mirror of
https://github.com/ezyang/htmlpurifier.git
synced 2025-01-05 06:01:52 +00:00
Migrate strategies to separate classes complete.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@119 48356398-32a2-884e-a903-53898d9a118a
This commit is contained in:
parent
f75e8dab8c
commit
619d5d9bc1
8
TODO.txt
8
TODO.txt
@ -1,11 +1,13 @@
|
|||||||
TODO
|
Todo List
|
||||||
|
|
||||||
Primary:
|
Primary:
|
||||||
- Finish attributes fixing
|
- Implement attribute validation
|
||||||
|
- Implement HTMLPurifier
|
||||||
|
|
||||||
Secondary:
|
Secondary:
|
||||||
- Migrate all unit tests to use the lexer and generator
|
- Migrate all unit tests to use the lexer and generator
|
||||||
|
|
||||||
Code issues:
|
Code issues:
|
||||||
- (In Progress) Factor PureHTMLDefinition into a set of strategies
|
- Rename AbstractTest to Harness
|
||||||
|
- Reorganize Strategy hierarchy to minimize duplication
|
||||||
- (?) Create a TokenFactory to prevent really long lines
|
- (?) Create a TokenFactory to prevent really long lines
|
@ -8,10 +8,11 @@
|
|||||||
* is safe for output onto webpages. It achieves this by:
|
* is safe for output onto webpages. It achieves this by:
|
||||||
*
|
*
|
||||||
* -# Lexing (parsing into tokens) the document,
|
* -# Lexing (parsing into tokens) the document,
|
||||||
|
* -# Executing various strategies on the tokens:
|
||||||
* -# Removing all elements not in the whitelist,
|
* -# Removing all elements not in the whitelist,
|
||||||
* -# Making the tokens well-formed,
|
* -# Making the tokens well-formed,
|
||||||
* -# Fixing the nesting of the nodes,
|
* -# Fixing the nesting of the nodes, and
|
||||||
* -# Validating attributes of the nodes, and
|
* -# Validating attributes of the nodes; and
|
||||||
* -# Generating HTML from the purified tokens.
|
* -# Generating HTML from the purified tokens.
|
||||||
*
|
*
|
||||||
* See /docs/spec.txt for more details.
|
* See /docs/spec.txt for more details.
|
||||||
@ -31,24 +32,15 @@ require_once 'HTMLPurifier/Generator.php';
|
|||||||
class HTMLPurifier
|
class HTMLPurifier
|
||||||
{
|
{
|
||||||
|
|
||||||
var $lexer; /*!< @brief Instance of HTMLPurifier_Lexer concrete
|
|
||||||
implementation. */
|
|
||||||
var $definition; /*!< @brief Instance of HTMLPurifier_Definition. */
|
|
||||||
var $generator; /*!< @brief Instance of HTMLPurifier_Generator. */
|
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Initializes the purifier.
|
* Initializes the purifier.
|
||||||
*
|
*
|
||||||
* The constructor instantiates all necessary sub-objects to do the job,
|
* The constructor instantiates all necessary sub-objects to do the job,
|
||||||
* because creating some of them (esp. HTMLPurifier_Definition) can be
|
* because creating some of them (esp. HTMLPurifier_Definition) can be
|
||||||
* expensive.
|
* expensive.
|
||||||
*
|
|
||||||
* @todo Accept Policy object to define configuration.
