mirror/php-htmlpurifier
1
0
Fork 0
mirror of https://github.com/ezyang/htmlpurifier.git synced 2025-08-05 05:37:49 +02:00
Code Issues Releases Wiki Activity

Compare commits

base: mirror:v3.1.1
Branches Tags
mirror:master mirror:disable84 mirror:estrict mirror:php8.4 mirror:chmod-msg mirror:fix-ci mirror:revert-339-semantic-release
mirror:v4.18.0 mirror:v4.17.0 mirror:v4.16.0 mirror:v4.15.0 mirror:v4.14.0 mirror:v4.13.0 mirror:v4.12.0 mirror:v4.11.0 mirror:v4.10.0 mirror:v4.9.3 mirror:v4.9.2 mirror:v4.9.1 mirror:v4.8.0 mirror:4.8.0 mirror:v4.7.0 mirror:v4.6.0 mirror:gusev mirror:v4.5.0 mirror:v4.4.0 mirror:v4.3.0 mirror:v4.2.0 mirror:v4.1.1 mirror:v4.1.0 mirror:v4.0.0 mirror:v3.3.0 mirror:v3.2.0 mirror:v3.1.1.2 mirror:v3.1.1.1 mirror:v2.1.5 mirror:v3.1.1 mirror:v2.1.4 mirror:v3.1.0 mirror:v3.1.0rc1 mirror:v3.0.0 mirror:v2.1.3-strict mirror:v2.1.3 mirror:v2.1.2-strict mirror:v2.1.2 mirror:v2.1.1-strict mirror:v2.1.1 mirror:v2.1.0-strict mirror:v2.1.0 mirror:v2.0.1-strict mirror:v2.0.1 mirror:v2.0.0-strict mirror:v2.0.0 mirror:v1.6.1-strict mirror:v1.6.1 mirror:v1.6.0-strict mirror:v1.6.0 mirror:v1.5.0-strict mirror:v1.5.0 mirror:v1.4.1-strict mirror:v1.4.1 mirror:v1.4.0-strict mirror:v1.4.0 mirror:v1.3.2 mirror:v1.3.1 mirror:v1.3.0 mirror:v1.2.0 mirror:v1.1.2 mirror:v1.1.1 mirror:v1.1.0 mirror:v1.0.1 mirror:v1.0.0 mirror:v1.0.0beta
...
compare: mirror:v3.1.1.1
Branches Tags
mirror:master mirror:disable84 mirror:estrict mirror:php8.4 mirror:chmod-msg mirror:fix-ci mirror:revert-339-semantic-release
mirror:v4.18.0 mirror:v4.17.0 mirror:v4.16.0 mirror:v4.15.0 mirror:v4.14.0 mirror:v4.13.0 mirror:v4.12.0 mirror:v4.11.0 mirror:v4.10.0 mirror:v4.9.3 mirror:v4.9.2 mirror:v4.9.1 mirror:v4.8.0 mirror:4.8.0 mirror:v4.7.0 mirror:v4.6.0 mirror:gusev mirror:v4.5.0 mirror:v4.4.0 mirror:v4.3.0 mirror:v4.2.0 mirror:v4.1.1 mirror:v4.1.0 mirror:v4.0.0 mirror:v3.3.0 mirror:v3.2.0 mirror:v3.1.1.2 mirror:v3.1.1.1 mirror:v2.1.5 mirror:v3.1.1 mirror:v2.1.4 mirror:v3.1.0 mirror:v3.1.0rc1 mirror:v3.0.0 mirror:v2.1.3-strict mirror:v2.1.3 mirror:v2.1.2-strict mirror:v2.1.2 mirror:v2.1.1-strict mirror:v2.1.1 mirror:v2.1.0-strict mirror:v2.1.0 mirror:v2.0.1-strict mirror:v2.0.1 mirror:v2.0.0-strict mirror:v2.0.0 mirror:v1.6.1-strict mirror:v1.6.1 mirror:v1.6.0-strict mirror:v1.6.0 mirror:v1.5.0-strict mirror:v1.5.0 mirror:v1.4.1-strict mirror:v1.4.1 mirror:v1.4.0-strict mirror:v1.4.0 mirror:v1.3.2 mirror:v1.3.1 mirror:v1.3.0 mirror:v1.2.0 mirror:v1.1.2 mirror:v1.1.1 mirror:v1.1.0 mirror:v1.0.1 mirror:v1.0.0 mirror:v1.0.0beta

5 Commits
v3.1.1 ... v3.1.1.1

Author SHA1 Message Date
Edward Z. Yang
7727cea112 Add Git specific files and configuration 
* Setup usage.xml to be binary, as XMLWriter does not honor operating
  system's newline format.
* Setup various files to ignore (svn:ignore was not carried over)
* Add dummy files to prevent git from ignoring empty directories

Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com>
 2008-06-24 22:02:16 -04:00
Edward Z. Yang
6bb8c1fcac Handle CRLF discrepancies 
Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com>
 2008-06-24 21:10:51 -04:00
Edward Z. Yang
a84b6d5be0 Add new NEWS entries 
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1824 48356398-32a2-884e-a903-53898d9a118a
 2008-06-21 05:00:17 +00:00
Edward Z. Yang
6e43cac9c9 Add some extra helpful data for FOCUS 
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1821 48356398-32a2-884e-a903-53898d9a118a
 2008-06-20 02:59:01 +00:00
Edward Z. Yang
656a0c95bf Add update Freshmeat script. 
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1818 48356398-32a2-884e-a903-53898d9a118a
 2008-06-20 01:48:46 +00:00
109 changed files with 6370 additions and 6187 deletions
Expand all files Collapse all files

1
.gitattributes vendored Normal file
View File

@@ -0,0 +1 @@
configdoc/usage.xml -crlf

9
.gitignore vendored Normal file
View File

@@ -0,0 +1,9 @@
conf/
library/HTMLPurifier/DefinitionCache/Serializer/*/
library/standalone/
library/HTMLPurifier.standalone.php
*.phpt.diff
*.phpt.exp
*.phpt.log
*.phpt.out
*.phpt.php

13
FOCUS Normal file
View File

@@ -0,0 +1,13 @@
9 - Major security fixes
[ Appendix A: Release focus IDs ]
0 - N/A
1 - Initial freshmeat announcement
2 - Documentation
3 - Code cleanup
4 - Minor feature enhancements
5 - Major feature enhancements
6 - Minor bugfixes
7 - Major bugfixes
8 - Minor security fixes
9 - Major security fixes

4
NEWS
View File

@@ -9,6 +9,10 @@ NEWS ( CHANGELOG and HISTORY ) HTMLPurifier
. Internal change . Internal change
========================== ==========================
3.2.0, unknown release date
3.1.2, unknown release date
3.1.1, released 2008-06-19 3.1.1, released 2008-06-19
# %URI.Munge now, by default, does not munge resources (for example, <img src="">) # %URI.Munge now, by default, does not munge resources (for example, <img src="">)
In order to enable this again, please set %URI.MungeResources to true. In order to enable this again, please set %URI.MungeResources to true.

5
WHATSNEW
View File

@@ -2,8 +2,7 @@ HTML Purifier 3.1.1 is a security and bugfix release. This release addresses
two security vulnerabilities, both related to CSS, and one of which only two security vulnerabilities, both related to CSS, and one of which only
applies to users using Shift_JIS as their output encoding. There is also applies to users using Shift_JIS as their output encoding. There is also
a security improvement regarding the imagecrash attack. There is a backwards a security improvement regarding the imagecrash attack. There is a backwards
incompatible change with %URI.Munge, in which resources are no longer munged incompatible change in which resources are no longer munged
by default; please enable using %URI.MungeResources. Besides this, there by default; please enable using %URI.MungeResources. Besides this, there
are numerous improvements to URI munging, esp. with the addition of are numerous improvements to URI munging, esp. with the addition of
%URI.MungeSecretKey, as well as an experimental implementation of %URI.MungeSecretKey, as well as an experimental %HTML.SafeObject and %HTML.SafeEmbed.
%HTML.SafeObject and %HTML.SafeEmbed. There are also some memory optimizations.

16
docs/specimens/LICENSE
View File

@@ -1,8 +1,8 @@
Licensing of Specimens Licensing of Specimens
Some files in this directory have different licenses: Some files in this directory have different licenses:
windows-live-mail-desktop-beta.html - donated by laacz, public domain windows-live-mail-desktop-beta.html - donated by laacz, public domain
img.png - LGPL, from <http://commons.wikimedia.org/wiki/Image:Pastille_chrome.png> img.png - LGPL, from <http://commons.wikimedia.org/wiki/Image:Pastille_chrome.png>
All other files are by me, and are licensed under LGPL. All other files are by me, and are licensed under LGPL.

