mirror of
https://github.com/EGroupware/egroupware.git
synced 2024-12-13 02:01:05 +01:00
8f797be836
- can be used via html class like: $clean_html = html::purify($html); - using it now in eTemplate to remove malicious code from html: a) when displaying "formatted text" b) when "formatted text" get's input by the user
67 lines
1.8 KiB
PHP
Executable File
67 lines
1.8 KiB
PHP
Executable File
<?php
|
|
|
|
/**
|
|
* Fluent interface for validating the contents of member variables.
|
|
* This should be immutable. See HTMLPurifier_ConfigSchema_Validator for
|
|
* use-cases. We name this an 'atom' because it's ONLY for validations that
|
|
* are independent and usually scalar.
|
|
*/
|
|
class HTMLPurifier_ConfigSchema_ValidatorAtom
|
|
{
|
|
|
|
protected $context, $obj, $member, $contents;
|
|
|
|
public function __construct($context, $obj, $member) {
|
|
$this->context = $context;
|
|
$this->obj = $obj;
|
|
$this->member = $member;
|
|
$this->contents =& $obj->$member;
|
|
}
|
|
|
|
public function assertIsString() {
|
|
if (!is_string($this->contents)) $this->error('must be a string');
|
|
return $this;
|
|
}
|
|
|
|
public function assertIsBool() {
|
|
if (!is_bool($this->contents)) $this->error('must be a boolean');
|
|
return $this;
|
|
}
|
|
|
|
public function assertIsArray() {
|
|
if (!is_array($this->contents)) $this->error('must be an array');
|
|
return $this;
|
|
}
|
|
|
|
public function assertNotNull() {
|
|
if ($this->contents === null) $this->error('must not be null');
|
|
return $this;
|
|
}
|
|
|
|
public function assertAlnum() {
|
|
$this->assertIsString();
|
|
if (!ctype_alnum($this->contents)) $this->error('must be alphanumeric');
|
|
return $this;
|
|
}
|
|
|
|
public function assertNotEmpty() {
|
|
if (empty($this->contents)) $this->error('must not be empty');
|
|
return $this;
|
|
}
|
|
|
|
public function assertIsLookup() {
|
|
$this->assertIsArray();
|
|
foreach ($this->contents as $v) {
|
|
if ($v !== true) $this->error('must be a lookup array');
|
|
}
|
|
return $this;
|
|
}
|
|
|
|
protected function error($msg) {
|
|
throw new HTMLPurifier_ConfigSchema_Exception(ucfirst($this->member) . ' in ' . $this->context . ' ' . $msg);
|
|
}
|
|
|
|
}
|
|
|
|
// vim: et sw=4 sts=4
|