|
|
||||||
*/
|
*/
|
||||||
function HTMLPurifier() {
|
function HTMLPurifier() {
|
||||||
$this->lexer = new HTMLPurifier_Lexer::create();
|
// unimplemented
|
||||||
$this->definition = new HTMLPurifier_Definition();
|
|
||||||
$this->generator = new HTMLPurifier_Generator();
|
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
@ -58,9 +50,7 @@ class HTMLPurifier
|
|||||||
* @return Purified HTML
|
* @return Purified HTML
|
||||||
*/
|
*/
|
||||||
function purify($html) {
|
function purify($html) {
|
||||||
$tokens = $this->lexer->tokenizeHTML($html);
|
// unimplemented
|
||||||
$tokens = $this->definition->purifyTokens($tokens);
|
|
||||||
return $this->generator->generateFromTokens($tokens);
|
|
||||||
}
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
@ -33,8 +33,17 @@ class HTMLPurifier_Definition
|
|||||||
'ul' => true
|
'ul' => true
|
||||||
);
|
);
|
||||||
|
|
||||||
|
function instance() {
|
||||||
|
static $instance = null;
|
||||||
|
if (!$instance) {
|
||||||
|
$instance = new HTMLPurifier_Definition();
|
||||||
|
}
|
||||||
|
return $instance;
|
||||||
|
}
|
||||||
|
|
||||||
function HTMLPurifier_Definition() {
|
function HTMLPurifier_Definition() {
|
||||||
$this->generator = new HTMLPurifier_Generator();
|
$this->generator = new HTMLPurifier_Generator();
|
||||||
|
$this->loadData();
|
||||||
}
|
}
|
||||||
|
|
||||||
function loadData() {
|
function loadData() {
|
||||||
@ -154,279 +163,6 @@ class HTMLPurifier_Definition
|
|||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
function purifyTokens($tokens) {
|
|
||||||
if (empty($this->info)) $this->loadData();
|
|
||||||
$tokens = $this->removeForeignElements($tokens);
|
|
||||||
$tokens = $this->makeWellFormed($tokens);
|
|
||||||
$tokens = $this->fixNesting($tokens);
|
|
||||||
$tokens = $this->validateAttributes($tokens);
|
|
||||||
return $tokens;
|
|
||||||
}
|
|
||||||
|
|
||||||
function removeForeignElements($tokens) {
|
|
||||||
if (empty($this->info)) $this->loadData();
|
|
||||||
$result = array();
|
|
||||||
foreach($tokens as $token) {
|
|
||||||
if (!empty( $token->is_tag )) {
|
|
||||||
if (!isset($this->info[$token->name])) {
|
|
||||||
// invalid tag, generate HTML and insert in
|
|
||||||
$token = new HTMLPurifier_Token_Text(
|
|
||||||
$this->generator->generateFromToken($token)
|
|
||||||
);
|
|
||||||
}
|
|
||||||
} elseif ($token->type == 'comment') {
|
|
||||||
// strip comments
|
|
||||||
continue;
|
|
||||||
} elseif ($token->type == 'text') {
|
|
||||||
} else {
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
$result[] = $token;
|
|
||||||
}
|
|
||||||
return $result;
|
|
||||||
}
|
|
||||||
|
|
||||||
function makeWellFormed($tokens) {
|
|
||||||
if (empty($this->info)) $this->loadData();
|
|
||||||
$result = array();
|
|
||||||
$current_nesting = array();
|
|
||||||
foreach ($tokens as $token) {
|
|
||||||
if (empty( $token->is_tag )) {
|
|
||||||
$result[] = $token;
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
$info = $this->info[$token->name]; // assumption but valid
|
|
||||||
|
|
||||||
// test if it claims to be a start tag but is empty
|
|
||||||
if ($info->child_def->type == 'empty' &&
|
|
||||||
$token->type == 'start' ) {
|
|
||||||
|
|
||||||
$result[] = new HTMLPurifier_Token_Empty($token->name,
|
|
||||||
$token->attributes);
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// test if it claims to be empty but really is a start tag
|
|
||||||
if ($info->child_def->type != 'empty' &&
|
|
||||||
$token->type == 'empty' ) {
|
|
||||||
|
|
||||||
$result[] = new HTMLPurifier_Token_Start($token->name,
|
|
||||||
$token->attributes);
|
|
||||||
$result[] = new HTMLPurifier_Token_End($token->name);
|
|
||||||
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// automatically insert empty tags
|
|
||||||
if ($token->type == 'empty') {
|
|
||||||
$result[] = $token;
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// we give start tags precedence, so automatically accept unless...
