Add CSSLength support, and roll out to all applicable styles.

git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@237 48356398-32a2-884e-a903-53898d9a118a
2025-07-31 03:10:09 +02:00 · 2006-08-13 23:08:38 +00:00
parent ff7fdaca38
commit b5ff592157
8 changed files with 125 additions and 4 deletions
--- a/library/HTMLPurifier/AttrDef/CSSLength.php
+++ b/library/HTMLPurifier/AttrDef/CSSLength.php
@@ -0,0 +1,40 @@
+<?php
+
+require_once 'HTMLPurifier/AttrDef.php';
+require_once 'HTMLPurifier/AttrDef/Number.php';
+
+class HTMLPurifier_AttrDef_CSSLength extends HTMLPurifier_AttrDef
+{
+    
+    var $units = array('em' => true, 'ex' => true, 'px' => true, 'in' => true,
+         'cm' => true, 'mm' => true, 'pt' => true, 'pc' => true);
+    var $number_def;
+    
+    function HTMLPurifier_AttrDef_CSSLength($non_negative = false) {
+        $this->number_def = new HTMLPurifier_AttrDef_Number($non_negative);
+    }
+    
+    function validate($length, $config, &$context) {
+        
+        $length = $this->parseCDATA($length);
+        if ($length === '') return false;
+        if ($length === '0') return '0';
+        $strlen = strlen($length);
+        if ($strlen === 1) return false; // impossible!
+        
+        // we assume all units are two characters
+        $unit = substr($length, $strlen - 2);
+        $number = substr($length, 0, $strlen - 2);
+        
+        if (!isset($this->units[$unit])) return false;
+        
+        $number = $this->number_def->validate($number, $config, $context);
+        if ($number === false) return false;
+        
+        return $number . $unit;
+        
+    }
+    
+}
+
+?>
--- a/library/HTMLPurifier/AttrDef/Number.php
+++ b/library/HTMLPurifier/AttrDef/Number.php
@@ -3,6 +3,12 @@
 class HTMLPurifier_AttrDef_Number extends HTMLPurifier_AttrDef
 {
    
+    var $non_negative = false;
+    
+    function HTMLPurifier_AttrDef_Number($non_negative = false) {
+        $this->non_negative = $non_negative;
+    }
+    
    function validate($number, $config, &$context) {
        
        $number = $this->parseCDATA($number);
@@ -12,6 +18,7 @@ class HTMLPurifier_AttrDef_Number extends HTMLPurifier_AttrDef
        $sign = '';
        switch ($number[0]) {
            case '-':
+                if ($this->non_negative) return false;
                $sign = '-';
            case '+':
                $number = substr($number, 1);