46 lines
1.2 KiB
PHP
46 lines
1.2 KiB
PHP
|
<?php
|
||
|
|
|
||
|
|
/**
|
||
|
|
* Validate all attributes in the tokens.
|
||
|
|
*/
|
||
|
|
|
||
|
|
class HTMLPurifier_Strategy_ValidateAttributes extends HTMLPurifier_Strategy
|
||
|
|
{
|
||
|
|
|
||
|
|
/**
|
||
|
|
* @param HTMLPurifier_Token[] $tokens
|
||
|
|
* @param HTMLPurifier_Config $config
|
||
|
|
* @param HTMLPurifier_Context $context
|
||
|
|
* @return HTMLPurifier_Token[]
|
||
|
|
*/
|
||
|
|
public function execute($tokens, $config, $context)
|
||
|
|
{
|
||
|
|
// setup validator
|
||
|
|
$validator = new HTMLPurifier_AttrValidator();
|
||
|
|
|
||
|
|
$token = false;
|
||
|
|
$context->register('CurrentToken', $token);
|
||
|
|
|
||
|
|
foreach ($tokens as $key => $token) {
|
||
|
|
|
||
|
|
// only process tokens that have attributes,
|
||
|
|
// namely start and empty tags
|
||
|
|
if (!$token instanceof HTMLPurifier_Token_Start && !$token instanceof HTMLPurifier_Token_Empty) {
|
||
|
|
continue;
|
||
|
|
}
|
||
|
|
|
||
|
|
// skip tokens that are armored
|
||
|
|
if (!empty($token->armor['ValidateAttributes'])) {
|
||
|
|
continue;
|
||
|
|
}
|
||
|
|
|
||
|
|
// note that we have no facilities here for removing tokens
|
||
|
|
$validator->validateToken($token, $config, $context);
|
||
|
|
}
|
||
|
|
$context->destroy('CurrentToken');
|
||
|
|
return $tokens;
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
// vim: et sw=4 sts=4
|