mirror/php-e107
1
0
Fork 0
mirror of https://github.com/e107inc/e107.git synced 2025-10-09 12:06:29 +02:00
Code Issues Releases Wiki Activity
13,695 Commits 2 Branches 22 Tags
91f90202a48d45f901b60f22d66c53ae78c09a8e
Commit Graph

70 Commits

Author SHA1 Message Date
Nick Liu
169efa09b9 e_parse::toAttributes(): New API to concatenate HTML attributes 
`e_parse::toAttributes()` is an expansion of the formerly private method
`e_form::attributes()`. Now, all client code can use
`e_parse::toAttributes()` to make it easy to concatenate variable-length
HTML attributes. Values are guaranteed to be encoded so that they cannot
escape an HTML attribute value.

All client code usages are encouraged to build HTML tags with this new
method to prevent cross-site scripting (XSS) attacks and prevent
breaking the HTML validity due to improperly escaped HTML attributes.

This new method is an extension to `e_parse::toAttribute()`, which
escaped one single HTML attribute value.
 2022-02-06 16:49:56 +01:00
Cameron
f5dbec04ed Issue #4610 - Possible BC fix for outdated html attributes. 2021-11-24 11:07:52 -08:00
Cameron
7755dd1743 Added option for themes to load only the css or js portion of a library via theme.xml attribute. See bootstrap5/theme.xml for an example. 
Empty comments in glyphs removed due to conflict with Fontawesome JS. Tests updated.
 2021-10-11 12:33:59 -07:00
Nick Liu
19f48180dc Restore htmlspecialchars() for e_parse::filter(…, 'str') 
Fixes regression from 20882920a0 where
data would get inserted into the database with literal quotation marks,
but e107 has always expected `"` and `'` to come directly from
the database
 2021-10-06 13:06:31 -05:00
Cameron
c4f76c3687 Issue #4270 - perform all webp conversion checks within e_thumbnail class. WebP conversion now works with SEF media URLS. 2021-06-18 09:31:45 -07:00
Cameron
7302803a75 Issue #4270 Added .webp browser-support detection. Media-Manager "Convert to webp during render" can now be safely enabled and will temporarily fallback to the regular image if the browser does not support webp images. 2021-06-18 08:43:53 -07:00
Nick Liu
ce7f3b5d56 Add: e_parse::toFlatArray() and e_parse::fromFlatArray() 
Utility functions to convert multi-dimensional arrays to slash-delimited
single-dimensional arrays and vice versa
 2021-04-17 02:56:12 -05:00
Nick Liu
99aa39a8e5 e107_tests: Removed usages of var_dump() 2021-04-13 15:03:36 -05:00
Cameron
8f7ab86413 Fixes #4486 - Invalid attributes not being fully filtered. 2021-04-12 11:13:37 -07:00
Cameron
444d8d6dc0 Issue #4486 - iframe accepted attributes updated 2021-04-12 11:01:58 -07:00
Cameron
46b6927447 Fixes #4403 - Parsing of [code]. Test added. 2021-02-19 16:07:12 -08:00
Cameron
d1f997ee2c Fix for multi-dimensional field saving. 2021-02-02 16:09:22 -08:00
Cameron
0b1a84068f toGlyph() additional tests, Media-Manager includes bootstrap5 when detected and backward compatibility. 2021-01-31 13:09:53 -08:00
Cameron
2dedc8719f FontAwesome 5 added to admin area and bootstrap3 theme. $tp->toIcon() supports SVG sizing 2x, 3x etc. 2021-01-30 19:21:23 -08:00
Cameron
17a9aa2822 New e107::isCompatible() method added for checking plugins/themes are compatible with the current version of e107. 
New parser method stripBlockTags($html) to remove p, div etc.
{CPAGEBODY: strip=blocks} shortcode option added (uses the method above)
 2021-01-23 14:20:51 -08:00
Cameron
809146ef6a Removed a method specific to PHP versions earlier than 5.4 . Additional parser tests added. 2021-01-18 10:27:41 -08:00
Cameron
