mirror of
https://github.com/EGroupware/egroupware.git
synced 2024-11-24 17:04:14 +01:00
8f797be836
- can be used via html class like: $clean_html = html::purify($html); - using it now in eTemplate to remove malicious code from html: a) when displaying "formatted text" b) when "formatted text" get's input by the user
199 lines
6.3 KiB
PHP
Executable File
199 lines
6.3 KiB
PHP
Executable File
<?php
|
|
|
|
/**
|
|
* Class responsible for generating HTMLPurifier_Language objects, managing
|
|
* caching and fallbacks.
|
|
* @note Thanks to MediaWiki for the general logic, although this version
|
|
* has been entirely rewritten
|
|
* @todo Serialized cache for languages
|
|
*/
|
|
class HTMLPurifier_LanguageFactory
|
|
{
|
|
|
|
/**
|
|
* Cache of language code information used to load HTMLPurifier_Language objects
|
|
* Structure is: $factory->cache[$language_code][$key] = $value
|
|
* @value array map
|
|
*/
|
|
public $cache;
|
|
|
|
/**
|
|
* Valid keys in the HTMLPurifier_Language object. Designates which
|
|
* variables to slurp out of a message file.
|
|
* @value array list
|
|
*/
|
|
public $keys = array('fallback', 'messages', 'errorNames');
|
|
|
|
/**
|
|
* Instance of HTMLPurifier_AttrDef_Lang to validate language codes
|
|
* @value object HTMLPurifier_AttrDef_Lang
|
|
*/
|
|
protected $validator;
|
|
|
|
/**
|
|
* Cached copy of dirname(__FILE__), directory of current file without
|
|
* trailing slash
|
|
* @value string filename
|
|
*/
|
|
protected $dir;
|
|
|
|
/**
|
|
* Keys whose contents are a hash map and can be merged
|
|
* @value array lookup
|
|
*/
|
|
protected $mergeable_keys_map = array('messages' => true, 'errorNames' => true);
|
|
|
|
/**
|
|
* Keys whose contents are a list and can be merged
|
|
* @value array lookup
|
|
*/
|
|
protected $mergeable_keys_list = array();
|
|
|
|
/**
|
|
* Retrieve sole instance of the factory.
|
|
* @param $prototype Optional prototype to overload sole instance with,
|
|
* or bool true to reset to default factory.
|
|
*/
|
|
public static function instance($prototype = null) {
|
|
static $instance = null;
|
|
if ($prototype !== null) {
|
|
$instance = $prototype;
|
|
} elseif ($instance === null || $prototype == true) {
|
|
$instance = new HTMLPurifier_LanguageFactory();
|
|
$instance->setup();
|
|
}
|
|
return $instance;
|
|
}
|
|
|
|
/**
|
|
* Sets up the singleton, much like a constructor
|
|
* @note Prevents people from getting this outside of the singleton
|
|
*/
|
|
public function setup() {
|
|
$this->validator = new HTMLPurifier_AttrDef_Lang();
|
|
$this->dir = HTMLPURIFIER_PREFIX . '/HTMLPurifier';
|
|
}
|
|
|
|
/**
|
|
* Creates a language object, handles class fallbacks
|
|
* @param $config Instance of HTMLPurifier_Config
|
|
* @param $context Instance of HTMLPurifier_Context
|
|
* @param $code Code to override configuration with. Private parameter.
|
|
*/
|
|
public function create($config, $context, $code = false) {
|
|
|
|
// validate language code
|
|
if ($code === false) {
|
|
$code = $this->validator->validate(
|
|
$config->get('Core', 'Language'), $config, $context
|
|
);
|
|
} else {
|
|
$code = $this->validator->validate($code, $config, $context);
|
|
}
|
|
if ($code === false) $code = 'en'; // malformed code becomes English
|
|
|
|
$pcode = str_replace('-', '_', $code); // make valid PHP classname
|
|
static $depth = 0; // recursion protection
|
|
|
|
if ($code == 'en') {
|
|
$lang = new HTMLPurifier_Language($config, $context);
|
|
} else {
|
|
$class = 'HTMLPurifier_Language_' . $pcode;
|
|
$file = $this->dir . '/Language/classes/' . $code . '.php';
|
|
if (file_exists($file) || class_exists($class, false)) {
|
|
$lang = new $class($config, $context);
|
|
} else {
|
|
// Go fallback
|
|
$raw_fallback = $this->getFallbackFor($code);
|
|
$fallback = $raw_fallback ? $raw_fallback : 'en';
|
|
$depth++;
|
|
$lang = $this->create($config, $context, $fallback);
|
|
if (!$raw_fallback) {
|
|
$lang->error = true;
|
|
}
|
|
$depth--;
|
|
}
|
|
}
|
|
|
|
$lang->code = $code;
|
|
|
|
return $lang;
|
|
|
|
}
|
|
|
|
/**
|
|
* Returns the fallback language for language
|
|
* @note Loads the original language into cache
|
|
* @param $code string language code
|
|
*/
|
|
public function getFallbackFor($code) {
|
|
$this->loadLanguage($code);
|
|
return $this->cache[$code]['fallback'];
|
|
}
|
|
|
|
/**
|
|
* Loads language into the cache, handles message file and fallbacks
|
|
* @param $code string language code
|
|
*/
|
|
public function loadLanguage($code) {
|
|
static $languages_seen = array(); // recursion guard
|
|
|
|
// abort if we've already loaded it
|
|
if (isset($this->cache[$code])) return;
|
|
|
|
// generate filename
|
|
$filename = $this->dir . '/Language/messages/' . $code . '.php';
|
|
|
|
// default fallback : may be overwritten by the ensuing include
|
|
$fallback = ($code != 'en') ? 'en' : false;
|
|
|
|
// load primary localisation
|
|
if (!file_exists($filename)) {
|
|
// skip the include: will rely solely on fallback
|
|
$filename = $this->dir . '/Language/messages/en.php';
|
|
$cache = array();
|
|
} else {
|
|
include $filename;
|
|
$cache = compact($this->keys);
|
|
}
|
|
|
|
// load fallback localisation
|
|
if (!empty($fallback)) {
|
|
|
|
// infinite recursion guard
|
|
if (isset($languages_seen[$code])) {
|
|
trigger_error('Circular fallback reference in language ' .
|
|
$code, E_USER_ERROR);
|
|
$fallback = 'en';
|
|
}
|
|
$language_seen[$code] = true;
|
|
|
|
// load the fallback recursively
|
|
$this->loadLanguage($fallback);
|
|
$fallback_cache = $this->cache[$fallback];
|
|
|
|
// merge fallback with current language
|
|
foreach ( $this->keys as $key ) {
|
|
if (isset($cache[$key]) && isset($fallback_cache[$key])) {
|
|
if (isset($this->mergeable_keys_map[$key])) {
|
|
$cache[$key] = $cache[$key] + $fallback_cache[$key];
|
|
} elseif (isset($this->mergeable_keys_list[$key])) {
|
|
$cache[$key] = array_merge( $fallback_cache[$key], $cache[$key] );
|
|
}
|
|
} else {
|
|
$cache[$key] = $fallback_cache[$key];
|
|
}
|
|
}
|
|
|
|
}
|
|
|
|
// save to cache for later retrieval
|
|
$this->cache[$code] = $cache;
|
|
|
|
return;
|
|
}
|
|
|
|
}
|
|
|
|
// vim: et sw=4 sts=4
|