0
0
mirror of https://github.com/ezyang/htmlpurifier.git synced 2025-01-05 06:01:52 +00:00

Cordon off configuration form values into one form element name.

git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1111 48356398-32a2-884e-a903-53898d9a118a
This commit is contained in:
Edward Z. Yang 2007-05-28 13:15:06 +00:00
parent 073ddb0cb2
commit 0cb1d85822
4 changed files with 45 additions and 27 deletions

View File

@ -301,10 +301,12 @@ class HTMLPurifier_Config
* Loads configuration values from $_GET/$_POST that were posted * Loads configuration values from $_GET/$_POST that were posted
* via ConfigForm * via ConfigForm
* @param $array $_GET or $_POST array to import * @param $array $_GET or $_POST array to import
* @param $index Index/name that the config variables are in
* @param $mq_fix Boolean whether or not to enable magic quotes fix * @param $mq_fix Boolean whether or not to enable magic quotes fix
* @static * @static
*/ */
function loadArrayFromForm($array, $mq_fix = true) { function loadArrayFromForm($array, $index, $mq_fix = true) {
$array = (isset($array[$index]) && is_array($array[$index])) ? $array[$index] : array();
$mq = get_magic_quotes_gpc() && $mq_fix; $mq = get_magic_quotes_gpc() && $mq_fix;
foreach ($array as $key => $value) { foreach ($array as $key => $value) {
if (!strncmp($key, 'Null_', 5) && !empty($value)) { if (!strncmp($key, 'Null_', 5) && !empty($value)) {