378
library/HTMLPurifier.safe-includes.php
View File

@@ -1,189 +1,189 @@
<?php <?php
/** /**
* @file * @file
* This file was auto-generated by generate-includes.php and includes all of * This file was auto-generated by generate-includes.php and includes all of
* the core files required by HTML Purifier. This is a convenience stub that * the core files required by HTML Purifier. This is a convenience stub that
* includes all files using dirname(__FILE__) and require_once. PLEASE DO NOT * includes all files using dirname(__FILE__) and require_once. PLEASE DO NOT
* EDIT THIS FILE, changes will be overwritten the next time the script is run. * EDIT THIS FILE, changes will be overwritten the next time the script is run.
* *
* Changes to include_path are not necessary. * Changes to include_path are not necessary.
*/ */
$__dir = dirname(__FILE__); $__dir = dirname(__FILE__);
require_once $__dir . '/HTMLPurifier.php'; require_once $__dir . '/HTMLPurifier.php';
require_once $__dir . '/HTMLPurifier/AttrCollections.php'; require_once $__dir . '/HTMLPurifier/AttrCollections.php';
require_once $__dir . '/HTMLPurifier/AttrDef.php'; require_once $__dir . '/HTMLPurifier/AttrDef.php';
require_once $__dir . '/HTMLPurifier/AttrTransform.php'; require_once $__dir . '/HTMLPurifier/AttrTransform.php';
require_once $__dir . '/HTMLPurifier/AttrTypes.php'; require_once $__dir . '/HTMLPurifier/AttrTypes.php';
require_once $__dir . '/HTMLPurifier/AttrValidator.php'; require_once $__dir . '/HTMLPurifier/AttrValidator.php';
require_once $__dir . '/HTMLPurifier/Bootstrap.php'; require_once $__dir . '/HTMLPurifier/Bootstrap.php';
require_once $__dir . '/HTMLPurifier/Definition.php'; require_once $__dir . '/HTMLPurifier/Definition.php';
require_once $__dir . '/HTMLPurifier/CSSDefinition.php'; require_once $__dir . '/HTMLPurifier/CSSDefinition.php';
require_once $__dir . '/HTMLPurifier/ChildDef.php'; require_once $__dir . '/HTMLPurifier/ChildDef.php';
require_once $__dir . '/HTMLPurifier/Config.php'; require_once $__dir . '/HTMLPurifier/Config.php';
require_once $__dir . '/HTMLPurifier/ConfigSchema.php'; require_once $__dir . '/HTMLPurifier/ConfigSchema.php';
require_once $__dir . '/HTMLPurifier/ContentSets.php'; require_once $__dir . '/HTMLPurifier/ContentSets.php';
require_once $__dir . '/HTMLPurifier/Context.php'; require_once $__dir . '/HTMLPurifier/Context.php';
require_once $__dir . '/HTMLPurifier/DefinitionCache.php'; require_once $__dir . '/HTMLPurifier/DefinitionCache.php';
require_once $__dir . '/HTMLPurifier/DefinitionCacheFactory.php'; require_once $__dir . '/HTMLPurifier/DefinitionCacheFactory.php';
require_once $__dir . '/HTMLPurifier/Doctype.php'; require_once $__dir . '/HTMLPurifier/Doctype.php';
require_once $__dir . '/HTMLPurifier/DoctypeRegistry.php'; require_once $__dir . '/HTMLPurifier/DoctypeRegistry.php';
require_once $__dir . '/HTMLPurifier/ElementDef.php'; require_once $__dir . '/HTMLPurifier/ElementDef.php';
require_once $__dir . '/HTMLPurifier/Encoder.php'; require_once $__dir . '/HTMLPurifier/Encoder.php';
require_once $__dir . '/HTMLPurifier/EntityLookup.php'; require_once $__dir . '/HTMLPurifier/EntityLookup.php';
require_once $__dir . '/HTMLPurifier/EntityParser.php'; require_once $__dir . '/HTMLPurifier/EntityParser.php';
require_once $__dir . '/HTMLPurifier/ErrorCollector.php'; require_once $__dir . '/HTMLPurifier/ErrorCollector.php';
require_once $__dir . '/HTMLPurifier/Exception.php'; require_once $__dir . '/HTMLPurifier/Exception.php';
require_once $__dir . '/HTMLPurifier/Filter.php'; require_once $__dir . '/HTMLPurifier/Filter.php';
require_once $__dir . '/HTMLPurifier/Generator.php'; require_once $__dir . '/HTMLPurifier/Generator.php';
require_once $__dir . '/HTMLPurifier/HTMLDefinition.php'; require_once $__dir . '/HTMLPurifier/HTMLDefinition.php';
require_once $__dir . '/HTMLPurifier/HTMLModule.php'; require_once $__dir . '/HTMLPurifier/HTMLModule.php';
require_once $__dir . '/HTMLPurifier/HTMLModuleManager.php'; require_once $__dir . '/HTMLPurifier/HTMLModuleManager.php';
require_once $__dir . '/HTMLPurifier/IDAccumulator.php'; require_once $__dir . '/HTMLPurifier/IDAccumulator.php';
require_once $__dir . '/HTMLPurifier/Injector.php'; require_once $__dir . '/HTMLPurifier/Injector.php';
require_once $__dir . '/HTMLPurifier/Language.php'; require_once $__dir . '/HTMLPurifier/Language.php';
require_once $__dir . '/HTMLPurifier/LanguageFactory.php'; require_once $__dir . '/HTMLPurifier/LanguageFactory.php';
require_once $__dir . '/HTMLPurifier/Length.php'; require_once $__dir . '/HTMLPurifier/Length.php';
require_once $__dir . '/HTMLPurifier/Lexer.php'; require_once $__dir . '/HTMLPurifier/Lexer.php';
require_once $__dir . '/HTMLPurifier/PercentEncoder.php'; require_once $__dir . '/HTMLPurifier/PercentEncoder.php';
require_once $__dir . '/HTMLPurifier/Strategy.php'; require_once $__dir . '/HTMLPurifier/Strategy.php';
require_once $__dir . '/HTMLPurifier/StringHash.php'; require_once $__dir . '/HTMLPurifier/StringHash.php';
require_once $__dir . '/HTMLPurifier/StringHashParser.php'; require_once $__dir . '/HTMLPurifier/StringHashParser.php';
require_once $__dir . '/HTMLPurifier/TagTransform.php'; require_once $__dir . '/HTMLPurifier/TagTransform.php';
require_once $__dir . '/HTMLPurifier/Token.php'; require_once $__dir . '/HTMLPurifier/Token.php';
require_once $__dir . '/HTMLPurifier/TokenFactory.php'; require_once $__dir . '/HTMLPurifier/TokenFactory.php';
require_once $__dir . '/HTMLPurifier/URI.php'; require_once $__dir . '/HTMLPurifier/URI.php';
require_once $__dir . '/HTMLPurifier/URIDefinition.php'; require_once $__dir . '/HTMLPurifier/URIDefinition.php';
require_once $__dir . '/HTMLPurifier/URIFilter.php'; require_once $__dir . '/HTMLPurifier/URIFilter.php';
require_once $__dir . '/HTMLPurifier/URIParser.php'; require_once $__dir . '/HTMLPurifier/URIParser.php';
require_once $__dir . '/HTMLPurifier/URIScheme.php'; require_once $__dir . '/HTMLPurifier/URIScheme.php';
require_once $__dir . '/HTMLPurifier/URISchemeRegistry.php'; require_once $__dir . '/HTMLPurifier/URISchemeRegistry.php';
require_once $__dir . '/HTMLPurifier/UnitConverter.php'; require_once $__dir . '/HTMLPurifier/UnitConverter.php';
require_once $__dir . '/HTMLPurifier/VarParser.php'; require_once $__dir . '/HTMLPurifier/VarParser.php';
require_once $__dir . '/HTMLPurifier/VarParserException.php'; require_once $__dir . '/HTMLPurifier/VarParserException.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS.php';
require_once $__dir . '/HTMLPurifier/AttrDef/Enum.php'; require_once $__dir . '/HTMLPurifier/AttrDef/Enum.php';
require_once $__dir . '/HTMLPurifier/AttrDef/Integer.php'; require_once $__dir . '/HTMLPurifier/AttrDef/Integer.php';
require_once $__dir . '/HTMLPurifier/AttrDef/Lang.php'; require_once $__dir . '/HTMLPurifier/AttrDef/Lang.php';
require_once $__dir . '/HTMLPurifier/AttrDef/Switch.php'; require_once $__dir . '/HTMLPurifier/AttrDef/Switch.php';
require_once $__dir . '/HTMLPurifier/AttrDef/Text.php'; require_once $__dir . '/HTMLPurifier/AttrDef/Text.php';
require_once $__dir . '/HTMLPurifier/AttrDef/URI.php'; require_once $__dir . '/HTMLPurifier/AttrDef/URI.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Number.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Number.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/AlphaValue.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/AlphaValue.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Background.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Background.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/BackgroundPosition.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/BackgroundPosition.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Border.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Border.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Color.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Color.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Composite.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Composite.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/DenyElementDecorator.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/DenyElementDecorator.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Filter.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Filter.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Font.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Font.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/FontFamily.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/FontFamily.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/ImportantDecorator.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/ImportantDecorator.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Length.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Length.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/ListStyle.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/ListStyle.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Multiple.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Multiple.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Percentage.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/Percentage.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/TextDecoration.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/TextDecoration.php';
require_once $__dir . '/HTMLPurifier/AttrDef/CSS/URI.php'; require_once $__dir . '/HTMLPurifier/AttrDef/CSS/URI.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Bool.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Bool.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Color.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Color.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/FrameTarget.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/FrameTarget.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/ID.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/ID.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Pixels.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Pixels.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Length.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Length.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/LinkTypes.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/LinkTypes.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/MultiLength.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/MultiLength.php';
require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Nmtokens.php'; require_once $__dir . '/HTMLPurifier/AttrDef/HTML/Nmtokens.php';
require_once $__dir . '/HTMLPurifier/AttrDef/URI/Email.php'; require_once $__dir . '/HTMLPurifier/AttrDef/URI/Email.php';
require_once $__dir . '/HTMLPurifier/AttrDef/URI/Host.php'; require_once $__dir . '/HTMLPurifier/AttrDef/URI/Host.php';
