mirrors/htmlpurifier
0
0
Fork 0
mirror of https://github.com/ezyang/htmlpurifier.git synced 2025-01-06 22:41:54 +00:00
Code Releases Activity

Commit Graph

  • 69996acc9e [1.7.0] Add native support for required elements - Factored out large portion of ValidateAttributes to AttrValidator - Implemented ValidateAttributes armor - Fix clear cache bug - Implement armoring for ValidateAttributes Edward Z. Yang 2007-06-20 21:39:28 +0000
  • 8bbb73e47d [1.7.0] ChildDef_Custom's regex generation has been improved, removing several false positives Edward Z. Yang 2007-06-20 15:54:50 +0000
  • cf7a50163c Officially transition from 1.7 -> 2.0, mass substitution. Also, wrote WHATSNEW. We are in feature-freeze! Edward Z. Yang 2007-06-20 03:00:36 +0000
  • da2ea348fd [1.7.0] Change ->Revision member variable to a legit configuration directive. Start writing tutorial for customization. Edward Z. Yang 2007-06-20 02:43:43 +0000
  • ab3ebcba6d Update TODO. Edward Z. Yang 2007-06-19 22:26:57 +0000
  • d399abba50 [1.7.0] Bug resulting from tag transforms to non-allowed elements fixed Edward Z. Yang 2007-06-19 22:10:39 +0000
  • 0b0a505c30 [1.7.0] Implement addElement: the advanced API is complete! Edward Z. Yang 2007-06-19 01:55:31 +0000
  • 6aa3dfc116 [1.7.0] Implement addAttribute() of advanced API. Edward Z. Yang 2007-06-19 01:29:50 +0000
  • c3094275ef Fix PHP4 compatibility problems with substr_count Edward Z. Yang 2007-06-19 01:20:00 +0000
  • 220c150e0a [1.7.0] StrictBlockquote child definition refrains from wrapping whitespace in tags now. Edward Z. Yang 2007-06-18 19:53:46 +0000
  • 32d30a9181 Add note that functionality IS NOT released yet. This needs to be removed once 1.7/2.0 comes out. Edward Z. Yang 2007-06-18 19:26:29 +0000
  • 0e5491b20c [1.7.0] Wire in Language and ErrorCollector to main class, now, the only thing to do is actually implement the stuff Edward Z. Yang 2007-06-18 03:05:18 +0000
  • 7699efd593 Implement bare minimum extra functions for language implementation. Edward Z. Yang 2007-06-18 02:25:27 +0000
  • 4bf15de536 [1.7.0] Implement line number counting in DirectLex, in preparation for error reporting Edward Z. Yang 2007-06-18 02:01:01 +0000
  • 70bcccf54c Update docs for config. Edward Z. Yang 2007-06-18 00:40:15 +0000
  • bf6ce67fc1 [1.7.0] Prototype-declarations for Lexer removed in favor of configuration determination of Lexer implementations. Edward Z. Yang 2007-06-17 21:27:39 +0000
  • bd44105ca9 [1.7.0] DOMLex will not emit errors when a custom error handler that does not honor error_reporting is used Edward Z. Yang 2007-06-17 20:36:29 +0000
  • d1f43636e5 [1.7.0] DefinitionCache->flush() now requires configuration object. DefinitionCache_Serializer now will create directories for new types on the fly, and can accept custom directories to save serials into. Edward Z. Yang 2007-06-16 20:46:44 +0000
  • 9c7483166c [1.7.0] Add DefinitionID for HTML, to prevent caching conflicts with custom-edited definition objects. Also, more user friendly error messages from Config. Edward Z. Yang 2007-06-16 20:21:00 +0000
  • e840564228 [1.7.0] Contents between <script> tags are now completely removed if <script> is not allowed Edward Z. Yang 2007-06-16 19:31:45 +0000
  • 7d4b532d6b Update API. Edward Z. Yang 2007-06-12 03:03:28 +0000
  • 58f00105c8 Update txt docs. Edward Z. Yang 2007-06-09 14:53:21 +0000
  • 8d15d1ce13 Repair links to renamed documentation; fix typo in ref-html-modularization.txt Edward Z. Yang 2007-06-08 01:52:42 +0000
  • 9c60eeed04 Rename xhtml-1.1 to html-modularization and remove outdated segments. Edward Z. Yang 2007-06-02 18:59:58 +0000
