LPD-56406 Add test

mxs2 · brianchandotcom · commit 0114bb60238e · 2025-06-16T08:19:02.000-03:00
diff --git a/modules/apps/dynamic-data-mapping/dynamic-data-mapping-web-test/src/test/java/com/liferay/dynamic/data/mapping/web/internal/portlet/action/RenderStructureFieldMVCResourceCommandTest.java b/modules/apps/dynamic-data-mapping/dynamic-data-mapping-web-test/src/test/java/com/liferay/dynamic/data/mapping/web/internal/portlet/action/RenderStructureFieldMVCResourceCommandTest.java
@@ -5,6 +5,10 @@
 
 package com.liferay.dynamic.data.mapping.web.internal.portlet.action;
 
+import com.liferay.dynamic.data.mapping.io.DDMFormDeserializer;
+import com.liferay.dynamic.data.mapping.io.DDMFormDeserializerDeserializeResponse;
+import com.liferay.dynamic.data.mapping.model.DDMForm;
+import com.liferay.dynamic.data.mapping.model.DDMFormField;
 import com.liferay.dynamic.data.mapping.render.DDMFormFieldRenderingContext;
 import com.liferay.portal.kernel.test.ReflectionTestUtil;
 import com.liferay.portal.kernel.theme.ThemeDisplay;
@@ -17,6 +21,8 @@
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 
+import java.util.Collections;
+
 import org.junit.Assert;
 import org.junit.ClassRule;
 import org.junit.Test;
@@ -86,6 +92,94 @@ public void testCreateDDMFormFieldRenderingContext() {
 			ddmFormFieldRenderingContext.getPortletNamespace());
 	}
 
+	@Test
+	public void testGetDDMFormField() {
+		HttpServletRequest httpServletRequest = Mockito.mock(
+			HttpServletRequest.class);
+
+		ThemeDisplay themeDisplay = Mockito.mock(ThemeDisplay.class);
+
+		Mockito.when(
+			themeDisplay.getLocale()
+		).thenReturn(
+			LocaleUtil.US
+		);
+
+		Mockito.when(
+			httpServletRequest.getAttribute(WebKeys.THEME_DISPLAY)
+		).thenReturn(
+			themeDisplay
+		);
+
+		String script = "'\"></option><img onerror=alert(123) src=x>";
+
+		Mockito.when(
+			httpServletRequest.getParameter("definition")
+		).thenReturn(
+			script
+		);
+
+		Mockito.when(
+			httpServletRequest.getParameter("fieldName")
+		).thenReturn(
+			HtmlUtil.escapeAttribute(script)
+		);
+
+		DDMFormField ddmFormFieldMock = Mockito.mock(DDMFormField.class);
+
+		Mockito.when(
+			ddmFormFieldMock.getName()
+		).thenReturn(
+			HtmlUtil.escapeAttribute(script)
+		);
+
+		DDMForm ddmForm = Mockito.mock(DDMForm.class);
+
+		Mockito.when(
+			ddmForm.getDDMFormFieldsMap(true)
+		).thenReturn(
+			Collections.singletonMap(
+				HtmlUtil.escapeAttribute(script), ddmFormFieldMock)
+		);
+
+		DDMFormDeserializerDeserializeResponse
+			ddmFormDeserializerDeserializeResponseMock = Mockito.mock(
+				DDMFormDeserializerDeserializeResponse.class);
+
+		Mockito.when(
+			ddmFormDeserializerDeserializeResponseMock.getDDMForm()
+		).thenReturn(
+			ddmForm
+		);
+
+		DDMFormDeserializer jsonDDMFormDeserializerMock = Mockito.mock(
+			DDMFormDeserializer.class);
+
+		Mockito.when(
+			jsonDDMFormDeserializerMock.deserialize(Mockito.any())
+		).thenReturn(
+			ddmFormDeserializerDeserializeResponseMock
+		);
+
+		RenderStructureFieldMVCResourceCommand
+			renderStructureFieldMVCResourceCommand =
+				new RenderStructureFieldMVCResourceCommand();
+
+		ReflectionTestUtil.setFieldValue(
+			renderStructureFieldMVCResourceCommand, "_portal", _portal);
+
+		ReflectionTestUtil.setFieldValue(
+			renderStructureFieldMVCResourceCommand, "_jsonDDMFormDeserializer",
+			jsonDDMFormDeserializerMock);
+
+		DDMFormField ddmFormField = ReflectionTestUtil.invoke(
+			renderStructureFieldMVCResourceCommand, "_getDDMFormField",
+			new Class<?>[] {HttpServletRequest.class}, httpServletRequest);
+
+		Assert.assertEquals(
+			HtmlUtil.escapeAttribute(script), ddmFormField.getName());
+	}
+
 	private final Portal _portal = Mockito.mock(Portal.class);
 
 }