|
|
||||||
// it's one of those special cases
|
|
||||||
if ($token->type == 'start') {
|
|
||||||
|
|
||||||
// if there's a parent, check for special case
|
|
||||||
if (!empty($current_nesting)) {
|
|
||||||
$current_parent = array_pop($current_nesting);
|
|
||||||
|
|
||||||
// check if we're closing a P tag
|
|
||||||
if ($current_parent->name == 'p' &&
|
|
||||||
isset($this->info_closes_p[$token->name])
|
|
||||||
) {
|
|
||||||
$result[] = new HTMLPurifier_Token_End('p');
|
|
||||||
$result[] = $token;
|
|
||||||
$current_nesting[] = $token;
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// check if we're closing a LI tag
|
|
||||||
if ($current_parent->name == 'li' &&
|
|
||||||
$token->name == 'li'
|
|
||||||
) {
|
|
||||||
$result[] = new HTMLPurifier_Token_End('li');
|
|
||||||
$result[] = $token;
|
|
||||||
$current_nesting[] = $token;
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// this is more TIDY stuff
|
|
||||||
// we should also get some TABLE related code
|
|
||||||
// mismatched h#
|
|
||||||
|
|
||||||
$current_nesting[] = $current_parent; // undo the pop
|
|
||||||
}
|
|
||||||
|
|
||||||
$result[] = $token;
|
|
||||||
$current_nesting[] = $token;
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// sanity check
|
|
||||||
if ($token->type != 'end') continue;
|
|
||||||
|
|
||||||
// okay, we're dealing with a closing tag
|
|
||||||
|
|
||||||
// make sure that we have something open
|
|
||||||
if (empty($current_nesting)) {
|
|
||||||
$result[] = new HTMLPurifier_Token_Text(
|
|
||||||
$this->generator->generateFromToken($token)
|
|
||||||
);
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// first, check for the simplest case: everything closes neatly
|
|
||||||
|
|
||||||
// current_nesting is modified
|
|
||||||
$current_parent = array_pop($current_nesting);
|
|
||||||
if ($current_parent->name == $token->name) {
|
|
||||||
$result[] = $token;
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// undo the array_pop
|
|
||||||
$current_nesting[] = $current_parent;
|
|
||||||
|
|
||||||
// okay, so we're trying to close the wrong tag
|
|
||||||
|
|
||||||
// scroll back the entire nest, trying to find our tag
|
|
||||||
// feature could be to specify how far you'd like to go
|
|
||||||
$size = count($current_nesting);
|
|
||||||
// -2 because -1 is the last element, but we already checked that
|
|
||||||
$skipped_tags = false;
|
|
||||||
for ($i = $size - 2; $i >= 0; $i--) {
|
|
||||||
if ($current_nesting[$i]->name == $token->name) {
|
|
||||||
// current nesting is modified
|
|
||||||
$skipped_tags = array_splice($current_nesting, $i);
|
|
||||||
break;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
// we still didn't find the tag, so translate to text
|
|
||||||
if ($skipped_tags === false) {
|
|
||||||
$result[] = new HTMLPurifier_Token_Text(
|
|
||||||
$this->generator->generateFromToken($token)
|
|
||||||
);
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
|
|
||||||
// okay, we found it, close all the skipped tags
|
|
||||||
// note that skipped tags contains the element we need closed
|
|
||||||
$size = count($skipped_tags);
|
|
||||||
for ($i = $size - 1; $i >= 0; $i--) {
|
|
||||||
$result[] = new HTMLPurifier_Token_End($skipped_tags[$i]->name);
|
|
||||||
}
|
|
||||||
|
|
||||||
// done!
