首頁 探索 說明
註冊 登入
aj
/
chamilo-lms2
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
目錄樹: e7c246f349
分支列表 標籤列表
chamilo-lms2
/
vendor
/
ezyang
/
htmlpurifier
/
library
/
HTMLPurifier
/
URISchemeRegistry.php

URISchemeRegistry.php 2.1 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Registry for retrieving specific URI scheme validator objects.
    5. 

  5.  */
    6. 

  6. class HTMLPurifier_URISchemeRegistry
    7. 

  7. {
    8. 

  8. 

  9.     /**
    10. 

  10.      * Retrieve sole instance of the registry.
    11. 

  11.      * @param $prototype Optional prototype to overload sole instance with,
    12. 

  12.      *                   or bool true to reset to default registry.
    13. 

  13.      * @note Pass a registry object $prototype with a compatible interface and
    14. 

  14.      *       the function will copy it and return it all further times.
    15. 

  15.      */
    16. 

  16.     public static function instance($prototype = null) {
    17. 

  17.         static $instance = null;
    18. 

  18.         if ($prototype !== null) {
    19. 

  19.             $instance = $prototype;
    20. 

  20.         } elseif ($instance === null || $prototype == true) {
    21. 

  21.             $instance = new HTMLPurifier_URISchemeRegistry();
    22. 

  22.         }
    23. 

  23.         return $instance;
    24. 

  24.     }
    25. 

  25. 

  26.     /**
    27. 

  27.      * Cache of retrieved schemes.
    28. 

  28.      */
    29. 

  29.     protected $schemes = array();
    30. 

  30. 

  31.     /**
    32. 

  32.      * Retrieves a scheme validator object
    33. 

  33.      * @param $scheme String scheme name like http or mailto
    34. 

  34.      * @param $config HTMLPurifier_Config object
    35. 

  35.      * @param $config HTMLPurifier_Context object
    36. 

  36.      */
    37. 

  37.     public function getScheme($scheme, $config, $context) {
    38. 

  38.         if (!$config) $config = HTMLPurifier_Config::createDefault();
    39. 

  39. 

  40.         // important, otherwise attacker could include arbitrary file
    41. 

  41.         $allowed_schemes = $config->get('URI.AllowedSchemes');
    42. 

  42.         if (!$config->get('URI.OverrideAllowedSchemes') &&
    43. 

  43.             !isset($allowed_schemes[$scheme])
    44. 

  44.         ) {
    45. 

  45.             return;
    46. 

  46.         }
    47. 

  47. 

  48.         if (isset($this->schemes[$scheme])) return $this->schemes[$scheme];
    49. 

  49.         if (!isset($allowed_schemes[$scheme])) return;
    50. 

  50. 

  51.         $class = 'HTMLPurifier_URIScheme_' . $scheme;
    52. 

  52.         if (!class_exists($class)) return;
    53. 

  53.         $this->schemes[$scheme] = new $class();
    54. 

  54.         return $this->schemes[$scheme];
    55. 

  55.     }
    56. 

  56. 

  57.     /**
    58. 

  58.      * Registers a custom scheme to the cache, bypassing reflection.
    59. 

  59.      * @param $scheme Scheme name
    60. 

  60.      * @param $scheme_obj HTMLPurifier_URIScheme object
    61. 

  61.      */
    62. 

  62.     public function register($scheme, $scheme_obj) {
    63. 

  63.         $this->schemes[$scheme] = $scheme_obj;
    64. 

  64.     }
    65. 

  65. 

  66. }
    67. 

  67. 

  68. // vim: et sw=4 sts=4
    69.