forked from extern/egroupware
8f797be836
- can be used via html class like: $clean_html = html::purify($html); - using it now in eTemplate to remove malicious code from html: a) when displaying "formatted text" b) when "formatted text" get's input by the user
20 lines
466 B
PHP
Executable File
20 lines
466 B
PHP
Executable File
<?php
|
|
|
|
// this MUST be placed in post, as it assumes that any value in dir is valid
|
|
|
|
/**
|
|
* Post-trasnform that ensures that bdo tags have the dir attribute set.
|
|
*/
|
|
class HTMLPurifier_AttrTransform_BdoDir extends HTMLPurifier_AttrTransform
|
|
{
|
|
|
|
public function transform($attr, $config, $context) {
|
|
if (isset($attr['dir'])) return $attr;
|
|
$attr['dir'] = $config->get('Attr', 'DefaultTextDir');
|
|
return $attr;
|
|
}
|
|
|
|
}
|
|
|
|
// vim: et sw=4 sts=4
|