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
// we're at the end now, fix all still unclosed tags
|
|
||||||
|
|
||||||
if (!empty($current_nesting)) {
|
|
||||||
$size = count($current_nesting);
|
|
||||||
for ($i = $size - 1; $i >= 0; $i--) {
|
|
||||||
$result[] =
|
|
||||||
new HTMLPurifier_Token_End($current_nesting[$i]->name);
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
return $result;
|
|
||||||
}
|
|
||||||
|
|
||||||
function fixNesting($tokens) {
|
|
||||||
if (empty($this->info)) $this->loadData();
|
|
||||||
|
|
||||||
// insert implicit "parent" node, will be removed at end
|
|
||||||
array_unshift($tokens, new HTMLPurifier_Token_Start('div'));
|
|
||||||
$tokens[] = new HTMLPurifier_Token_End('div');
|
|
||||||
|
|
||||||
for ($i = 0, $size = count($tokens) ; $i < $size; ) {
|
|
||||||
|
|
||||||
$child_tokens = array();
|
|
||||||
|
|
||||||
// scroll to the end of this node, and report number
|
|
||||||
for ($j = $i, $depth = 0; ; $j++) {
|
|
||||||
if ($tokens[$j]->type == 'start') {
|
|
||||||
$depth++;
|
|
||||||
// skip token assignment on first iteration
|
|
||||||
if ($depth == 1) continue;
|
|
||||||
} elseif ($tokens[$j]->type == 'end') {
|
|
||||||
$depth--;
|
|
||||||
// skip token assignment on last iteration
|
|
||||||
if ($depth == 0) break;
|
|
||||||
}
|
|
||||||
$child_tokens[] = $tokens[$j];
|
|
||||||
}
|
|
||||||
|
|
||||||
// $i is index of start token
|
|
||||||
// $j is index of end token
|
|
||||||
|
|
||||||
// have DTD child def validate children
|
|
||||||
$element_def = $this->info[$tokens[$i]->name];
|
|
||||||
$result = $element_def->child_def->validateChildren($child_tokens);
|
|
||||||
|
|
||||||
// process result
|
|
||||||
if ($result === true) {
|
|
||||||
|
|
||||||
// leave the nodes as is
|
|
||||||
|
|
||||||
} elseif($result === false) {
|
|
||||||
|
|
||||||
// WARNING WARNING WARNING!!!
|
|
||||||
// While for the original DTD, there will never be
|
|
||||||
// cascading removal, more complex ones may have such
|
|
||||||
// a problem.
|
|
||||||
|
|
||||||
// If you modify the info array such that an element
|
|
||||||
// that requires children may contain a child that requires
|
|
||||||
// children, you need to also scroll back and re-check that
|
|
||||||
// elements parent node
|
|
||||||
|
|
||||||
$length = $j - $i + 1;
|
|
||||||
|
|
||||||
// remove entire node
|
|
||||||
array_splice($tokens, $i, $length);
|
|
||||||
|
|
||||||
// change size
|
|
||||||
$size -= $length;
|
|
||||||
|
|
||||||
// ensure that we scroll to the next node
|
|
||||||
$i--;
|
|
||||||
|
|
||||||
} else {
|
|
||||||
|
|
||||||
$length = $j - $i - 1;
|
|
||||||
|
|
||||||
// replace node with $result
|
|
||||||
array_splice($tokens, $i + 1, $length, $result);
|
|
||||||
|
|
||||||
// change size
|
|
||||||
$size -= $length;
|
|
||||||
$size += count($result);
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
// scroll to next node
|
|
||||||
$i++;
|
|
||||||
while ($i < $size and $tokens[$i]->type != 'start') $i++;
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
// remove implicit divs
|
|
||||||
array_shift($tokens);
|
|
||||||
array_pop($tokens);
|
|
||||||
|
|
||||||
return $tokens;
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
function validateAttributes($tokens) {
|
|
||||||
if (empty($this->info)) $this->loadData();
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
class HTMLPurifier_ElementDef
|
class HTMLPurifier_ElementDef
|
||||||
|
@ -8,7 +8,7 @@ class HTMLPurifier_Strategy_FixNesting extends HTMLPurifier_Strategy
|
|||||||
|
|
||||||
var $definition;
|
var $definition;
|
||||||
|
|
||||||
function HTMLPurifier_Definition() {
|
function HTMLPurifier_Strategy_FixNesting() {
|
||||||
$this->definition = HTMLPurifier_Definition::instance();
|
$this->definition = HTMLPurifier_Definition::instance();
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -10,7 +10,7 @@ class HTMLPurifier_Strategy_RemoveForeignElements extends HTMLPurifier_Strategy
|
|||||||
var $generator;
|
var $generator;
|
||||||
var $definition;
|
var $definition;
|
||||||
|
|
||||||
function HTMLPurifier_Definition() {
|
function HTMLPurifier_Strategy_RemoveForeignElements() {
|
||||||
$this->generator = new HTMLPurifier_Generator();
|
$this->generator = new HTMLPurifier_Generator();
|
||||||
$this->definition = HTMLPurifier_Definition::instance();
|
$this->definition = HTMLPurifier_Definition::instance();
|
||||||
}
|
}
|
||||||
|
@ -1,143 +0,0 @@
|
|||||||
<?php
|
|
||||||
|
|
||||||
require_once 'HTMLPurifier/Definition.php';
|
|
||||||
require_once 'HTMLPurifier/Lexer/DirectLex.php';
|
|
||||||
|
|
||||||
class HTMLPurifier_DefinitionTest extends UnitTestCase
|
|
||||||
{
|
|
||||||
|
|
||||||
var $def, $lex, $gen;
|
|
||||||
|
|
||||||
function HTMLPurifier_DefinitionTest() {
|
|
||||||
$this->UnitTestCase();
|
|
||||||
$this->def = new HTMLPurifier_Definition();
|
|
||||||
$this->def->loadData();
|
|
||||||
|
|
||||||
// we can't use the DOM lexer since it does too much stuff
|
|
||||||
// automatically, however, we should be able to use it
|
|
||||||
// interchangeably if we wanted to...