require_once $__dir . '/HTMLPurifier/AttrDef/URI/IPv4.php'; require_once $__dir . '/HTMLPurifier/AttrDef/URI/IPv4.php';
require_once $__dir . '/HTMLPurifier/AttrDef/URI/IPv6.php'; require_once $__dir . '/HTMLPurifier/AttrDef/URI/IPv6.php';
require_once $__dir . '/HTMLPurifier/AttrDef/URI/Email/SimpleCheck.php'; require_once $__dir . '/HTMLPurifier/AttrDef/URI/Email/SimpleCheck.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/BdoDir.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/BdoDir.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/BgColor.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/BgColor.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/BoolToCSS.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/BoolToCSS.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/Border.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/Border.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/EnumToCSS.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/EnumToCSS.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/ImgRequired.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/ImgRequired.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/ImgSpace.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/ImgSpace.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/Lang.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/Lang.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/Length.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/Length.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/Name.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/Name.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/SafeEmbed.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/SafeEmbed.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/SafeObject.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/SafeObject.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/SafeParam.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/SafeParam.php';
require_once $__dir . '/HTMLPurifier/AttrTransform/ScriptRequired.php'; require_once $__dir . '/HTMLPurifier/AttrTransform/ScriptRequired.php';
require_once $__dir . '/HTMLPurifier/ChildDef/Chameleon.php'; require_once $__dir . '/HTMLPurifier/ChildDef/Chameleon.php';
require_once $__dir . '/HTMLPurifier/ChildDef/Custom.php'; require_once $__dir . '/HTMLPurifier/ChildDef/Custom.php';
require_once $__dir . '/HTMLPurifier/ChildDef/Empty.php'; require_once $__dir . '/HTMLPurifier/ChildDef/Empty.php';
require_once $__dir . '/HTMLPurifier/ChildDef/Required.php'; require_once $__dir . '/HTMLPurifier/ChildDef/Required.php';
require_once $__dir . '/HTMLPurifier/ChildDef/Optional.php'; require_once $__dir . '/HTMLPurifier/ChildDef/Optional.php';
require_once $__dir . '/HTMLPurifier/ChildDef/StrictBlockquote.php'; require_once $__dir . '/HTMLPurifier/ChildDef/StrictBlockquote.php';
require_once $__dir . '/HTMLPurifier/ChildDef/Table.php'; require_once $__dir . '/HTMLPurifier/ChildDef/Table.php';
require_once $__dir . '/HTMLPurifier/DefinitionCache/Decorator.php'; require_once $__dir . '/HTMLPurifier/DefinitionCache/Decorator.php';
require_once $__dir . '/HTMLPurifier/DefinitionCache/Null.php'; require_once $__dir . '/HTMLPurifier/DefinitionCache/Null.php';
require_once $__dir . '/HTMLPurifier/DefinitionCache/Serializer.php'; require_once $__dir . '/HTMLPurifier/DefinitionCache/Serializer.php';
require_once $__dir . '/HTMLPurifier/DefinitionCache/Decorator/Cleanup.php'; require_once $__dir . '/HTMLPurifier/DefinitionCache/Decorator/Cleanup.php';
require_once $__dir . '/HTMLPurifier/DefinitionCache/Decorator/Memory.php'; require_once $__dir . '/HTMLPurifier/DefinitionCache/Decorator/Memory.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Bdo.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Bdo.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/CommonAttributes.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/CommonAttributes.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Edit.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Edit.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Hypertext.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Hypertext.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Image.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Image.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Legacy.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Legacy.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/List.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/List.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/NonXMLCommonAttributes.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/NonXMLCommonAttributes.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Object.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Object.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Presentation.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Presentation.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Proprietary.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Proprietary.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Ruby.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Ruby.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/SafeEmbed.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/SafeEmbed.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/SafeObject.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/SafeObject.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Scripting.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Scripting.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/StyleAttribute.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/StyleAttribute.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Tables.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Tables.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Target.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Target.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Text.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Text.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/XMLCommonAttributes.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/XMLCommonAttributes.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/Proprietary.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/Proprietary.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/XHTMLAndHTML4.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/XHTMLAndHTML4.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/Strict.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/Strict.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/Transitional.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/Transitional.php';
require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/XHTML.php'; require_once $__dir . '/HTMLPurifier/HTMLModule/Tidy/XHTML.php';
require_once $__dir . '/HTMLPurifier/Injector/AutoParagraph.php'; require_once $__dir . '/HTMLPurifier/Injector/AutoParagraph.php';
require_once $__dir . '/HTMLPurifier/Injector/Linkify.php'; require_once $__dir . '/HTMLPurifier/Injector/Linkify.php';
require_once $__dir . '/HTMLPurifier/Injector/PurifierLinkify.php'; require_once $__dir . '/HTMLPurifier/Injector/PurifierLinkify.php';
require_once $__dir . '/HTMLPurifier/Injector/SafeObject.php'; require_once $__dir . '/HTMLPurifier/Injector/SafeObject.php';
require_once $__dir . '/HTMLPurifier/Lexer/DOMLex.php'; require_once $__dir . '/HTMLPurifier/Lexer/DOMLex.php';
require_once $__dir . '/HTMLPurifier/Lexer/DirectLex.php'; require_once $__dir . '/HTMLPurifier/Lexer/DirectLex.php';
require_once $__dir . '/HTMLPurifier/Strategy/Composite.php'; require_once $__dir . '/HTMLPurifier/Strategy/Composite.php';
require_once $__dir . '/HTMLPurifier/Strategy/Core.php'; require_once $__dir . '/HTMLPurifier/Strategy/Core.php';
require_once $__dir . '/HTMLPurifier/Strategy/FixNesting.php'; require_once $__dir . '/HTMLPurifier/Strategy/FixNesting.php';
require_once $__dir . '/HTMLPurifier/Strategy/MakeWellFormed.php'; require_once $__dir . '/HTMLPurifier/Strategy/MakeWellFormed.php';
require_once $__dir . '/HTMLPurifier/Strategy/RemoveForeignElements.php'; require_once $__dir . '/HTMLPurifier/Strategy/RemoveForeignElements.php';
require_once $__dir . '/HTMLPurifier/Strategy/ValidateAttributes.php'; require_once $__dir . '/HTMLPurifier/Strategy/ValidateAttributes.php';
require_once $__dir . '/HTMLPurifier/TagTransform/Font.php'; require_once $__dir . '/HTMLPurifier/TagTransform/Font.php';
require_once $__dir . '/HTMLPurifier/TagTransform/Simple.php'; require_once $__dir . '/HTMLPurifier/TagTransform/Simple.php';
require_once $__dir . '/HTMLPurifier/Token/Comment.php'; require_once $__dir . '/HTMLPurifier/Token/Comment.php';
require_once $__dir . '/HTMLPurifier/Token/Tag.php'; require_once $__dir . '/HTMLPurifier/Token/Tag.php';
require_once $__dir . '/HTMLPurifier/Token/Empty.php'; require_once $__dir . '/HTMLPurifier/Token/Empty.php';
require_once $__dir . '/HTMLPurifier/Token/End.php'; require_once $__dir . '/HTMLPurifier/Token/End.php';
require_once $__dir . '/HTMLPurifier/Token/Start.php'; require_once $__dir . '/HTMLPurifier/Token/Start.php';
require_once $__dir . '/HTMLPurifier/Token/Text.php'; require_once $__dir . '/HTMLPurifier/Token/Text.php';
require_once $__dir . '/HTMLPurifier/URIFilter/DisableExternal.php'; require_once $__dir . '/HTMLPurifier/URIFilter/DisableExternal.php';
require_once $__dir . '/HTMLPurifier/URIFilter/DisableExternalResources.php'; require_once $__dir . '/HTMLPurifier/URIFilter/DisableExternalResources.php';
require_once $__dir . '/HTMLPurifier/URIFilter/HostBlacklist.php'; require_once $__dir . '/HTMLPurifier/URIFilter/HostBlacklist.php';
require_once $__dir . '/HTMLPurifier/URIFilter/MakeAbsolute.php'; require_once $__dir . '/HTMLPurifier/URIFilter/MakeAbsolute.php';
require_once $__dir . '/HTMLPurifier/URIFilter/Munge.php'; require_once $__dir . '/HTMLPurifier/URIFilter/Munge.php';
require_once $__dir . '/HTMLPurifier/URIScheme/ftp.php'; require_once $__dir . '/HTMLPurifier/URIScheme/ftp.php';
require_once $__dir . '/HTMLPurifier/URIScheme/http.php'; require_once $__dir . '/HTMLPurifier/URIScheme/http.php';
require_once $__dir . '/HTMLPurifier/URIScheme/https.php'; require_once $__dir . '/HTMLPurifier/URIScheme/https.php';
require_once $__dir . '/HTMLPurifier/URIScheme/mailto.php'; require_once $__dir . '/HTMLPurifier/URIScheme/mailto.php';
require_once $__dir . '/HTMLPurifier/URIScheme/news.php'; require_once $__dir . '/HTMLPurifier/URIScheme/news.php';
require_once $__dir . '/HTMLPurifier/URIScheme/nntp.php'; require_once $__dir . '/HTMLPurifier/URIScheme/nntp.php';
require_once $__dir . '/HTMLPurifier/VarParser/Flexible.php'; require_once $__dir . '/HTMLPurifier/VarParser/Flexible.php';
require_once $__dir . '/HTMLPurifier/VarParser/Native.php'; require_once $__dir . '/HTMLPurifier/VarParser/Native.php';