419a0e727a Fix for HTML used on text_truncate(). Ignore setcookie() in CLI mode. 2021-01-18 07:40:17 -08:00
Cameron
b94acc09e2 More parser tests. 2021-01-15 14:24:28 -08:00
Cameron
14fac98f56 toHTML modifier processing moved to a new method. 2021-01-15 13:20:38 -08:00
Cameron
136093b4de toHTML modifiers test added. 2021-01-15 12:47:26 -08:00
Cameron
497e7279b6 toHTML modifiers extracted to new method. 2021-01-15 10:59:52 -08:00
Cameron
13517e83a8 Multibyte utf8 method tests and fixes. 2021-01-15 09:03:07 -08:00
Cameron
8cfb8d80cc e_parse cleanup 2021-01-14 18:30:32 -08:00
Cameron
d51f5cb936 Legacy textparse class removed. Separate emote and profanity classes. 2021-01-14 17:26:15 -08:00
Cameron
f7fdf19e24 Couple more e_parse tests. 2021-01-14 15:29:15 -08:00
Cameron
62d6341303 Bbcode test and parser cleanup. 2021-01-14 14:46:49 -08:00
Cameron
a32e646bf0 Issue #4344 Usersettings: Homepage and Textarea set to "No - Will not show on signup page" during testing. Test now checks that these fields are not displayed. toAvatar test refinement. 2021-01-13 16:50:09 -08:00
Cameron
992b7b4bfe Tests for SEF URLs. Search page fix. 2021-01-13 16:16:50 -08:00
Cameron
c8ba5fe30a Shortcode tests for list_new, pm, rss_menu, signin and simpleParse() 2021-01-08 17:00:23 -08:00
Cameron
d86d8d999f Replaced global $menu_pref usage. Updated tests. 2021-01-08 13:50:32 -08:00
Cameron
eec9a163cb PHP8 fixes. Tests added for online shortcodes, page/e_shortcode.php 2021-01-08 11:46:30 -08:00
Cameron
a908ce82b6 Clear libxml errors in toRSS test. Forum shortcode fix. 2021-01-07 09:47:30 -08:00
Cameron
4e6347ff1b Ignore RSS test below PHP 7.1 2021-01-06 12:21:12 -08:00
Cameron
d365a8eda7 Core batch shortcode tests added. 2021-01-06 11:56:40 -08:00
Cameron
661fd6fb2c Test for toRss() 2021-01-05 10:36:58 -08:00
Cameron
8906cf1e26 When using Bootstrap 5 and no template is found, fallback to bootstrap 4 template if present in core folder. 2020-12-31 11:46:53 -08:00
Cameron
515d81ebb7 Sigin plugin/shortcode added. 2020-12-30 14:24:38 -08:00
Cameron
e595c0841a Fixes Media-Manager remote image import. 2020-12-29 11:13:18 -08:00
Cameron
78665cd56d Performance: Reduced e107::getFolder() usage from 2500+ to less than 30. 2020-12-21 06:41:45 -08:00
Cameron
f80d611202 Bbcode code optimization and test. 2020-12-15 08:59:31 -08:00
Cameron
44e260b121 Code cleanup and optimization 2020-12-14 16:21:48 -08:00
Cameron
c258b856f2 Tweak last parser commit and added getTags() test. 2020-12-14 11:18:12 -08:00
Cameron
2a31f831a9 Check variable type during toDB() test. Optimized toDB() for non-string types. 2020-12-14 07:27:51 -08:00
Cameron
d5a1e77ca1 Fixes #4291 Workaround for servers with very old versions of LibXML. eg. 2.7.6 2020-12-13 12:19:42 -08:00
Cameron
0de1ad8df4 Issue #4270 - WebP on-the-fly conversion. Fix blurry image and include class for styling. 2020-12-10 18:57:00 -08:00
Cameron
b0f28633bb Improved image testing. File class mime-detection improvements. Fix for use of e107_ini_set() which is only declared during installation. gSitemap typo fix. 2020-12-10 09:41:00 -08:00
Cameron
4e5d19e317 Possible workaround for toImage() test. 2020-12-09 15:23:29 -08:00
Cameron
fb575c257c Issue #4270 On-the-fly conversion to WebP format with fallback for older browsers when using toImage(). 2020-12-09 10:54:15 -08:00
Cameron
a094a8fb73 Thumbnailer: Added option for on-the-fly conversion to WebP format. Example: toImage($src, ['w'=>'type'=>'webp']); 2020-12-08 09:10:26 -08:00
Cameron
729da341e1 Disable static URL mode after tests. 2020-12-04 12:37:16 -08:00