Home Explore Help
Register Sign In
aj
/
chamilo-lms2
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 0e3191628e
Branches Tags
chamilo-lms2
/
main
/
inc
/
lib
/
htmlpurifier
/
library
/
HTMLPurifier
/
Injector
/
SafeObject.php

SafeObject.php 3.5 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Adds important param elements to inside of object in order to make
    5. 

  5.  * things safe.
    6. 

  6.  */
    7. 

  7. class HTMLPurifier_Injector_SafeObject extends HTMLPurifier_Injector
    8. 

  8. {
    9. 

  9.     public $name = 'SafeObject';
    10. 

  10.     public $needed = array('object', 'param');
    11. 

  11. 

  12.     protected $objectStack = array();
    13. 

  13.     protected $paramStack  = array();
    14. 

  14. 

  15.     // Keep this synchronized with AttrTransform/SafeParam.php
    16. 

  16.     protected $addParam = array(
    17. 

  17.         'allowScriptAccess' => 'never',
    18. 

  18.         'allowNetworking' => 'internal',
    19. 

  19.         'allowscriptaccess' => 'never',
    20. 

  20.         'allownetworking' => 'internal',
    21. 

  21. 

  22.     );
    23. 

  23.     protected $allowedParam = array(
    24. 

  24.         'wmode' => true,
    25. 

  25.         'movie' => true,
    26. 

  26.         'flashvars' => true,
    27. 

  27.         'src' => true,
    28. 

  28.         'allowFullScreen' => true, // if omitted, assume to be 'false'
    29. 

  29.         'allowfullscreen' => true, // if omitted, assume to be 'false'
    30. 

  30.     );
    31. 

  31. 

  32.     public function prepare($config, $context) {
    33. 

  33.         parent::prepare($config, $context);
    34. 

  34.     }
    35. 

  35. 

  36.     public function handleElement(&$token) {
    37. 

  37.         if ($token->name == 'object') {
    38. 

  38.             $this->objectStack[] = $token;
    39. 

  39.             $this->paramStack[] = array();
    40. 

  40.             $new = array($token);
    41. 

  41.             foreach ($this->addParam as $name => $value) {
    42. 

  42.                 $new[] = new HTMLPurifier_Token_Empty('param', array('name' => $name, 'value' => $value));
    43. 

  43.             }
    44. 

  44.             $token = $new;
    45. 

  45.         } elseif ($token->name == 'param') {
    46. 

  46.             $nest = count($this->currentNesting) - 1;
    47. 

  47.             if ($nest >= 0 && $this->currentNesting[$nest]->name === 'object') {
    48. 

  48.                 $i = count($this->objectStack) - 1;
    49. 

  49.                 if (!isset($token->attr['name'])) {
    50. 

  50.                     $token = false;
    51. 

  51.                     return;
    52. 

  52.                 }
    53. 

  53.                 $n = $token->attr['name'];
    54. 

  54.                 // We need this fix because YouTube doesn't supply a data
    55. 

  55.                 // attribute, which we need if a type is specified. This is
    56. 

  56.                 // *very* Flash specific.
    57. 

  57.                 if (!isset($this->objectStack[$i]->attr['data']) &&
    58. 

  58.                     ($token->attr['name'] == 'movie' || $token->attr['name'] == 'src')) {
    59. 

  59.                     $this->objectStack[$i]->attr['data'] = $token->attr['value'];
    60. 

  60.                 }
    61. 

  61.                 // Check if the parameter is the correct value but has not
    62. 

  62.                 // already been added
    63. 

  63.                 if (
    64. 

  64.                     !isset($this->paramStack[$i][$n]) &&
    65. 

  65.                     isset($this->addParam[$n]) &&
    66. 

  66.                     $token->attr['name'] === $this->addParam[$n]
    67. 

  67.                 ) {
    68. 

  68.                     // keep token, and add to param stack
    69. 

  69.                     $this->paramStack[$i][$n] = true;
    70. 

  70.                 } elseif (isset($this->allowedParam[$n])) {
    71. 

  71.                     // keep token, don't do anything to it
    72. 

  72.                     // (could possibly check for duplicates here)
    73. 

  73.                 } else {
    74. 

  74.                     $token = false;
    75. 

  75.                 }
    76. 

  76.             } else {
    77. 

  77.                 // not directly inside an object, DENY!
    78. 

  78.                 $token = false;
    79. 

  79.             }
    80. 

  80.         }
    81. 

  81.     }
    82. 

  82. 

  83.     public function handleEnd(&$token) {
    84. 

  84.         // This is the WRONG way of handling the object and param stacks;
    85. 

  85.         // we should be inserting them directly on the relevant object tokens
    86. 

  86.         // so that the global stack handling handles it.
    87. 

  87.         if ($token->name == 'object') {
    88. 

  88.             array_pop($this->objectStack);
    89. 

  89.             array_pop($this->paramStack);
    90. 

  90.         }
    91. 

  91.     }
    92. 

  92. 

  93. }
    94. 

  94. 

  95. // vim: et sw=4 sts=4
    96.