22
library/HTMLPurifier/ConfigSchema/schema/Attr.AllowedFrameTargets.txt
View File

@@ -1,11 +1,11 @@
Attr.AllowedFrameTargets Attr.AllowedFrameTargets
TYPE: lookup TYPE: lookup
DEFAULT: array() DEFAULT: array()
--DESCRIPTION-- --DESCRIPTION--
Lookup table of all allowed link frame targets. Some commonly used link Lookup table of all allowed link frame targets. Some commonly used link
targets include _blank, _self, _parent and _top. Values should be targets include _blank, _self, _parent and _top. Values should be
lowercase, as validation will be done in a case-sensitive manner despite lowercase, as validation will be done in a case-sensitive manner despite
W3C's recommendation. XHTML 1.0 Strict does not permit the target attribute W3C's recommendation. XHTML 1.0 Strict does not permit the target attribute
so this directive will have no effect in that doctype. XHTML 1.1 does not so this directive will have no effect in that doctype. XHTML 1.1 does not
enable the Target module by default, you will have to manually enable it enable the Target module by default, you will have to manually enable it
(see the module documentation for more details.) (see the module documentation for more details.)

16
library/HTMLPurifier/ConfigSchema/schema/Attr.AllowedRel.txt
View File

@@ -1,8 +1,8 @@
Attr.AllowedRel Attr.AllowedRel
TYPE: lookup TYPE: lookup
VERSION: 1.6.0 VERSION: 1.6.0
DEFAULT: array() DEFAULT: array()
--DESCRIPTION-- --DESCRIPTION--
List of allowed forward document relationships in the rel attribute. Common List of allowed forward document relationships in the rel attribute. Common
values may be nofollow or print. By default, this is empty, meaning that no values may be nofollow or print. By default, this is empty, meaning that no
document relationships are allowed. document relationships are allowed.

16
library/HTMLPurifier/ConfigSchema/schema/Attr.AllowedRev.txt
View File

@@ -1,8 +1,8 @@
Attr.AllowedRev Attr.AllowedRev
TYPE: lookup TYPE: lookup
VERSION: 1.6.0 VERSION: 1.6.0
DEFAULT: array() DEFAULT: array()
--DESCRIPTION-- --DESCRIPTION--
List of allowed reverse document relationships in the rev attribute. This List of allowed reverse document relationships in the rev attribute. This
attribute is a bit of an edge-case; if you don't know what it is for, stay attribute is a bit of an edge-case; if you don't know what it is for, stay
away. away.

16
library/HTMLPurifier/ConfigSchema/schema/Attr.DefaultInvalidImage.txt
View File

@@ -1,8 +1,8 @@
Attr.DefaultInvalidImage Attr.DefaultInvalidImage
TYPE: string TYPE: string
DEFAULT: '' DEFAULT: ''
--DESCRIPTION-- --DESCRIPTION--
This is the default image an img tag will be pointed to if it does not have This is the default image an img tag will be pointed to if it does not have
a valid src attribute. In future versions, we may allow the image tag to a valid src attribute. In future versions, we may allow the image tag to
be removed completely, but due to design issues, this is not possible right be removed completely, but due to design issues, this is not possible right
now. now.

14
library/HTMLPurifier/ConfigSchema/schema/Attr.DefaultInvalidImageAlt.txt
View File

@@ -1,7 +1,7 @@
Attr.DefaultInvalidImageAlt Attr.DefaultInvalidImageAlt
TYPE: string TYPE: string
DEFAULT: 'Invalid image' DEFAULT: 'Invalid image'
--DESCRIPTION-- --DESCRIPTION--
This is the content of the alt tag of an invalid image if the user had not This is the content of the alt tag of an invalid image if the user had not
previously specified an alt attribute. It has no effect when the image is previously specified an alt attribute. It has no effect when the image is
valid but there was no alt attribute present. valid but there was no alt attribute present.

18
library/HTMLPurifier/ConfigSchema/schema/Attr.DefaultTextDir.txt
View File

@@ -1,9 +1,9 @@
Attr.DefaultTextDir Attr.DefaultTextDir
TYPE: string TYPE: string
DEFAULT: 'ltr' DEFAULT: 'ltr'
--DESCRIPTION-- --DESCRIPTION--
Defines the default text direction (ltr or rtl) of the document being Defines the default text direction (ltr or rtl) of the document being
parsed. This generally is the same as the value of the dir attribute in parsed. This generally is the same as the value of the dir attribute in
HTML, or ltr if that is not specified. HTML, or ltr if that is not specified.
--ALLOWED-- --ALLOWED--
'ltr', 'rtl' 'ltr', 'rtl'

30
library/HTMLPurifier/ConfigSchema/schema/Attr.EnableID.txt
View File

@@ -1,15 +1,15 @@
Attr.EnableID Attr.EnableID
TYPE: bool TYPE: bool
DEFAULT: false DEFAULT: false
VERSION: 1.2.0 VERSION: 1.2.0
--DESCRIPTION-- --DESCRIPTION--
Allows the ID attribute in HTML. This is disabled by default due to the Allows the ID attribute in HTML. This is disabled by default due to the
fact that without proper configuration user input can easily break the fact that without proper configuration user input can easily break the
validation of a webpage by specifying an ID that is already on the validation of a webpage by specifying an ID that is already on the
surrounding HTML. If you don't mind throwing caution to the wind, enable surrounding HTML. If you don't mind throwing caution to the wind, enable
this directive, but I strongly recommend you also consider blacklisting IDs this directive, but I strongly recommend you also consider blacklisting IDs
you use (%Attr.IDBlacklist) or prefixing all user supplied IDs you use (%Attr.IDBlacklist) or prefixing all user supplied IDs
(%Attr.IDPrefix). When set to true HTML Purifier reverts to the behavior of (%Attr.IDPrefix). When set to true HTML Purifier reverts to the behavior of
pre-1.2.0 versions. pre-1.2.0 versions.
--ALIASES-- --ALIASES--
HTML.EnableAttrID HTML.EnableAttrID

8
library/HTMLPurifier/ConfigSchema/schema/Attr.IDBlacklist.txt
View File

@@ -1,4 +1,4 @@
Attr.IDBlacklist Attr.IDBlacklist
TYPE: list TYPE: list
DEFAULT: array() DEFAULT: array()
DESCRIPTION: Array of IDs not allowed in the document. DESCRIPTION: Array of IDs not allowed in the document.

16
library/HTMLPurifier/ConfigSchema/schema/Attr.IDBlacklistRegexp.txt
View File

@@ -1,8 +1,8 @@
Attr.IDBlacklistRegexp Attr.IDBlacklistRegexp
TYPE: string/null TYPE: string/null
VERSION: 1.6.0 VERSION: 1.6.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
PCRE regular expression to be matched against all IDs. If the expression is PCRE regular expression to be matched against all IDs. If the expression is
matches, the ID is rejected. Use this with care: may cause significant matches, the ID is rejected. Use this with care: may cause significant
degradation. ID matching is done after all other validation. degradation. ID matching is done after all other validation.

22
library/HTMLPurifier/ConfigSchema/schema/Attr.IDPrefix.txt
View File

@@ -1,11 +1,11 @@
Attr.IDPrefix Attr.IDPrefix
TYPE: string TYPE: string
VERSION: 1.2.0 VERSION: 1.2.0
DEFAULT: '' DEFAULT: ''
--DESCRIPTION-- --DESCRIPTION--
String to prefix to IDs. If you have no idea what IDs your pages may use, String to prefix to IDs. If you have no idea what IDs your pages may use,
you may opt to simply add a prefix to all user-submitted ID attributes so you may opt to simply add a prefix to all user-submitted ID attributes so
that they are still usable, but will not conflict with core page IDs. that they are still usable, but will not conflict with core page IDs.
Example: setting the directive to 'user_' will result in a user submitted Example: setting the directive to 'user_' will result in a user submitted
'foo' to become 'user_foo' Be sure to set %HTML.EnableAttrID to true 'foo' to become 'user_foo' Be sure to set %HTML.EnableAttrID to true
before using this. before using this.

26
library/HTMLPurifier/ConfigSchema/schema/Attr.IDPrefixLocal.txt
View File

@@ -1,13 +1,13 @@
Attr.IDPrefixLocal Attr.IDPrefixLocal
TYPE: string TYPE: string
VERSION: 1.2.0 VERSION: 1.2.0
DEFAULT: '' DEFAULT: ''
--DESCRIPTION-- --DESCRIPTION--
Temporary prefix for IDs used in conjunction with %Attr.IDPrefix. If you Temporary prefix for IDs used in conjunction with %Attr.IDPrefix. If you
need to allow multiple sets of user content on web page, you may need to need to allow multiple sets of user content on web page, you may need to
have a seperate prefix that changes with each iteration. This way, have a seperate prefix that changes with each iteration. This way,
seperately submitted user content displayed on the same page doesn't seperately submitted user content displayed on the same page doesn't
clobber each other. Ideal values are unique identifiers for the content it clobber each other. Ideal values are unique identifiers for the content it
represents (i.e. the id of the row in the database). Be sure to add a represents (i.e. the id of the row in the database). Be sure to add a
seperator (like an underscore) at the end. Warning: this directive will seperator (like an underscore) at the end. Warning: this directive will
not work unless %Attr.IDPrefix is set to a non-empty value! not work unless %Attr.IDPrefix is set to a non-empty value!

4
library/HTMLPurifier/ConfigSchema/schema/Attr.txt
View File

@@ -1,2 +1,2 @@
Attr Attr
DESCRIPTION: Features regarding attribute validation. DESCRIPTION: Features regarding attribute validation.