  • 2e089477a5 Rename and rewrite content models docs. Edward Z. Yang 2007-06-02 18:51:50 +0000
  • b442d09ea6 [1.7.0] Update INSTALL and basic example to use the new APIs. Edward Z. Yang 2007-05-29 21:31:24 +0000
  • 12f73605a3 [1.7.0] Implement HTML.Allowed, a TinyMCE style whitelist format. Edward Z. Yang 2007-05-29 21:26:43 +0000
  • e2a951420f [1.7.0] Implement Cleanup decorator - Create generic DecoratorHarness - Name decorators, so that they can be overridden or removed - Add setup function to definition cache factory Edward Z. Yang 2007-05-29 20:49:33 +0000
  • 002395de09 [1.7.0] Add DefinitionCache decorators, implement Memory decorator - Move serialization responsibility to Config - Create DefinitionCacheFactory - Implement Null definition cache Edward Z. Yang 2007-05-29 20:21:33 +0000
  • d1187ed331 [1.7.0] Add versioning to serializer cache - Make some AttrDef member-variables lazy-loading to save serialization space, clean up others - Refactor get*Definition() methods Edward Z. Yang 2007-05-29 18:19:42 +0000
  • 426fbd1f97 [1.7.0] Complete Legacy element and attribute native support. Edward Z. Yang 2007-05-29 16:51:32 +0000
  • 9c5f01a0cf [1.7.0] Fix bug in Bool class - Genericize allElements into basic smoketest, add beginnings of legacy smoketest too. Edward Z. Yang 2007-05-29 02:12:08 +0000
  • f985d3cd96 Add initial allElements smoketest. Incomplete. Edward Z. Yang 2007-05-29 00:39:00 +0000
  • 0cb1d85822 Cordon off configuration form values into one form element name. Edward Z. Yang 2007-05-28 13:15:06 +0000
  • 073ddb0cb2 Remove unlink(types.xml) from cleanup Edward Z. Yang 2007-05-28 04:27:51 +0000
  • 889ccb1a92 Centralize types.xml writing. Edward Z. Yang 2007-05-28 04:26:25 +0000
  • aec84dc3f6 Simplify generate.php variable naming and comments. Edward Z. Yang 2007-05-28 03:58:02 +0000
  • dea62ffdab - Modify hash format to be more intuitive - Add parameter that controls magic quotes processing in loadArrayFromForm Edward Z. Yang 2007-05-28 03:55:36 +0000
  • 8913239b7f Document Printer_ConfigForm. Factor out form controls to printer. Edward Z. Yang 2007-05-28 03:49:06 +0000
  • e06929c218 Further refactoring to remove hacks. Move everything into the ConfigDoc facade object. Add parameters to plain.xsl. Optionally singleton-ize HTML Purifier. Add loadArrayFromForm to Config object. Edward Z. Yang 2007-05-28 03:33:12 +0000
  • aaf4839c34 Further refactor ConfigDoc, creating HTMLXSLTProcessor. Update NEWS. Edward Z. Yang 2007-05-28 02:55:50 +0000
  • c113f43440 Add basic structure for ConfigDoc namespace, begin moving things over. Edward Z. Yang 2007-05-28 02:41:01 +0000
  • bd8ecdd268 Rewire test runner to use full path to test file, this means we can introduce new namespaces. Edward Z. Yang 2007-05-28 02:29:48 +0000
  • ef51f8681a [1.7.0] Create ConfigForm printer classes - Extend hash to convert strings from form key,value,key,value - Hack up configdoc to accommodate configForm.php smoketest Edward Z. Yang 2007-05-28 02:20:55 +0000
  • ee61ffc0d9 Minor test-case refactoring. Edward Z. Yang 2007-05-27 23:12:17 +0000
  • f758f7c534 Oh whitespace how I despise you! Fix whitespace discrepancies between DOM and DirectLex. Edward Z. Yang 2007-05-27 16:17:14 +0000
  • 95499e34da Factor out common DefinitionCache test code to a harness. Edward Z. Yang 2007-05-27 15:52:45 +0000
  • de23201cbb [1.7.0] HTML Purifier now works with PHP 4.3.2. Yay! - Armor some character index checking - Add compatibility stuff for PHP_EOL - Add autoclose for colgroup - Compensate for realpath() quirkiness in old versions - Add flush maintenance script Edward Z. Yang 2007-05-27 14:27:54 +0000
