forked from extern/egroupware
8f797be836
- can be used via html class like: $clean_html = html::purify($html); - using it now in eTemplate to remove malicious code from html: a) when displaying "formatted text" b) when "formatted text" get's input by the user
58 lines
1.5 KiB
PHP
Executable File
58 lines
1.5 KiB
PHP
Executable File
<?php
|
|
|
|
/**
|
|
* Generic schema interchange format that can be converted to a runtime
|
|
* representation (HTMLPurifier_ConfigSchema) or HTML documentation. Members
|
|
* are completely validated.
|
|
*/
|
|
class HTMLPurifier_ConfigSchema_Interchange
|
|
{
|
|
|
|
/**
|
|
* Name of the application this schema is describing.
|
|
*/
|
|
public $name;
|
|
|
|
/**
|
|
* Array of Namespace ID => array(namespace info)
|
|
*/
|
|
public $namespaces = array();
|
|
|
|
/**
|
|
* Array of Directive ID => array(directive info)
|
|
*/
|
|
public $directives = array();
|
|
|
|
/**
|
|
* Adds a namespace array to $namespaces
|
|
*/
|
|
public function addNamespace($namespace) {
|
|
if (isset($this->namespaces[$i = $namespace->namespace])) {
|
|
throw new HTMLPurifier_ConfigSchema_Exception("Cannot redefine namespace '$i'");
|
|
}
|
|
$this->namespaces[$i] = $namespace;
|
|
}
|
|
|
|
/**
|
|
* Adds a directive array to $directives
|
|
*/
|
|
public function addDirective($directive) {
|
|
if (isset($this->directives[$i = $directive->id->toString()])) {
|
|
throw new HTMLPurifier_ConfigSchema_Exception("Cannot redefine directive '$i'");
|
|
}
|
|
$this->directives[$i] = $directive;
|
|
}
|
|
|
|
/**
|
|
* Convenience function to perform standard validation. Throws exception
|
|
* on failed validation.
|
|
*/
|
|
public function validate() {
|
|
$validator = new HTMLPurifier_ConfigSchema_Validator();
|
|
return $validator->validate($this);
|
|
}
|
|
|
|
}
|
|
|
|
// vim: et sw=4 sts=4
|