60
library/HTMLPurifier/ConfigSchema/schema/AutoFormat.AutoParagraph.txt
View File

@@ -1,30 +1,30 @@
AutoFormat.AutoParagraph AutoFormat.AutoParagraph
TYPE: bool TYPE: bool
VERSION: 2.0.1 VERSION: 2.0.1
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This directive turns on auto-paragraphing, where double newlines are This directive turns on auto-paragraphing, where double newlines are
converted in to paragraphs whenever possible. Auto-paragraphing: converted in to paragraphs whenever possible. Auto-paragraphing:
</p> </p>
<ul> <ul>
<li>Always applies to inline elements or text in the root node,</li> <li>Always applies to inline elements or text in the root node,</li>
<li>Applies to inline elements or text with double newlines in nodes <li>Applies to inline elements or text with double newlines in nodes
that allow paragraph tags,</li> that allow paragraph tags,</li>
<li>Applies to double newlines in paragraph tags</li> <li>Applies to double newlines in paragraph tags</li>
</ul> </ul>
<p> <p>
<code>p</code> tags must be allowed for this directive to take effect. <code>p</code> tags must be allowed for this directive to take effect.
We do not use <code>br</code> tags for paragraphing, as that is We do not use <code>br</code> tags for paragraphing, as that is
semantically incorrect. semantically incorrect.
</p> </p>
<p> <p>
To prevent auto-paragraphing as a content-producer, refrain from using To prevent auto-paragraphing as a content-producer, refrain from using
double-newlines except to specify a new paragraph or in contexts where double-newlines except to specify a new paragraph or in contexts where
it has special meaning (whitespace usually has no meaning except in it has special meaning (whitespace usually has no meaning except in
tags like <code>pre</code>, so this should not be difficult.) To prevent tags like <code>pre</code>, so this should not be difficult.) To prevent
the paragraphing of inline text adjacent to block elements, wrap them the paragraphing of inline text adjacent to block elements, wrap them
in <code>div</code> tags (the behavior is slightly different outside of in <code>div</code> tags (the behavior is slightly different outside of
the root node.) the root node.)
</p> </p>

24
library/HTMLPurifier/ConfigSchema/schema/AutoFormat.Custom.txt
View File

@@ -1,12 +1,12 @@
AutoFormat.Custom AutoFormat.Custom
TYPE: list TYPE: list
VERSION: 2.0.1 VERSION: 2.0.1
DEFAULT: array() DEFAULT: array()
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This directive can be used to add custom auto-format injectors. This directive can be used to add custom auto-format injectors.
Specify an array of injector names (class name minus the prefix) Specify an array of injector names (class name minus the prefix)
or concrete implementations. Injector class must exist. or concrete implementations. Injector class must exist.
</p> </p>

24
library/HTMLPurifier/ConfigSchema/schema/AutoFormat.Linkify.txt
View File

@@ -1,12 +1,12 @@
AutoFormat.Linkify AutoFormat.Linkify
TYPE: bool TYPE: bool
VERSION: 2.0.1 VERSION: 2.0.1
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This directive turns on linkification, auto-linking http, ftp and This directive turns on linkification, auto-linking http, ftp and
https URLs. <code>a</code> tags with the <code>href</code> attribute https URLs. <code>a</code> tags with the <code>href</code> attribute
must be allowed. must be allowed.
</p> </p>

24
library/HTMLPurifier/ConfigSchema/schema/AutoFormat.PurifierLinkify.txt
View File

@@ -1,12 +1,12 @@
AutoFormat.PurifierLinkify AutoFormat.PurifierLinkify
TYPE: bool TYPE: bool
VERSION: 2.0.1 VERSION: 2.0.1
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Internal auto-formatter that converts configuration directives in Internal auto-formatter that converts configuration directives in
syntax <a>%Namespace.Directive</a> to links. <code>a</code> tags syntax <a>%Namespace.Directive</a> to links. <code>a</code> tags
with the <code>href</code> attribute must be allowed. with the <code>href</code> attribute must be allowed.
</p> </p>

4
library/HTMLPurifier/ConfigSchema/schema/AutoFormat.txt
View File

@@ -1,2 +1,2 @@
AutoFormat AutoFormat
DESCRIPTION: Configuration for activating auto-formatting functionality (also known as <code>Injector</code>s) DESCRIPTION: Configuration for activating auto-formatting functionality (also known as <code>Injector</code>s)

24
library/HTMLPurifier/ConfigSchema/schema/AutoFormatParam.PurifierLinkifyDocURL.txt
View File

@@ -1,12 +1,12 @@
AutoFormatParam.PurifierLinkifyDocURL AutoFormatParam.PurifierLinkifyDocURL
TYPE: string TYPE: string
VERSION: 2.0.1 VERSION: 2.0.1
DEFAULT: '#%s' DEFAULT: '#%s'
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Location of configuration documentation to link to, let %s substitute Location of configuration documentation to link to, let %s substitute
into the configuration's namespace and directive names sans the percent into the configuration's namespace and directive names sans the percent
sign. sign.
</p> </p>

4
library/HTMLPurifier/ConfigSchema/schema/AutoFormatParam.txt
View File

@@ -1,2 +1,2 @@
AutoFormatParam AutoFormatParam
DESCRIPTION: Configuration for customizing auto-formatting functionality DESCRIPTION: Configuration for customizing auto-formatting functionality

22
library/HTMLPurifier/ConfigSchema/schema/CSS.DefinitionRev.txt
View File

@@ -1,11 +1,11 @@
CSS.DefinitionRev CSS.DefinitionRev
TYPE: int TYPE: int
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: 1 DEFAULT: 1
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Revision identifier for your custom definition. See Revision identifier for your custom definition. See
%HTML.DefinitionRev for details. %HTML.DefinitionRev for details.
</p> </p>

20
library/HTMLPurifier/ConfigSchema/schema/CSS.Proprietary.txt
View File

@@ -1,10 +1,10 @@
CSS.Proprietary CSS.Proprietary
TYPE: bool TYPE: bool
VERSION: 3.0.0 VERSION: 3.0.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Whether or not to allow safe, proprietary CSS values. Whether or not to allow safe, proprietary CSS values.
</p> </p>

4
library/HTMLPurifier/ConfigSchema/schema/CSS.txt
View File

@@ -1,2 +1,2 @@
CSS CSS
DESCRIPTION: Configuration regarding allowed CSS. DESCRIPTION: Configuration regarding allowed CSS.

26
library/HTMLPurifier/ConfigSchema/schema/Cache.DefinitionImpl.txt
View File

@@ -1,13 +1,13 @@
Cache.DefinitionImpl Cache.DefinitionImpl
TYPE: string/null TYPE: string/null
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: 'Serializer' DEFAULT: 'Serializer'
--DESCRIPTION-- --DESCRIPTION--
This directive defines which method to use when caching definitions, This directive defines which method to use when caching definitions,
the complex data-type that makes HTML Purifier tick. Set to null the complex data-type that makes HTML Purifier tick. Set to null
to disable caching (not recommended, as you will see a definite to disable caching (not recommended, as you will see a definite
performance degradation). performance degradation).
--ALIASES-- --ALIASES--
Core.DefinitionCache Core.DefinitionCache

26
library/HTMLPurifier/ConfigSchema/schema/Cache.SerializerPath.txt
View File

@@ -1,13 +1,13 @@
Cache.SerializerPath Cache.SerializerPath
TYPE: string/null TYPE: string/null
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Absolute path with no trailing slash to store serialized definitions in. Absolute path with no trailing slash to store serialized definitions in.
Default is within the Default is within the
HTML Purifier library inside DefinitionCache/Serializer. This HTML Purifier library inside DefinitionCache/Serializer. This
path must be writable by the webserver. path must be writable by the webserver.
</p> </p>

4
library/HTMLPurifier/ConfigSchema/schema/Cache.txt
View File

@@ -1,2 +1,2 @@
Cache Cache
DESCRIPTION: Configuration for DefinitionCache and related subclasses. DESCRIPTION: Configuration for DefinitionCache and related subclasses.

26
library/HTMLPurifier/ConfigSchema/schema/Core.AggressivelyFixLt.txt
View File

@@ -1,13 +1,13 @@
Core.AggressivelyFixLt Core.AggressivelyFixLt
TYPE: bool TYPE: bool
VERSION: 2.1.0 VERSION: 2.1.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
This directive enables aggressive pre-filter fixes HTML Purifier can This directive enables aggressive pre-filter fixes HTML Purifier can
perform in order to ensure that open angled-brackets do not get killed perform in order to ensure that open angled-brackets do not get killed
during parsing stage. Enabling this will result in two preg_replace_callback during parsing stage. Enabling this will result in two preg_replace_callback
calls and one preg_replace call for every bit of HTML passed through here. calls and one preg_replace call for every bit of HTML passed through here.
It is not necessary and will have no effect for PHP 4. It is not necessary and will have no effect for PHP 4.

22
library/HTMLPurifier/ConfigSchema/schema/Core.CollectErrors.txt
View File

@@ -1,11 +1,11 @@
Core.CollectErrors Core.CollectErrors
TYPE: bool TYPE: bool
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
Whether or not to collect errors found while filtering the document. This Whether or not to collect errors found while filtering the document. This
is a useful way to give feedback to your users. <strong>Warning:</strong> is a useful way to give feedback to your users. <strong>Warning:</strong>
Currently this feature is very patchy and experimental, with lots of Currently this feature is very patchy and experimental, with lots of
possible error messages not yet implemented. It will not cause any possible error messages not yet implemented. It will not cause any
problems, but it may not help your users either. problems, but it may not help your users either.