  • 21ab12a6a8 [1.7.0] Add missing functions for DefinitionCache: replace, flush and type-checking - Add version to configuration object, and have update script change it accordingly Edward Z. Yang 2007-05-27 13:25:54 +0000
  • 69666e977f Fixed typo that caused problems with native PHP 4 fwrite Serializer code. Edward Z. Yang 2007-05-25 01:44:01 +0000
  • fa05319e30 [1.7.0] Factor out caching of definitions to DefinitionCache, hook in CSS, add a bunch of todos for this functionality. Attr namespace no longer affects HTMLDefinition. Edward Z. Yang 2007-05-25 01:32:29 +0000
  • ea46d79b0a Add missing parent class Definition. Edward Z. Yang 2007-05-24 22:08:29 +0000
  • a62f8971e4 [1.7.0] Refactor HTMLDefinition and CSSDefinition to have a common Definition parent, rename setup() to doSetup() and make setup() call the template method after setting the setup variable. Test for references in ConfigTest. Edward Z. Yang 2007-05-24 21:50:43 +0000
  • 7a3e06d4d0 [1.7.0] Lexer is now pre-emptively included, with a conditional include for the PHP5 only version. Edward Z. Yang 2007-05-24 20:36:50 +0000
  • e180b7689e [1.7.0] Implement HTMLDefinition cache (very hacked together, but long unit test times were driving me crazy!) - Add extra protection in AttrDef_URI against phantom Schemes - Doctype moved from config to HTMLDefinition - AttrDef_URITest mocks have more generic object parameters to deal with PHP4's copy-happy behavior Edward Z. Yang 2007-05-23 03:27:36 +0000
  • 7579932948 [1.7.0] New compact syntax for AttrDef objects that can be used to instantiate new objects via make() - Implemented make() for Enum and Bool - Migrate classes over to this new syntax - Add AttrDef_HTML_Bool unit test Edward Z. Yang 2007-05-23 00:39:07 +0000
  • 818d0d7a23 [1.7.0] Add missing includes for AttrTypes, add phantom unit test for future things to come Edward Z. Yang 2007-05-22 23:48:38 +0000
  • 797d3e0393 [1.7.0] Rewire dependencies, removing redundant includes and adding necessary ones - Rework descendants_are_inline to have default value as false, ins/del handling now works top-level when parent element is not block - Remove CleanUTF8OnGeneration, feature didn't even work Edward Z. Yang 2007-05-22 00:47:03 +0000
  • ff7eec7424 Properly tag Tidy with keyword prop. Edward Z. Yang 2007-05-21 03:03:25 +0000
  • 0ea04db559 [1.7.0] Finish implementing legacy elements, begin implementing legacy attributes - Migrated most unit tests over to XHTML 1.0 Strict to preserve transformation behavior - Created %Core.ColorKeywords to be shared between CSS_Color and HTML_Color - Added AttrDef_HTML_Color as AttrType Color - HTMLPurifier_Config::create(HTMLPurifier_Config $config) now clones the object - Attribute minimization for HTML implemented in Generator - Move div@align fix from proprietary to regular set - Color keywords now map to full six digit hexadecimal codes - Harness will now tack on per-use-case configuration Edward Z. Yang 2007-05-21 01:36:15 +0000
  • 831db14c79 [1.7.0] Remove HTMLModule tests. They were a bad idea. Edward Z. Yang 2007-05-21 00:24:32 +0000
  • a470fc5621 [1.7.0] Refactor HTMLModule unit tests - AttrCollections does not barf when an inclusion is not present - HTMLDefinition configuration directives now use new syntax - Added %HTML.AllowedModules and %HTML.CoreModules for testing - Extend Harness so that it can accept a default configuration object member variable - Refactor modules to use Scaffolding, which defines some custom attributes that allows for the easy testing of attribute collections Edward Z. Yang 2007-05-20 22:29:31 +0000
  • 2945f6a930 [1.7.0] Implement u, s, and strike tag transforms - Extend Simple so that it can accept some light CSS - Remove Center transform in favor of Simple Edward Z. Yang 2007-05-20 21:22:54 +0000