|
|
||||||
|
|
||||||
if (true) {
|
|
||||||
$this->lex = new HTMLPurifier_Lexer_DirectLex();
|
|
||||||
} else {
|
|
||||||
require_once 'HTMLPurifier/Lexer/DOMLex.php';
|
|
||||||
$this->lex = new HTMLPurifier_Lexer_DOMLex();
|
|
||||||
}
|
|
||||||
|
|
||||||
$this->gen = new HTMLPurifier_Generator();
|
|
||||||
}
|
|
||||||
|
|
||||||
function test_removeForeignElements() {
|
|
||||||
|
|
||||||
$inputs = array();
|
|
||||||
$expect = array();
|
|
||||||
|
|
||||||
$inputs[0] = '';
|
|
||||||
$expect[0] = $inputs[0];
|
|
||||||
|
|
||||||
$inputs[1] = 'This is <b>bold text</b>.';
|
|
||||||
$expect[1] = $inputs[1];
|
|
||||||
|
|
||||||
// [INVALID]
|
|
||||||
$inputs[2] = '<asdf>Bling</asdf><d href="bang">Bong</d><foobar />';
|
|
||||||
$expect[2] = htmlspecialchars($inputs[2]);
|
|
||||||
|
|
||||||
foreach ($inputs as $i => $input) {
|
|
||||||
$tokens = $this->lex->tokenizeHTML($input);
|
|
||||||
$result_tokens = $this->def->removeForeignElements($tokens);
|
|
||||||
$result = $this->gen->generateFromTokens($result_tokens);
|
|
||||||
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
|
||||||
paintIf($result, $result != $expect[$i]);
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
function test_makeWellFormed() {
|
|
||||||
|
|
||||||
$inputs = array();
|
|
||||||
$expect = array();
|
|
||||||
|
|
||||||
$inputs[0] = '';
|
|
||||||
$expect[0] = $inputs[0];
|
|
||||||
|
|
||||||
$inputs[1] = 'This is <b>bold text</b>.';
|
|
||||||
$expect[1] = $inputs[1];
|
|
||||||
|
|
||||||
$inputs[2] = '<b>Unclosed tag, gasp!';
|
|
||||||
$expect[2] = '<b>Unclosed tag, gasp!</b>';
|
|
||||||
|
|
||||||
$inputs[3] = '<b><i>Bold and italic?</b>';
|
|
||||||
$expect[3] = '<b><i>Bold and italic?</i></b>';
|
|
||||||
|
|
||||||
// CHANGE THIS BEHAVIOR!