58
library/HTMLPurifier/ConfigSchema/schema/Core.ColorKeywords.txt
View File

@@ -1,29 +1,29 @@
Core.ColorKeywords Core.ColorKeywords
TYPE: hash TYPE: hash
VERSION: 2.0.0 VERSION: 2.0.0
--DEFAULT-- --DEFAULT--
array ( array (
'maroon' => '#800000', 'maroon' => '#800000',
'red' => '#FF0000', 'red' => '#FF0000',
'orange' => '#FFA500', 'orange' => '#FFA500',
'yellow' => '#FFFF00', 'yellow' => '#FFFF00',
'olive' => '#808000', 'olive' => '#808000',
'purple' => '#800080', 'purple' => '#800080',
'fuchsia' => '#FF00FF', 'fuchsia' => '#FF00FF',
'white' => '#FFFFFF', 'white' => '#FFFFFF',
'lime' => '#00FF00', 'lime' => '#00FF00',
'green' => '#008000', 'green' => '#008000',
'navy' => '#000080', 'navy' => '#000080',
'blue' => '#0000FF', 'blue' => '#0000FF',
'aqua' => '#00FFFF', 'aqua' => '#00FFFF',
'teal' => '#008080', 'teal' => '#008080',
'black' => '#000000', 'black' => '#000000',
'silver' => '#C0C0C0', 'silver' => '#C0C0C0',
'gray' => '#808080', 'gray' => '#808080',
) )
--DESCRIPTION-- --DESCRIPTION--
Lookup array of color names to six digit hexadecimal number corresponding Lookup array of color names to six digit hexadecimal number corresponding
to color, with preceding hash mark. Used when parsing colors. to color, with preceding hash mark. Used when parsing colors.

26
library/HTMLPurifier/ConfigSchema/schema/Core.ConvertDocumentToFragment.txt
View File

@@ -1,13 +1,13 @@
Core.ConvertDocumentToFragment Core.ConvertDocumentToFragment
TYPE: bool TYPE: bool
DEFAULT: true DEFAULT: true
--DESCRIPTION-- --DESCRIPTION--
This parameter determines whether or not the filter should convert This parameter determines whether or not the filter should convert
input that is a full document with html and body tags to a fragment input that is a full document with html and body tags to a fragment
of just the contents of a body tag. This parameter is simply something of just the contents of a body tag. This parameter is simply something
HTML Purifier can do during an edge-case: for most inputs, this HTML Purifier can do during an edge-case: for most inputs, this
processing is not necessary. processing is not necessary.
--ALIASES-- --ALIASES--
Core.AcceptFullDocuments Core.AcceptFullDocuments

34
library/HTMLPurifier/ConfigSchema/schema/Core.DirectLexLineNumberSyncInterval.txt
View File

@@ -1,17 +1,17 @@
Core.DirectLexLineNumberSyncInterval Core.DirectLexLineNumberSyncInterval
TYPE: int TYPE: int
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: 0 DEFAULT: 0
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Specifies the number of tokens the DirectLex line number tracking Specifies the number of tokens the DirectLex line number tracking
implementations should process before attempting to resyncronize the implementations should process before attempting to resyncronize the
current line count by manually counting all previous new-lines. When current line count by manually counting all previous new-lines. When
at 0, this functionality is disabled. Lower values will decrease at 0, this functionality is disabled. Lower values will decrease
performance, and this is only strictly necessary if the counting performance, and this is only strictly necessary if the counting
algorithm is buggy (in which case you should report it as a bug). algorithm is buggy (in which case you should report it as a bug).
This has no effect when %Core.MaintainLineNumbers is disabled or DirectLex is This has no effect when %Core.MaintainLineNumbers is disabled or DirectLex is
not being used. not being used.
</p> </p>

28
library/HTMLPurifier/ConfigSchema/schema/Core.Encoding.txt
View File

@@ -1,14 +1,14 @@
Core.Encoding Core.Encoding
TYPE: istring TYPE: istring
DEFAULT: 'utf-8' DEFAULT: 'utf-8'
--DESCRIPTION-- --DESCRIPTION--
If for some reason you are unable to convert all webpages to UTF-8, you can If for some reason you are unable to convert all webpages to UTF-8, you can
use this directive as a stop-gap compatibility change to let HTML Purifier use this directive as a stop-gap compatibility change to let HTML Purifier
deal with non UTF-8 input. This technique has notable deficiencies: deal with non UTF-8 input. This technique has notable deficiencies:
absolutely no characters outside of the selected character encoding will be absolutely no characters outside of the selected character encoding will be
preserved, not even the ones that have been ampersand escaped (this is due preserved, not even the ones that have been ampersand escaped (this is due
to a UTF-8 specific <em>feature</em> that automatically resolves all to a UTF-8 specific <em>feature</em> that automatically resolves all
entities), making it pretty useless for anything except the most I18N-blind entities), making it pretty useless for anything except the most I18N-blind
applications, although %Core.EscapeNonASCIICharacters offers fixes this applications, although %Core.EscapeNonASCIICharacters offers fixes this
trouble with another tradeoff. This directive only accepts ISO-8859-1 if trouble with another tradeoff. This directive only accepts ISO-8859-1 if
iconv is not enabled. iconv is not enabled.

18
library/HTMLPurifier/ConfigSchema/schema/Core.EscapeInvalidChildren.txt
View File

@@ -1,9 +1,9 @@
Core.EscapeInvalidChildren Core.EscapeInvalidChildren
TYPE: bool TYPE: bool
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
When true, a child is found that is not allowed in the context of the When true, a child is found that is not allowed in the context of the
parent element will be transformed into text as if it were ASCII. When parent element will be transformed into text as if it were ASCII. When
false, that element and all internal tags will be dropped, though text will false, that element and all internal tags will be dropped, though text will
be preserved. There is no option for dropping the element but preserving be preserved. There is no option for dropping the element but preserving
child nodes. child nodes.

12
library/HTMLPurifier/ConfigSchema/schema/Core.EscapeInvalidTags.txt
View File

@@ -1,6 +1,6 @@
Core.EscapeInvalidTags Core.EscapeInvalidTags
TYPE: bool TYPE: bool
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
When true, invalid tags will be written back to the document as plain text. When true, invalid tags will be written back to the document as plain text.
Otherwise, they are silently dropped. Otherwise, they are silently dropped.

24
library/HTMLPurifier/ConfigSchema/schema/Core.EscapeNonASCIICharacters.txt
View File

@@ -1,12 +1,12 @@
Core.EscapeNonASCIICharacters Core.EscapeNonASCIICharacters
TYPE: bool TYPE: bool
VERSION: 1.4.0 VERSION: 1.4.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
This directive overcomes a deficiency in %Core.Encoding by blindly This directive overcomes a deficiency in %Core.Encoding by blindly
converting all non-ASCII characters into decimal numeric entities before converting all non-ASCII characters into decimal numeric entities before
converting it to its native encoding. This means that even characters that converting it to its native encoding. This means that even characters that
can be expressed in the non-UTF-8 encoding will be entity-ized, which can can be expressed in the non-UTF-8 encoding will be entity-ized, which can
be a real downer for encodings like Big5. It also assumes that the ASCII be a real downer for encodings like Big5. It also assumes that the ASCII
repetoire is available, although this is the case for almost all encodings. repetoire is available, although this is the case for almost all encodings.
Anyway, use UTF-8! Anyway, use UTF-8!

38
library/HTMLPurifier/ConfigSchema/schema/Core.HiddenElements.txt
View File

@@ -1,19 +1,19 @@
Core.HiddenElements Core.HiddenElements
TYPE: lookup TYPE: lookup
--DEFAULT-- --DEFAULT--
array ( array (
'script' => true, 'script' => true,
'style' => true, 'style' => true,
) )
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This directive is a lookup array of elements which should have their This directive is a lookup array of elements which should have their
contents removed when they are not allowed by the HTML definition. contents removed when they are not allowed by the HTML definition.
For example, the contents of a <code>script</code> tag are not For example, the contents of a <code>script</code> tag are not
normally shown in a document, so if script tags are to be removed, normally shown in a document, so if script tags are to be removed,
their contents should be removed to. This is opposed to a <code>b</code> their contents should be removed to. This is opposed to a <code>b</code>
tag, which defines some presentational changes but does not hide its tag, which defines some presentational changes but does not hide its
contents. contents.
</p> </p>

22
library/HTMLPurifier/ConfigSchema/schema/Core.Language.txt
View File

@@ -1,11 +1,11 @@
Core.Language Core.Language
TYPE: string TYPE: string
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: 'en' DEFAULT: 'en'
--DESCRIPTION-- --DESCRIPTION--
ISO 639 language code for localizable things in HTML Purifier to use, ISO 639 language code for localizable things in HTML Purifier to use,
which is mainly error reporting. There is currently only an English (en) which is mainly error reporting. There is currently only an English (en)
translation, so this directive is currently useless. translation, so this directive is currently useless.