  • 71326abec1 Armor maintenance script by testing for CLI. Edward Z. Yang 2007-05-20 20:05:52 +0000
  • 23ef535043 Update WYSIWYG by removing Mantis link: bugtracker is no longer active. Edward Z. Yang 2007-05-20 19:56:16 +0000
  • fda2043ace [1.7.0] Code audit - Add set accessor, update access control on variables in AttrTypes - Add warning notes to non-unit tested, out of date or unused code files - Remove redundant include in EntityParser, expand string regexp to match all ASCII XML-style entities - Remove obsolete hooks in HTMLModule Edward Z. Yang 2007-05-20 19:45:49 +0000
  • 3f06d8316c [1.7.0] Add unit test for AttrCollections - Fixed bug where recursive attribute collections would result in infinite loop - Fixed bug with deep inclusions in attribute collections - Reset doctype object if HTML or Attr is changed - Add accessor functions to AttrTypes, unit tested class Edward Z. Yang 2007-05-20 19:29:05 +0000
  • e4b621eec2 [1.7.0] Make doctype object available from config, switch generator over to it. Edward Z. Yang 2007-05-20 18:14:52 +0000
  • 9728be4a52 [1.7.0] Configuration object now finalizes itself after first read operation Edward Z. Yang 2007-05-20 18:06:51 +0000
  • f1ec05afd0 [1.7.0] Make AttrDef classes more friendly to serialization by not storing final static data in member variables Edward Z. Yang 2007-05-20 17:23:09 +0000
  • 7481d349d3 Update TODO. Edward Z. Yang 2007-05-20 02:28:09 +0000
  • 086dc9177b [1.7.0] Add documentation for the Tidy functionality - Make specifying the child property for ElementDef unnecessary when overloading content_model or content_model_type - Add necessary includes to Tidy module files - Move div@align fix to Tidy_Proprietary - Future proof attrTransform.php by setting doctype to strict Edward Z. Yang 2007-05-20 02:12:01 +0000
  • 4d38c02932 [1.7.0] Implement and hook-in Tidy module setup. - CommonAttributes factored into XMLCommonAttributes and NonXMLCommonAttributes - Tidy abstract module was completely refactored in interest of usability - Add friendly error message if module does not have name Edward Z. Yang 2007-05-19 21:00:12 +0000
  • 83a50465dc [1.7.0] Commit abstract implementation of Tidy module: migration to follow. Edward Z. Yang 2007-05-19 01:42:17 +0000
  • dd62a303eb [1.7.0] Create new Output configuration namespace and migrate directives that directly impact Generator to it. Rename %Core.Strict to %HTML.Strict. Pilot heredoc syntax. Edward Z. Yang 2007-05-19 00:24:23 +0000
  • e4e981b6f1 Update documentation. Edward Z. Yang 2007-05-17 18:36:39 +0000
  • a846f4e70b [1.7.0] Update Advanced API documentation to reflect new changes. Edward Z. Yang 2007-05-16 03:35:57 +0000
  • a5136b65e4 [1.7.0] Eliminated modes in favor for special-case "Tidy" modules - Add $xml property to Doctype, make more serialize friendly in preparation for stuffing into Config object - Add FIXME markers for areas of further development, code is hooked so this is easy - Document what the new Tidy classes will be Edward Z. Yang 2007-05-16 03:00:18 +0000
  • 2d035483dd Update TODO with specific tasks for 1.7. Edward Z. Yang 2007-05-15 03:01:57 +0000
  • 831a09d455 [1.7.0] Various updates - Implement addModule(), requires new userModules property - Remove unnecessary $config passing for getElement(s) - Revamp HTMLModuleManagerTest - Fix buggy unit test for unrecognized parent - Remove anonymous generator member variable from ChildDef_Required Edward Z. Yang 2007-05-15 02:33:19 +0000
  • 2cbb3be602 [1.7.0] Armor error messages against XSS injection. Edward Z. Yang 2007-05-15 01:24:20 +0000
