_encoder = new HTMLPurifier_Encoder(); $this->_entity_parser = new HTMLPurifier_EntityParser(); } var $_encoder; /** * Lexes an HTML string into tokens. * * @param $string String HTML. * @return HTMLPurifier_Token array representation of HTML. */ function tokenizeHTML($string, $config = null) { trigger_error('Call to abstract class', E_USER_ERROR); } /** * Retrieves or sets the default Lexer as a Prototype Factory. * * Depending on what PHP version you are running, the abstract base * Lexer class will determine which concrete Lexer is best for you: * HTMLPurifier_Lexer_DirectLex for PHP 4, and HTMLPurifier_Lexer_DOMLex * for PHP 5 and beyond. * * Passing the optional prototype lexer parameter will override the * default with your own implementation. A copy/reference of the prototype * lexer will now be returned when you request a new lexer. * * @note * Though it is possible to call this factory method from subclasses, * such usage is not recommended. * * @param $prototype Optional prototype lexer. * @return Concrete lexer. */ function create($prototype = null) { // we don't really care if it's a reference or a copy static $lexer = null; if ($prototype) { $lexer = $prototype; } if (empty($lexer)) { if (version_compare(PHP_VERSION, '5', '>=')) { require_once 'HTMLPurifier/Lexer/DOMLex.php'; $lexer = new HTMLPurifier_Lexer_DOMLex(); } else { require_once 'HTMLPurifier/Lexer/DirectLex.php'; $lexer = new HTMLPurifier_Lexer_DirectLex(); } } return $lexer; } /** * Translates CDATA sections into regular sections (through escaping). * * @protected * @param $string HTML string to process. * @returns HTML with CDATA sections escaped. */ function escapeCDATA($string) { return preg_replace_callback( '//', array('HTMLPurifier_Lexer', 'CDATACallback'), $string ); } /** * Callback function for escapeCDATA() that does the work. * * @warning Though this is public in order to let the callback happen, * calling it directly is not recommended. * @params $matches PCRE matches array, with index 0 the entire match * and 1 the inside of the CDATA section. * @returns Escaped internals of the CDATA section. */ function CDATACallback($matches) { // not exactly sure why the character set is needed, but whatever return htmlspecialchars($matches[1], ENT_COMPAT, 'UTF-8'); } /** * Takes a piece of HTML and normalizes it by converting entities, fixing * encoding, extracting bits, and other good stuff. */ function normalize($html, $config) { // extract body from document if applicable if ($config->get('Core', 'AcceptFullDocuments')) { $html = $this->extractBody($html); } // escape CDATA $html = $this->escapeCDATA($html); // expand entities that aren't the big five $html = $this->_entity_parser->substituteNonSpecialEntities($html); // clean into wellformed UTF-8 string for an SGML context: this has // to be done after entity expansion because the entities sometimes // represent non-SGML characters (horror, horror!) $html = $this->_encoder->cleanUTF8($html); return $html; } /** * Takes a string of HTML (fragment or document) and returns the content */ function extractBody($html) { $matches = array(); $result = preg_match('!
]*>(.+?)!is', $html, $matches); if ($result) { return $matches[1]; } else { return $html; } } } ?>