66
library/HTMLPurifier/ConfigSchema/schema/Core.LexerImpl.txt
View File

@@ -1,33 +1,33 @@
Core.LexerImpl Core.LexerImpl
TYPE: mixed/null TYPE: mixed/null
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This parameter determines what lexer implementation can be used. The This parameter determines what lexer implementation can be used. The
valid values are: valid values are:
</p> </p>
<dl> <dl>
<dt><em>null</em></dt> <dt><em>null</em></dt>
<dd> <dd>
Recommended, the lexer implementation will be auto-detected based on Recommended, the lexer implementation will be auto-detected based on
your PHP-version and configuration. your PHP-version and configuration.
</dd> </dd>
<dt><em>string</em> lexer identifier</dt> <dt><em>string</em> lexer identifier</dt>
<dd> <dd>
This is a slim way of manually overridding the implementation. This is a slim way of manually overridding the implementation.
Currently recognized values are: DOMLex (the default PHP5 Currently recognized values are: DOMLex (the default PHP5
implementation) implementation)
and DirectLex (the default PHP4 implementation). Only use this if and DirectLex (the default PHP4 implementation). Only use this if
you know what you are doing: usually, the auto-detection will you know what you are doing: usually, the auto-detection will
manage things for cases you aren't even aware of. manage things for cases you aren't even aware of.
</dd> </dd>
<dt><em>object</em> lexer instance</dt> <dt><em>object</em> lexer instance</dt>
<dd> <dd>
Super-advanced: you can specify your own, custom, implementation that Super-advanced: you can specify your own, custom, implementation that
implements the interface defined by <code>HTMLPurifier_Lexer</code>. implements the interface defined by <code>HTMLPurifier_Lexer</code>.
I may remove this option simply because I don't expect anyone I may remove this option simply because I don't expect anyone
to use it. to use it.
</dd> </dd>
</dl> </dl>

32
library/HTMLPurifier/ConfigSchema/schema/Core.MaintainLineNumbers.txt
View File

@@ -1,16 +1,16 @@
Core.MaintainLineNumbers Core.MaintainLineNumbers
TYPE: bool/null TYPE: bool/null
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
If true, HTML Purifier will add line number information to all tokens. If true, HTML Purifier will add line number information to all tokens.
This is useful when error reporting is turned on, but can result in This is useful when error reporting is turned on, but can result in
significant performance degradation and should not be used when significant performance degradation and should not be used when
unnecessary. This directive must be used with the DirectLex lexer, unnecessary. This directive must be used with the DirectLex lexer,
as the DOMLex lexer does not (yet) support this functionality. as the DOMLex lexer does not (yet) support this functionality.
If the value is null, an appropriate value will be selected based If the value is null, an appropriate value will be selected based
on other configuration. on other configuration.
</p> </p>

24
library/HTMLPurifier/ConfigSchema/schema/Core.RemoveInvalidImg.txt
View File

@@ -1,12 +1,12 @@
Core.RemoveInvalidImg Core.RemoveInvalidImg
TYPE: bool TYPE: bool
DEFAULT: true DEFAULT: true
VERSION: 1.3.0 VERSION: 1.3.0
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This directive enables pre-emptive URI checking in <code>img</code> This directive enables pre-emptive URI checking in <code>img</code>
tags, as the attribute validation strategy is not authorized to tags, as the attribute validation strategy is not authorized to
remove elements from the document. Revert to pre-1.3.0 behavior by setting to false. remove elements from the document. Revert to pre-1.3.0 behavior by setting to false.
</p> </p>

22
library/HTMLPurifier/ConfigSchema/schema/Core.RemoveScriptContents.txt
View File

@@ -1,11 +1,11 @@
Core.RemoveScriptContents Core.RemoveScriptContents
TYPE: bool/null TYPE: bool/null
DEFAULT: NULL DEFAULT: NULL
VERSION: 2.0.0 VERSION: 2.0.0
DEPRECATED-VERSION: 2.1.0 DEPRECATED-VERSION: 2.1.0
DEPRECATED-USE: Core.HiddenElements DEPRECATED-USE: Core.HiddenElements
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This directive enables HTML Purifier to remove not only script tags This directive enables HTML Purifier to remove not only script tags
but all of their contents. but all of their contents.
</p> </p>

4
library/HTMLPurifier/ConfigSchema/schema/Core.txt
View File

@@ -1,2 +1,2 @@
Core Core
DESCRIPTION: Core features that are always available. DESCRIPTION: Core features that are always available.

4
library/HTMLPurifier/ConfigSchema/schema/Filter.txt
View File

@@ -1,2 +1,2 @@
Filter Filter
DESCRIPTION: Directives for turning filters on and off, or specifying custom filters. DESCRIPTION: Directives for turning filters on and off, or specifying custom filters.

28
library/HTMLPurifier/ConfigSchema/schema/FilterParam.ExtractStyleBlocksEscaping.txt
View File

@@ -1,14 +1,14 @@
FilterParam.ExtractStyleBlocksEscaping FilterParam.ExtractStyleBlocksEscaping
TYPE: bool TYPE: bool
VERSION: 3.0.0 VERSION: 3.0.0
DEFAULT: true DEFAULT: true
ALIASES: Filter.ExtractStyleBlocksEscaping ALIASES: Filter.ExtractStyleBlocksEscaping
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Whether or not to escape the dangerous characters &lt;, &gt; and &amp; Whether or not to escape the dangerous characters &lt;, &gt; and &amp;
as \3C, \3E and \26, respectively. This is can be safely set to false as \3C, \3E and \26, respectively. This is can be safely set to false
if the contents of StyleBlocks will be placed in an external stylesheet, if the contents of StyleBlocks will be placed in an external stylesheet,
where there is no risk of it being interpreted as HTML. where there is no risk of it being interpreted as HTML.
</p> </p>

56
library/HTMLPurifier/ConfigSchema/schema/FilterParam.ExtractStyleBlocksScope.txt
View File

@@ -1,28 +1,28 @@
FilterParam.ExtractStyleBlocksScope FilterParam.ExtractStyleBlocksScope
TYPE: string/null TYPE: string/null
VERSION: 3.0.0 VERSION: 3.0.0
DEFAULT: NULL DEFAULT: NULL
ALIASES: Filter.ExtractStyleBlocksScope ALIASES: Filter.ExtractStyleBlocksScope
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
If you would like users to be able to define external stylesheets, but If you would like users to be able to define external stylesheets, but
only allow them to specify CSS declarations for a specific node and only allow them to specify CSS declarations for a specific node and
prevent them from fiddling with other elements, use this directive. prevent them from fiddling with other elements, use this directive.
It accepts any valid CSS selector, and will prepend this to any It accepts any valid CSS selector, and will prepend this to any
CSS declaration extracted from the document. For example, if this CSS declaration extracted from the document. For example, if this
directive is set to <code>#user-content</code> and a user uses the directive is set to <code>#user-content</code> and a user uses the
selector <code>a:hover</code>, the final selector will be selector <code>a:hover</code>, the final selector will be
<code>#user-content a:hover</code>. <code>#user-content a:hover</code>.
</p> </p>
<p> <p>
The comma shorthand may be used; consider the above example, with The comma shorthand may be used; consider the above example, with
<code>#user-content, #user-content2</code>, the final selector will <code>#user-content, #user-content2</code>, the final selector will
be <code>#user-content a:hover, #user-content2 a:hover</code>. be <code>#user-content a:hover, #user-content2 a:hover</code>.
</p> </p>
<p> <p>
<strong>Warning:</strong> It is possible for users to bypass this measure <strong>Warning:</strong> It is possible for users to bypass this measure
using a naughty + selector. This is a bug in CSS Tidy 1.3, not HTML using a naughty + selector. This is a bug in CSS Tidy 1.3, not HTML
Purifier, and I am working to get it fixed. Until then, HTML Purifier Purifier, and I am working to get it fixed. Until then, HTML Purifier
performs a basic check to prevent this. performs a basic check to prevent this.
</p> </p>

44
library/HTMLPurifier/ConfigSchema/schema/HTML.Allowed.txt
View File

@@ -1,22 +1,22 @@
HTML.Allowed HTML.Allowed
TYPE: itext/null TYPE: itext/null
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
This is a convenience directive that rolls the functionality of This is a convenience directive that rolls the functionality of
%HTML.AllowedElements and %HTML.AllowedAttributes into one directive. %HTML.AllowedElements and %HTML.AllowedAttributes into one directive.
Specify elements and attributes that are allowed using: Specify elements and attributes that are allowed using:
<code>element1[attr1|attr2],element2...</code>. You can also use <code>element1[attr1|attr2],element2...</code>. You can also use
newlines instead of commas to separate elements. newlines instead of commas to separate elements.
</p> </p>
<p> <p>
<strong>Warning</strong>: <strong>Warning</strong>:
All of the constraints on the component directives are still enforced. All of the constraints on the component directives are still enforced.
The syntax is a <em>subset</em> of TinyMCE's <code>valid_elements</code> The syntax is a <em>subset</em> of TinyMCE's <code>valid_elements</code>
whitelist: directly copy-pasting it here will probably result in whitelist: directly copy-pasting it here will probably result in
broken whitelists. If %HTML.AllowedElements or %HTML.AllowedAttributes broken whitelists. If %HTML.AllowedElements or %HTML.AllowedAttributes
are set, this directive has no effect. are set, this directive has no effect.
</p> </p>

38
library/HTMLPurifier/ConfigSchema/schema/HTML.AllowedAttributes.txt
View File

@@ -1,19 +1,19 @@
HTML.AllowedAttributes HTML.AllowedAttributes
TYPE: lookup/null TYPE: lookup/null
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
If HTML Purifier's attribute set is unsatisfactory, overload it! If HTML Purifier's attribute set is unsatisfactory, overload it!
The syntax is "tag.attr" or "*.attr" for the global attributes The syntax is "tag.attr" or "*.attr" for the global attributes
(style, id, class, dir, lang, xml:lang). (style, id, class, dir, lang, xml:lang).
</p> </p>
<p> <p>
<strong>Warning:</strong> If another directive conflicts with the <strong>Warning:</strong> If another directive conflicts with the
elements here, <em>that</em> directive will win and override. For elements here, <em>that</em> directive will win and override. For
example, %HTML.EnableAttrID will take precedence over *.id in this example, %HTML.EnableAttrID will take precedence over *.id in this
directive. You must set that directive to true before you can use directive. You must set that directive to true before you can use
IDs at all. IDs at all.
</p> </p>

