want it.
+This element simply renders the value of a variable (or simple a string) wherever you want it **escaping HTML tags** (`<` becomes `&lt;` etc.).
 
 ## Parameters
 
diff --git a/docs/components/rawhtml.md b/docs/components/rawhtml.md
@@ -0,0 +1,35 @@
+# matestack core component: Rawhtml
+
+Show [specs](/spec/usage/components/rawhtml_spec.rb)
+
+This element simply renders the value of a variable (or simple a string) wherever you want it **without escaping HTML**.
+
+Only use this if you are sure that you have full control over the input to this function/no malicious code can find its way inside.
+
+## Parameters
+
+This component expects one parameter.
+
+## Example 1
+
+Rendering some HTML.
+
+```ruby
+
+def response
+  components {
+    rawhtml <<~HTML
+    <h1>Hello World</h1>
+    <script>alert('Really Hello!')</script>
+    HTML
+}
+end
+
+```
+
+returns
+
+```html
+<h1>Hello World</h1>
+<script>alert('Really Hello!')</script>
+```
diff --git a/spec/usage/components/rawhtml_spec.rb b/spec/usage/components/rawhtml_spec.rb
@@ -0,0 +1,25 @@
+describe "Raw Html Component", type: :feature, js: true do
+
+  it "allows the insertion of pure HTML: Example 1" do
+
+    class ExamplePage < Matestack::Ui::Page
+      def response
+        components {
+          rawhtml <<~HTML
+          <h1>Hello World</h1>
+          <script>alert('Really Hello!')</script>
+          HTML
+        }
+      end
+    end
+
+    accept_alert do
+      visit "/example"
+    end
+
+    static_output = page.html
+
+    expect(static_output).to include("<h1>Hello World</h1>")
+  end
+
+end