View File

@ -18,11 +18,19 @@ class HTMLPurifier_Printer_ConfigForm extends HTMLPurifier_Printer
var $docURL; var $docURL;
/** /**
* Name of form element to stuff config in
* @protected
*/
var $name;
/**
* @param $name Form element name for directives to be stuffed into
* @param $doc_url String documentation URL, will have fragment tagged on * @param $doc_url String documentation URL, will have fragment tagged on
*/ */
function HTMLPurifier_Printer_ConfigForm($doc_url = null) { function HTMLPurifier_Printer_ConfigForm($name, $doc_url = null) {
parent::HTMLPurifier_Printer(); parent::HTMLPurifier_Printer();
$this->docURL = $doc_url; $this->docURL = $doc_url;
$this->name = $name;
$this->fields['default'] = new HTMLPurifier_Printer_ConfigForm_default(); $this->fields['default'] = new HTMLPurifier_Printer_ConfigForm_default();
$this->fields['bool'] = new HTMLPurifier_Printer_ConfigForm_bool(); $this->fields['bool'] = new HTMLPurifier_Printer_ConfigForm_bool();
} }
@ -81,11 +89,15 @@ class HTMLPurifier_Printer_ConfigForm extends HTMLPurifier_Printer
foreach ($directives as $directive => $value) { foreach ($directives as $directive => $value) {
$ret .= $this->start('tr'); $ret .= $this->start('tr');
$ret .= $this->start('th'); $ret .= $this->start('th');
if ($this->docURL) $ret .= $this->start('a', array('href' => $this->docURL . "#$ns.$directive")); if ($this->docURL) {
$url = str_replace('%s', urlencode("$ns.$directive"), $this->docURL);
$ret .= $this->start('a', array('href' => $url));
}
$ret .= $this->element( $ret .= $this->element(
'label', 'label',
"%$ns.$directive", "%$ns.$directive",
array('for' => "$ns.$directive") // component printers must create an element with this id
array('for' => "{$this->name}:$ns.$directive")
); );
if ($this->docURL) $ret .= $this->end('a'); if ($this->docURL) $ret .= $this->end('a');
$ret .= $this->end('th'); $ret .= $this->end('th');
@ -98,7 +110,7 @@ class HTMLPurifier_Printer_ConfigForm extends HTMLPurifier_Printer
if ($def->allow_null) { if ($def->allow_null) {
$type_obj = new HTMLPurifier_Printer_ConfigForm_NullDecorator($type_obj); $type_obj = new HTMLPurifier_Printer_ConfigForm_NullDecorator($type_obj);
} }
$ret .= $type_obj->render($ns, $directive, $value, $this->config); $ret .= $type_obj->render($ns, $directive, $value, $this->name, $this->config);
$ret .= $this->end('td'); $ret .= $this->end('td');
$ret .= $this->end('tr'); $ret .= $this->end('tr');
} }
@ -123,9 +135,9 @@ class HTMLPurifier_Printer_ConfigForm_NullDecorator extends HTMLPurifier_Printer
parent::HTMLPurifier_Printer(); parent::HTMLPurifier_Printer();
$this->obj = $obj; $this->obj = $obj;
} }
function render($ns, $directive, $value, $config) { function render($ns, $directive, $value, $name, $config) {
$ret = ''; $ret = '';
$ret .= $this->start('label', array('for' => "Null_$ns.$directive")); $ret .= $this->start('label', array('for' => "$name:Null_$ns.$directive"));
$ret .= $this->element('span', "$ns.$directive:", array('class' => 'verbose')); $ret .= $this->element('span', "$ns.$directive:", array('class' => 'verbose'));
$ret .= $this->text(' Null/Disabled'); $ret .= $this->text(' Null/Disabled');
$ret .= $this->end('label'); $ret .= $this->end('label');
@ -133,15 +145,15 @@ class HTMLPurifier_Printer_ConfigForm_NullDecorator extends HTMLPurifier_Printer
'type' => 'checkbox', 'type' => 'checkbox',
'value' => '1', 'value' => '1',
'class' => 'null-toggle', 'class' => 'null-toggle',
'name' => "Null_$ns.$directive", 'name' => "$name:Null_$ns.$directive",
'id' => "Null_$ns.$directive", 'id' => "$name:Null_$ns.$directive",
'onclick' => "toggleWriteability('$ns.$directive',checked)" // INLINE JAVASCRIPT!!!! 'onclick' => "toggleWriteability('$name:$ns.$directive',checked)" // INLINE JAVASCRIPT!!!!
); );
if ($value === null) $attr['checked'] = 'checked'; if ($value === null) $attr['checked'] = 'checked';
$ret .= $this->elementEmpty('input', $attr); $ret .= $this->elementEmpty('input', $attr);
$ret .= $this->text(' or '); $ret .= $this->text(' or ');
$ret .= $this->elementEmpty('br'); $ret .= $this->elementEmpty('br');
$ret .= $this->obj->render($ns, $directive, $value, $config); $ret .= $this->obj->render($ns, $directive, $value, $name, $config);
return $ret; return $ret;
} }
} }
@ -150,7 +162,7 @@ class HTMLPurifier_Printer_ConfigForm_NullDecorator extends HTMLPurifier_Printer
* Swiss-army knife configuration form field printer * Swiss-army knife configuration form field printer
*/ */
class HTMLPurifier_Printer_ConfigForm_default extends HTMLPurifier_Printer { class HTMLPurifier_Printer_ConfigForm_default extends HTMLPurifier_Printer {
function render($ns, $directive, $value, $config) { function render($ns, $directive, $value, $name, $config) {
// this should probably be split up a little // this should probably be split up a little
$ret = ''; $ret = '';
$def = $config->def->info[$ns][$directive]; $def = $config->def->info[$ns][$directive];
@ -182,8 +194,8 @@ class HTMLPurifier_Printer_ConfigForm_default extends HTMLPurifier_Printer {
} }
$attr = array( $attr = array(
'type' => 'text', 'type' => 'text',
'name' => "$ns.$directive", 'name' => "$name"."[$ns.$directive]",
'id' => "$ns.$directive" 'id' => "$name:$ns.$directive"
); );
if ($value === null) $attr['disabled'] = 'disabled'; if ($value === null) $attr['disabled'] = 'disabled';
if (is_array($def->allowed)) { if (is_array($def->allowed)) {
@ -206,34 +218,34 @@ class HTMLPurifier_Printer_ConfigForm_default extends HTMLPurifier_Printer {
* Bool form field printer * Bool form field printer
*/ */
class HTMLPurifier_Printer_ConfigForm_bool extends HTMLPurifier_Printer { class HTMLPurifier_Printer_ConfigForm_bool extends HTMLPurifier_Printer {
function render($ns, $directive, $value, $config) { function render($ns, $directive, $value, $name, $config) {
$ret = ''; $ret = '';
$ret .= $this->start('div', array('id' => "$ns.$directive")); $ret .= $this->start('div', array('id' => "$name:$ns.$directive"));
$ret .= $this->start('label', array('for' => "Yes_$ns.$directive")); $ret .= $this->start('label', array('for' => "$name:Yes_$ns.$directive"));
$ret .= $this->element('span', "$ns.$directive:", array('class' => 'verbose')); $ret .= $this->element('span', "$ns.$directive:", array('class' => 'verbose'));
$ret .= $this->text(' Yes'); $ret .= $this->text(' Yes');
$ret .= $this->end('label'); $ret .= $this->end('label');
$attr = array( $attr = array(
'type' => 'radio', 'type' => 'radio',
'name' => "Yes_$ns.$directive", 'name' => "$name"."[$ns.$directive]",
'id' => "Yes_$ns.$directive", 'id' => "$name:Yes_$ns.$directive",
'value' => '1' 'value' => '1'
); );
if ($value) $attr['checked'] = 'checked'; if ($value) $attr['checked'] = 'checked';
$ret .= $this->elementEmpty('input', $attr); $ret .= $this->elementEmpty('input', $attr);
$ret .= $this->start('label', array('for' => "No_$ns.$directive")); $ret .= $this->start('label', array('for' => "$name:No_$ns.$directive"));
$ret .= $this->element('span', "$ns.$directive:", array('class' => 'verbose')); $ret .= $this->element('span', "$ns.$directive:", array('class' => 'verbose'));
$ret .= $this->text(' No'); $ret .= $this->text(' No');
$ret .= $this->end('label'); $ret .= $this->end('label');
$attr = array( $attr = array(
'type' => 'radio', 'type' => 'radio',
'name' => "No_$ns.$directive", 'name' => "$name"."[$ns.$directive]",
'id' => "No_$ns.$directive", 'id' => "$name:No_$ns.$directive",
'value' => '0' 'value' => '0'
); );
if (!$value) $attr['checked'] = 'checked'; if (!$value) $attr['checked'] = 'checked';