|
|
||||||
$inputs[4] = 'Unused end tags... recycle!</b>';
|
|
||||||
$expect[4] = 'Unused end tags... recycle!</b>';
|
|
||||||
|
|
||||||
$inputs[5] = '<br style="clear:both;">';
|
|
||||||
$expect[5] = '<br style="clear:both;" />';
|
|
||||||
|
|
||||||
$inputs[6] = '<div style="clear:both;" />';
|
|
||||||
$expect[6] = '<div style="clear:both;"></div>';
|
|
||||||
|
|
||||||
// test automatic paragraph closing
|
|
||||||
|
|
||||||
$inputs[7] = '<p>Paragraph 1<p>Paragraph 2';
|
|
||||||
$expect[7] = '<p>Paragraph 1</p><p>Paragraph 2</p>';
|
|
||||||
|
|
||||||
$inputs[8] = '<div><p>Paragraphs<p>In<p>A<p>Div</div>';
|
|
||||||
$expect[8] = '<div><p>Paragraphs</p><p>In</p><p>A</p><p>Div</p></div>';
|
|
||||||
|
|
||||||
// automatic list closing
|
|
||||||
|
|
||||||
$inputs[9] = '<ol><li>Item 1<li>Item 2</ol>';
|
|
||||||
$expect[9] = '<ol><li>Item 1</li><li>Item 2</li></ol>';
|
|
||||||
|
|
||||||
foreach ($inputs as $i => $input) {
|
|
||||||
$tokens = $this->lex->tokenizeHTML($input);
|
|
||||||
$result_tokens = $this->def->makeWellFormed($tokens);
|
|
||||||
$result = $this->gen->generateFromTokens($result_tokens);
|
|
||||||
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
|
||||||
paintIf($result, $result != $expect[$i]);
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
function test_fixNesting() {
|
|
||||||
$inputs = array();
|
|
||||||
$expect = array();
|
|
||||||
|
|
||||||
// next id = 4
|
|
||||||
|
|
||||||
// legal inline nesting
|
|
||||||
$inputs[0] = '<b>Bold text</b>';
|
|
||||||
$expect[0] = $inputs[0];
|
|
||||||
|
|
||||||
// legal inline and block
|
|
||||||
// as the parent element is considered FLOW
|
|
||||||
$inputs[1] = '<a href="about:blank">Blank</a><div>Block</div>';
|
|
||||||
$expect[1] = $inputs[1];
|
|
||||||
|
|
||||||
// illegal block in inline, element -> text
|
|
||||||
$inputs[2] = '<b><div>Illegal div.</div></b>';
|
|
||||||
$expect[2] = '<b><div>Illegal div.</div></b>';
|
|
||||||
|
|
||||||
// test of empty set that's required, resulting in removal of node
|
|
||||||
$inputs[3] = '<ul></ul>';
|
|
||||||
$expect[3] = '';
|
|
||||||
|
|
||||||
// test illegal text which gets removed
|
|
||||||
$inputs[4] = '<ul>Illegal text<li>Legal item</li></ul>';
|
|
||||||
$expect[4] = '<ul><li>Legal item</li></ul>';
|
|
||||||
|
|
||||||
foreach ($inputs as $i => $input) {
|
|
||||||
$tokens = $this->lex->tokenizeHTML($input);
|
|
||||||
$result_tokens = $this->def->fixNesting($tokens);
|
|
||||||
$result = $this->gen->generateFromTokens($result_tokens);
|
|
||||||
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
|
||||||
paintIf($result, $result != $expect[$i]);
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
?>
|
|
@ -1,5 +1,6 @@
|
|||||||
<?php
|
<?php
|
||||||
|
|
||||||
|
require_once 'HTMLPurifier/StrategyAbstractTest.php';
|
||||||
require_once 'HTMLPurifier/Strategy/RemoveForeignElements.php';
|
require_once 'HTMLPurifier/Strategy/RemoveForeignElements.php';
|
||||||
|
|
||||||
class HTMLPurifier_Strategy_RemoveForeignElementsTest
|
class HTMLPurifier_Strategy_RemoveForeignElementsTest
|
||||||
@ -25,7 +26,7 @@ class HTMLPurifier_Strategy_RemoveForeignElementsTest
|
|||||||
|
|
