mirror of
https://github.com/EGroupware/egroupware.git
synced 2024-11-17 05:23:26 +01:00
8f797be836
- can be used via html class like: $clean_html = html::purify($html); - using it now in eTemplate to remove malicious code from html: a) when displaying "formatted text" b) when "formatted text" get's input by the user
37 lines
867 B
PHP
Executable File
37 lines
867 B
PHP
Executable File
<?php
|
|
|
|
/**
|
|
* Pre-transform that changes converts a boolean attribute to fixed CSS
|
|
*/
|
|
class HTMLPurifier_AttrTransform_BoolToCSS extends HTMLPurifier_AttrTransform {
|
|
|
|
/**
|
|
* Name of boolean attribute that is trigger
|
|
*/
|
|
protected $attr;
|
|
|
|
/**
|
|
* CSS declarations to add to style, needs trailing semicolon
|
|
*/
|
|
protected $css;
|
|
|
|
/**
|
|
* @param $attr string attribute name to convert from
|
|
* @param $css string CSS declarations to add to style (needs semicolon)
|
|
*/
|
|
public function __construct($attr, $css) {
|
|
$this->attr = $attr;
|
|
$this->css = $css;
|
|
}
|
|
|
|
public function transform($attr, $config, $context) {
|
|
if (!isset($attr[$this->attr])) return $attr;
|
|
unset($attr[$this->attr]);
|
|
$this->prependCSS($attr, $this->css);
|
|
return $attr;
|
|
}
|
|
|
|
}
|
|
|
|
// vim: et sw=4 sts=4
|