View File

@ -62,8 +62,8 @@ require_once 'HTMLPurifier/Printer/ConfigForm.php';
require_once 'testSchema.php'; require_once 'testSchema.php';
// cleanup ( this should be rolled into Config ) // cleanup ( this should be rolled into Config )
$config = HTMLPurifier_Config::loadArrayFromForm($_GET); $config = HTMLPurifier_Config::loadArrayFromForm($_GET, 'config');
$printer = new HTMLPurifier_Printer_ConfigForm('?doc'); $printer = new HTMLPurifier_Printer_ConfigForm('config', '?doc#%s');
echo $printer->render($config); echo $printer->render($config);
?> ?>

View File

@ -6,7 +6,7 @@ require_once 'HTMLPurifier/Printer/HTMLDefinition.php';
require_once 'HTMLPurifier/Printer/CSSDefinition.php'; require_once 'HTMLPurifier/Printer/CSSDefinition.php';
require_once 'HTMLPurifier/Printer/ConfigForm.php'; require_once 'HTMLPurifier/Printer/ConfigForm.php';
$config = HTMLPurifier_Config::loadArrayFromForm($_GET); $config = HTMLPurifier_Config::loadArrayFromForm($_GET, 'config');
// you can do custom configuration! // you can do custom configuration!
if (file_exists('printDefinition.settings.php')) { if (file_exists('printDefinition.settings.php')) {
@ -27,6 +27,11 @@ $html_definition->manager->addModule($module);
$printer_html_definition = new HTMLPurifier_Printer_HTMLDefinition(); $printer_html_definition = new HTMLPurifier_Printer_HTMLDefinition();
$printer_css_definition = new HTMLPurifier_Printer_CSSDefinition(); $printer_css_definition = new HTMLPurifier_Printer_CSSDefinition();
$printer_config_form = new HTMLPurifier_Printer_ConfigForm(
'config',
'http://htmlpurifier.org/live/configdoc/plain.html#%s'
);
echo '<?xml version="1.0" encoding="UTF-8" ?>'; echo '<?xml version="1.0" encoding="UTF-8" ?>';
?> ?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
@ -69,8 +74,7 @@ transformation into a real array list or a lookup table).</p>
<form method="get" action="" name="hp-configform"> <form method="get" action="" name="hp-configform">
<?php <?php
$printer = new HTMLPurifier_Printer_ConfigForm('http://htmlpurifier.org/live/configdoc/plain.html'); echo $printer_config_form->render($config, 'HTML');
echo $printer->render($config, 'HTML');
?> ?>
<p>* Some configuration directives make a distinction between an empty <p>* Some configuration directives make a distinction between an empty
variable and a null variable. A whitelist, for example, will take an variable and a null variable. A whitelist, for example, will take an