||||||
foreach ($inputs as $i => $input) {
|
foreach ($inputs as $i => $input) {
|
||||||
$tokens = $this->lex->tokenizeHTML($input);
|
$tokens = $this->lex->tokenizeHTML($input);
|
||||||
$result_tokens = $this->strategy->execute($tokens);
|
$result_tokens = $strategy->execute($tokens);
|
||||||
$result = $this->gen->generateFromTokens($result_tokens);
|
$result = $this->gen->generateFromTokens($result_tokens);
|
||||||
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
||||||
paintIf($result, $result != $expect[$i]);
|
paintIf($result, $result != $expect[$i]);
|
||||||
|
@ -3,15 +3,13 @@
|
|||||||
require_once 'HTMLPurifier/Definition.php';
|
require_once 'HTMLPurifier/Definition.php';
|
||||||
require_once 'HTMLPurifier/Lexer/DirectLex.php';
|
require_once 'HTMLPurifier/Lexer/DirectLex.php';
|
||||||
|
|
||||||
class HTMLPurifier_DefinitionTest extends UnitTestCase
|
class HTMLPurifier_StrategyAbstractTest extends UnitTestCase
|
||||||
{
|
{
|
||||||
|
|
||||||
var $def, $lex, $gen;
|
var $lex, $gen;
|
||||||
|
|
||||||
function HTMLPurifier_DefinitionTest() {
|
function HTMLPurifier_StrategyAbstractTest() {
|
||||||
$this->UnitTestCase();
|
$this->UnitTestCase();
|
||||||
$this->def = new HTMLPurifier_Definition();
|
|
||||||
$this->def->loadData();
|
|
||||||
|
|
||||||
// we can't use the DOM lexer since it does too much stuff
|
// we can't use the DOM lexer since it does too much stuff
|
||||||
// automatically, however, we should be able to use it
|
// automatically, however, we should be able to use it
|
||||||
@ -27,117 +25,6 @@ class HTMLPurifier_DefinitionTest extends UnitTestCase
|
|||||||
$this->gen = new HTMLPurifier_Generator();
|
$this->gen = new HTMLPurifier_Generator();
|
||||||
}
|
}
|
||||||
|
|
||||||
function test_removeForeignElements() {
|
|
||||||
|
|
||||||
$inputs = array();
|
|
||||||
$expect = array();
|
|
||||||
|
|
||||||
$inputs[0] = '';
|
|
||||||
$expect[0] = $inputs[0];
|
|
||||||
|
|
||||||
$inputs[1] = 'This is <b>bold text</b>.';
|
|
||||||
$expect[1] = $inputs[1];
|
|
||||||
|
|
||||||
// [INVALID]
|
|
||||||
$inputs[2] = '<asdf>Bling</asdf><d href="bang">Bong</d><foobar />';
|
|
||||||
$expect[2] = htmlspecialchars($inputs[2]);
|
|
||||||
|
|
||||||
foreach ($inputs as $i => $input) {
|
|
||||||
$tokens = $this->lex->tokenizeHTML($input);
|
|
||||||
$result_tokens = $this->def->removeForeignElements($tokens);
|
|
||||||
$result = $this->gen->generateFromTokens($result_tokens);
|
|
||||||
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
|
||||||
paintIf($result, $result != $expect[$i]);
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
function test_makeWellFormed() {
|
|
||||||
|
|
||||||
$inputs = array();
|
|
||||||
$expect = array();
|
|
||||||
|
|
||||||
$inputs[0] = '';
|
|
||||||
$expect[0] = $inputs[0];
|
|
||||||
|
|
||||||
$inputs[1] = 'This is <b>bold text</b>.';
|
|
||||||
$expect[1] = $inputs[1];
|
|
||||||
|
|
||||||
$inputs[2] = '<b>Unclosed tag, gasp!';
|
|
||||||
$expect[2] = '<b>Unclosed tag, gasp!</b>';
|
|
||||||
|
|
||||||
$inputs[3] = '<b><i>Bold and italic?</b>';
|
|
||||||
$expect[3] = '<b><i>Bold and italic?</i></b>';
|
|
||||||
|
|
||||||
// CHANGE THIS BEHAVIOR!
