mirror of
https://github.com/EGroupware/egroupware.git
synced 2024-11-17 13:33:15 +01:00
8f797be836
- can be used via html class like:
$clean_html = html::purify($html);
- using it now in eTemplate to remove malicious code from html:
a) when displaying "formatted text"
b) when "formatted text" get's input by the user
32 lines
757 B
PHP
Executable File
32 lines
757 B
PHP
Executable File
<?php
|
|
|
|
/**
|
|
* Represents a directive ID in the interchange format.
|
|
*/
|
|
class HTMLPurifier_ConfigSchema_Interchange_Id
|
|
{
|
|
|
|
public $namespace, $directive;
|
|
|
|
public function __construct($namespace, $directive) {
|
|
$this->namespace = $namespace;
|
|
$this->directive = $directive;
|
|
}
|
|
|
|
/**
|
|
* @warning This is NOT magic, to ensure that people don't abuse SPL and
|
|
* cause problems for PHP 5.0 support.
|
|
*/
|
|
public function toString() {
|
|
return $this->namespace . '.' . $this->directive;
|
|
}
|
|
|
|
public static function make($id) {
|
|
list($namespace, $directive) = explode('.', $id);
|
|
return new HTMLPurifier_ConfigSchema_Interchange_Id($namespace, $directive);
|
|
}
|
|
|
|
}
|
|
|
|
// vim: et sw=4 sts=4
|