  • f7eccc0038 [1.7.0] Add %HTML.Trusted directive to allow untrusted elements in. Add special-case code for <script> into Generator. Edward Z. Yang 2007-05-15 01:17:10 +0000
  • 65252d6fbd [1.7.0] Wire in DoctypeRegistry to HTMLModuleManager, convert doctype declarations, migrate some related functionality to proper class Edward Z. Yang 2007-05-15 00:31:53 +0000
  • 6b9c5ec603 [1.7.0] Implement DoctypeRegistry. Add transparent constructor to Doctype. Edward Z. Yang 2007-05-14 22:36:35 +0000
  • e7b15068c2 [1.7.0] More refactoring - Remove vestigial initialize code - Update documentation - Rename member variable: modules -> registeredModules and validModules -> modules Edward Z. Yang 2007-05-14 02:24:21 +0000
  • 53c19552d2 [1.7.0] More HTMLModuleManager work: - Move Doctype to its own file - Remove vestigial autoDoctype and order - Setup will automatically load modules for you - Allow overriding trust level for parent element - Random documentation update Edward Z. Yang 2007-05-14 01:58:05 +0000
  • 048242004e [1.7.0] Remove vestigal chunks of code from HTMLModuleManager, switch HTMLDefinition to use validModules, and update some inline docs. Edward Z. Yang 2007-05-14 01:03:21 +0000
  • 05e1aca2fa [1.7.0] Begin refactoring of HTMLModuleManager, a lot of vestigal code remaining, but basic transferral to decentralized safety design finished. Enable scripting module. Edward Z. Yang 2007-05-14 00:14:21 +0000
  • 23feb457f2 [1.7.0] Drastically reorganize TransformToStrict, attributes now ordered alphabetically and are commented Edward Z. Yang 2007-05-13 21:46:10 +0000
  • 8f6380d63a [1.7.0] Minor reformatting of some modules to make them more like the XHTML abstract definitions Edward Z. Yang 2007-05-13 20:50:53 +0000
  • 3b1c40b2fc [1.7.0] Add some module unit tests for Edit, Hypertext, Image and Legacy (incomplete). Remove redundant img scaffolding. Edward Z. Yang 2007-05-13 20:43:38 +0000
  • da92cb9ff4 [1.7.0] Fix bug in HTMLPurifier_Harness that causes certain aspects of $input to change after parsing - Add makeLookup() convenience function to HTMLModule - Relocate SGML exclusion comment - Add preliminary Bdo module test Edward Z. Yang 2007-05-13 03:42:09 +0000
  • bda9167423 [1.7.0] Modify behavior of ElementDef->mergeIn to also merge safe property, this means default is now null. Edward Z. Yang 2007-05-12 21:47:03 +0000
  • cb9c96a2b0 [1.7.0] Implement addBlankElement for non-standalone elements. Edward Z. Yang 2007-05-12 20:54:55 +0000
  • e0cf214c44 [1.7.0] Modify addElement to return a reference to the created definition, shorten other HTMLModules accordingly. Edward Z. Yang 2007-05-12 20:44:47 +0000
  • ed73fdd5b8 [1.7.0] Convert table module to new format. Add support for literal object $contents variable. Edward Z. Yang 2007-05-12 20:26:26 +0000
  • eaea42f827 [1.7.0] Migrate Presentation module to new syntax, compactify Edit, Legacy and List declarations. Edward Z. Yang 2007-05-11 00:54:04 +0000
  • 7f39e1e2c3 [1.7.0] Convert Image, Legacy and List to use new format. - Make attribute array parameter optional - Optimize contents parsing for keywords Edward Z. Yang 2007-05-09 22:01:07 +0000
  • b81fb0af90 [1.7.0] Add more convenience functions to HTMLModule, wire Edit and Hypertext to use new functionality - Added LanguageCode to AttrTypes. We should prefer string representations of attribute definitions. Edward Z. Yang 2007-05-08 03:28:58 +0000
  • 47fe34ad81 [1.7.0] Create convenience functions for HTMLModule constructors, HTMLModule_Bdo was hooked up - Add initial "safe" property for elements, is not set for most though Edward Z. Yang 2007-05-07 01:51:26 +0000