|
|
||||||
$inputs[4] = 'Unused end tags... recycle!</b>';
|
|
||||||
$expect[4] = 'Unused end tags... recycle!</b>';
|
|
||||||
|
|
||||||
$inputs[5] = '<br style="clear:both;">';
|
|
||||||
$expect[5] = '<br style="clear:both;" />';
|
|
||||||
|
|
||||||
$inputs[6] = '<div style="clear:both;" />';
|
|
||||||
$expect[6] = '<div style="clear:both;"></div>';
|
|
||||||
|
|
||||||
// test automatic paragraph closing
|
|
||||||
|
|
||||||
$inputs[7] = '<p>Paragraph 1<p>Paragraph 2';
|
|
||||||
$expect[7] = '<p>Paragraph 1</p><p>Paragraph 2</p>';
|
|
||||||
|
|
||||||
$inputs[8] = '<div><p>Paragraphs<p>In<p>A<p>Div</div>';
|
|
||||||
$expect[8] = '<div><p>Paragraphs</p><p>In</p><p>A</p><p>Div</p></div>';
|
|
||||||
|
|
||||||
// automatic list closing
|
|
||||||
|
|
||||||
$inputs[9] = '<ol><li>Item 1<li>Item 2</ol>';
|
|
||||||
$expect[9] = '<ol><li>Item 1</li><li>Item 2</li></ol>';
|
|
||||||
|
|
||||||
foreach ($inputs as $i => $input) {
|
|
||||||
$tokens = $this->lex->tokenizeHTML($input);
|
|
||||||
$result_tokens = $this->def->makeWellFormed($tokens);
|
|
||||||
$result = $this->gen->generateFromTokens($result_tokens);
|
|
||||||
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
|
||||||
paintIf($result, $result != $expect[$i]);
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
function test_fixNesting() {
|
|
||||||
$inputs = array();
|
|
||||||
$expect = array();
|
|
||||||
|
|
||||||
// next id = 4
|
|
||||||
|
|
||||||
// legal inline nesting
|
|
||||||
$inputs[0] = '<b>Bold text</b>';
|
|
||||||
$expect[0] = $inputs[0];
|
|
||||||
|
|
||||||
// legal inline and block
|
|
||||||
// as the parent element is considered FLOW
|
|
||||||
$inputs[1] = '<a href="about:blank">Blank</a><div>Block</div>';
|
|
||||||
$expect[1] = $inputs[1];
|
|
||||||
|
|
||||||
// illegal block in inline, element -> text
|
|
||||||
$inputs[2] = '<b><div>Illegal div.</div></b>';
|
|
||||||
$expect[2] = '<b><div>Illegal div.</div></b>';
|
|
||||||
|
|
||||||
// test of empty set that's required, resulting in removal of node
|
|
||||||
$inputs[3] = '<ul></ul>';
|
|
||||||
$expect[3] = '';
|
|
||||||
|
|
||||||
// test illegal text which gets removed
|
|
||||||
$inputs[4] = '<ul>Illegal text<li>Legal item</li></ul>';
|
|
||||||
$expect[4] = '<ul><li>Legal item</li></ul>';
|
|
||||||
|
|
||||||
foreach ($inputs as $i => $input) {
|
|
||||||
$tokens = $this->lex->tokenizeHTML($input);
|
|
||||||
$result_tokens = $this->def->fixNesting($tokens);
|
|
||||||
$result = $this->gen->generateFromTokens($result_tokens);
|
|
||||||
$this->assertEqual($expect[$i], $result, "Test $i: %s");
|
|
||||||
paintIf($result, $result != $expect[$i]);
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
?>
|
?>
|
@ -16,10 +16,12 @@ $test = new GroupTest('HTMLPurifier');
|
|||||||
$test->addTestFile('HTMLPurifier/LexerTest.php');
|
$test->addTestFile('HTMLPurifier/LexerTest.php');
|
||||||
$test->addTestFile('HTMLPurifier/Lexer/DirectLexTest.php');
|
$test->addTestFile('HTMLPurifier/Lexer/DirectLexTest.php');
|
||||||
//$test->addTestFile('TokenTest.php');
|
//$test->addTestFile('TokenTest.php');
|
||||||
$test->addTestFile('HTMLPurifier/DefinitionTest.php');
|
|
||||||
$test->addTestFile('HTMLPurifier/ChildDefTest.php');
|
$test->addTestFile('HTMLPurifier/ChildDefTest.php');
|
||||||
$test->addTestFile('HTMLPurifier/GeneratorTest.php');
|
$test->addTestFile('HTMLPurifier/GeneratorTest.php');
|
||||||
$test->addTestFile('HTMLPurifier/EntityLookupTest.php');
|
$test->addTestFile('HTMLPurifier/EntityLookupTest.php');
|
||||||
|
$test->addTestFile('HTMLPurifier/Strategy/RemoveForeignElementsTest.php');
|
||||||
|
$test->addTestFile('HTMLPurifier/Strategy/MakeWellFormedTest.php');
|
||||||
|
$test->addTestFile('HTMLPurifier/Strategy/FixNestingTest.php');
|
||||||
|
|
||||||
$test->run( new HtmlReporter() );
|
$test->run( new HtmlReporter() );
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user