diff --git a/NEWS b/NEWS index c8fbeed8..f17565fa 100644 --- a/NEWS +++ b/NEWS @@ -5,6 +5,8 @@ NEWS ( CHANGELOG and HISTORY ) HTMLPurifier - Fixed slight bug in DOMLex attribute parsing - Fixed rejection of case-insensitive configuration values when there is a set of allowed values. This manifested in %Core.Encoding. +- Fixed rejection of inline style declarations that had lots of extra + space in them. This manifested in TinyMCE. 1.0.0, released 2006-09-01 - Fixed broken numeric entity conversion diff --git a/library/HTMLPurifier/AttrDef/CSS.php b/library/HTMLPurifier/AttrDef/CSS.php index ce1b791c..1ba0e219 100644 --- a/library/HTMLPurifier/AttrDef/CSS.php +++ b/library/HTMLPurifier/AttrDef/CSS.php @@ -28,6 +28,8 @@ class HTMLPurifier_AttrDef_CSS extends HTMLPurifier_AttrDef if (!$declaration) continue; if (!strpos($declaration, ':')) continue; list($property, $value) = explode(':', $declaration, 2); + $property = trim($property); + $value = trim($value); if (!isset($definition->info[$property])) continue; // inefficient call, since the validator will do this again if (strtolower(trim($value)) !== 'inherit') { diff --git a/tests/HTMLPurifier/AttrDef/CSSTest.php b/tests/HTMLPurifier/AttrDef/CSSTest.php index ad4ce738..7afa2172 100644 --- a/tests/HTMLPurifier/AttrDef/CSSTest.php +++ b/tests/HTMLPurifier/AttrDef/CSSTest.php @@ -92,6 +92,10 @@ class HTMLPurifier_AttrDef_CSSTest extends HTMLPurifier_AttrDefHarness $this->assertDef('position:absolute;', false); $this->assertDef('background-image:url(javascript:alert\(\));', false); + // airy input + $this->assertDef(' font-weight : bold; color : #ff0000', + 'font-weight:bold;color:#ff0000;'); + } } diff --git a/tests/HTMLPurifier/EncoderTest.php b/tests/HTMLPurifier/EncoderTest.php index b0978fef..2ada77b2 100644 --- a/tests/HTMLPurifier/EncoderTest.php +++ b/tests/HTMLPurifier/EncoderTest.php @@ -14,8 +14,8 @@ class HTMLPurifier_EncoderTest extends UnitTestCase function assertCleanUTF8($string, $expect = null) { if ($expect === null) $expect = $string; - $this->assertIdentical($this->Encoder->cleanUTF8($string), $expect); - $this->assertIdentical($this->Encoder->cleanUTF8($string, true), $expect); + $this->assertIdentical($this->Encoder->cleanUTF8($string), $expect, 'iconv: %s'); + $this->assertIdentical($this->Encoder->cleanUTF8($string, true), $expect, 'PHP: %s'); } function test_cleanUTF8() { diff --git a/tests/HTMLPurifier/Test.php b/tests/HTMLPurifier/Test.php index a4860405..ccb7af43 100644 --- a/tests/HTMLPurifier/Test.php +++ b/tests/HTMLPurifier/Test.php @@ -8,7 +8,8 @@ class HTMLPurifier_Test extends UnitTestCase { var $purifier; - function assertPurification($input, $expect) { + function assertPurification($input, $expect = null) { + if ($expect === null) $expect = $input; $result = $this->purifier->purify($input); $this->assertIdentical($expect, $result); }