36
library/HTMLPurifier/ConfigSchema/schema/HTML.AllowedElements.txt
View File

@@ -1,18 +1,18 @@
HTML.AllowedElements HTML.AllowedElements
TYPE: lookup/null TYPE: lookup/null
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
If HTML Purifier's tag set is unsatisfactory for your needs, you If HTML Purifier's tag set is unsatisfactory for your needs, you
can overload it with your own list of tags to allow. Note that this can overload it with your own list of tags to allow. Note that this
method is subtractive: it does its job by taking away from HTML Purifier method is subtractive: it does its job by taking away from HTML Purifier
usual feature set, so you cannot add a tag that HTML Purifier never usual feature set, so you cannot add a tag that HTML Purifier never
supported in the first place (like embed, form or head). If you supported in the first place (like embed, form or head). If you
change this, you probably also want to change %HTML.AllowedAttributes. change this, you probably also want to change %HTML.AllowedAttributes.
</p> </p>
<p> <p>
<strong>Warning:</strong> If another directive conflicts with the <strong>Warning:</strong> If another directive conflicts with the
elements here, <em>that</em> directive will win and override. elements here, <em>that</em> directive will win and override.
</p> </p>

40
library/HTMLPurifier/ConfigSchema/schema/HTML.AllowedModules.txt
View File

@@ -1,20 +1,20 @@
HTML.AllowedModules HTML.AllowedModules
TYPE: lookup/null TYPE: lookup/null
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
A doctype comes with a set of usual modules to use. Without having A doctype comes with a set of usual modules to use. Without having
to mucking about with the doctypes, you can quickly activate or to mucking about with the doctypes, you can quickly activate or
disable these modules by specifying which modules you wish to allow disable these modules by specifying which modules you wish to allow
with this directive. This is most useful for unit testing specific with this directive. This is most useful for unit testing specific
modules, although end users may find it useful for their own ends. modules, although end users may find it useful for their own ends.
</p> </p>
<p> <p>
If you specify a module that does not exist, the manager will silently If you specify a module that does not exist, the manager will silently
fail to use it, so be careful! User-defined modules are not affected fail to use it, so be careful! User-defined modules are not affected
by this directive. Modules defined in %HTML.CoreModules are not by this directive. Modules defined in %HTML.CoreModules are not
affected by this directive. affected by this directive.
</p> </p>

36
library/HTMLPurifier/ConfigSchema/schema/HTML.BlockWrapper.txt
View File

@@ -1,18 +1,18 @@
HTML.BlockWrapper HTML.BlockWrapper
TYPE: string TYPE: string
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: 'p' DEFAULT: 'p'
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
String name of element to wrap inline elements that are inside a block String name of element to wrap inline elements that are inside a block
context. This only occurs in the children of blockquote in strict mode. context. This only occurs in the children of blockquote in strict mode.
</p> </p>
<p> <p>
Example: by default value, Example: by default value,
<code>&lt;blockquote&gt;Foo&lt;/blockquote&gt;</code> would become <code>&lt;blockquote&gt;Foo&lt;/blockquote&gt;</code> would become
<code>&lt;blockquote&gt;&lt;p&gt;Foo&lt;/p&gt;&lt;/blockquote&gt;</code>. <code>&lt;blockquote&gt;&lt;p&gt;Foo&lt;/p&gt;&lt;/blockquote&gt;</code>.
The <code>&lt;p&gt;</code> tags can be replaced with whatever you desire, The <code>&lt;p&gt;</code> tags can be replaced with whatever you desire,
as long as it is a block level element. as long as it is a block level element.
</p> </p>

46
library/HTMLPurifier/ConfigSchema/schema/HTML.CoreModules.txt
View File

@@ -1,23 +1,23 @@
HTML.CoreModules HTML.CoreModules
TYPE: lookup TYPE: lookup
VERSION: 2.0.0 VERSION: 2.0.0
--DEFAULT-- --DEFAULT--
array ( array (
'Structure' => true, 'Structure' => true,
'Text' => true, 'Text' => true,
'Hypertext' => true, 'Hypertext' => true,
'List' => true, 'List' => true,
'NonXMLCommonAttributes' => true, 'NonXMLCommonAttributes' => true,
'XMLCommonAttributes' => true, 'XMLCommonAttributes' => true,
'CommonAttributes' => true, 'CommonAttributes' => true,
) )
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Certain modularized doctypes (XHTML, namely), have certain modules Certain modularized doctypes (XHTML, namely), have certain modules
that must be included for the doctype to be an conforming document that must be included for the doctype to be an conforming document
type: put those modules here. By default, XHTML's core modules type: put those modules here. By default, XHTML's core modules
are used. You can set this to a blank array to disable core module are used. You can set this to a blank array to disable core module
protection, but this is not recommended. protection, but this is not recommended.
</p> </p>

20
library/HTMLPurifier/ConfigSchema/schema/HTML.CustomDoctype.txt
View File

@@ -1,10 +1,10 @@
HTML.CustomDoctype HTML.CustomDoctype
TYPE: string/null TYPE: string/null
VERSION: 2.0.1 VERSION: 2.0.1
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
A custom doctype for power-users who defined there own document A custom doctype for power-users who defined there own document
type. This directive only applies when %HTML.Doctype is blank. type. This directive only applies when %HTML.Doctype is blank.

66
library/HTMLPurifier/ConfigSchema/schema/HTML.DefinitionID.txt
View File

@@ -1,33 +1,33 @@
HTML.DefinitionID HTML.DefinitionID
TYPE: string/null TYPE: string/null
DEFAULT: NULL DEFAULT: NULL
VERSION: 2.0.0 VERSION: 2.0.0
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Unique identifier for a custom-built HTML definition. If you edit Unique identifier for a custom-built HTML definition. If you edit
the raw version of the HTMLDefinition, introducing changes that the the raw version of the HTMLDefinition, introducing changes that the
configuration object does not reflect, you must specify this variable. configuration object does not reflect, you must specify this variable.
If you change your custom edits, you should change this directive, or If you change your custom edits, you should change this directive, or
clear your cache. Example: clear your cache. Example:
</p> </p>
<pre> <pre>
$config = HTMLPurifier_Config::createDefault(); $config = HTMLPurifier_Config::createDefault();
$config->set('HTML', 'DefinitionID', '1'); $config->set('HTML', 'DefinitionID', '1');
$def = $config->getHTMLDefinition(); $def = $config->getHTMLDefinition();
$def->addAttribute('a', 'tabindex', 'Number'); $def->addAttribute('a', 'tabindex', 'Number');
</pre> </pre>
<p> <p>
In the above example, the configuration is still at the defaults, but In the above example, the configuration is still at the defaults, but
using the advanced API, an extra attribute has been added. The using the advanced API, an extra attribute has been added. The
configuration object normally has no way of knowing that this change configuration object normally has no way of knowing that this change
has taken place, so it needs an extra directive: %HTML.DefinitionID. has taken place, so it needs an extra directive: %HTML.DefinitionID.
If someone else attempts to use the default configuration, these two If someone else attempts to use the default configuration, these two
pieces of code will not clobber each other in the cache, since one has pieces of code will not clobber each other in the cache, since one has
an extra directive attached to it. an extra directive attached to it.
</p> </p>
<p> <p>
You <em>must</em> specify a value to this directive to use the You <em>must</em> specify a value to this directive to use the
advanced API features. advanced API features.
</p> </p>

32
library/HTMLPurifier/ConfigSchema/schema/HTML.DefinitionRev.txt
View File

@@ -1,16 +1,16 @@
HTML.DefinitionRev HTML.DefinitionRev
TYPE: int TYPE: int
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: 1 DEFAULT: 1
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Revision identifier for your custom definition specified in Revision identifier for your custom definition specified in
%HTML.DefinitionID. This serves the same purpose: uniquely identifying %HTML.DefinitionID. This serves the same purpose: uniquely identifying
your custom definition, but this one does so in a chronological your custom definition, but this one does so in a chronological
context: revision 3 is more up-to-date then revision 2. Thus, when context: revision 3 is more up-to-date then revision 2. Thus, when
this gets incremented, the cache handling is smart enough to clean this gets incremented, the cache handling is smart enough to clean
up any older revisions of your definition as well as flush the up any older revisions of your definition as well as flush the
cache. cache.
</p> </p>

20
library/HTMLPurifier/ConfigSchema/schema/HTML.Doctype.txt
View File

@@ -1,10 +1,10 @@
HTML.Doctype HTML.Doctype
TYPE: string/null TYPE: string/null
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
Doctype to use during filtering. Technically speaking this is not actually Doctype to use during filtering. Technically speaking this is not actually
a doctype (as it does not identify a corresponding DTD), but we are using a doctype (as it does not identify a corresponding DTD), but we are using
this name for sake of simplicity. When non-blank, this will override any this name for sake of simplicity. When non-blank, this will override any
older directives like %HTML.XHTML or %HTML.Strict. older directives like %HTML.XHTML or %HTML.Strict.
--ALLOWED-- --ALLOWED--
'HTML 4.01 Transitional', 'HTML 4.01 Strict', 'XHTML 1.0 Transitional', 'XHTML 1.0 Strict', 'XHTML 1.1' 'HTML 4.01 Transitional', 'HTML 4.01 Strict', 'XHTML 1.0 Transitional', 'XHTML 1.0 Strict', 'XHTML 1.1'

24
library/HTMLPurifier/ConfigSchema/schema/HTML.Parent.txt
View File

@@ -1,12 +1,12 @@
HTML.Parent HTML.Parent
TYPE: string TYPE: string
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: 'div' DEFAULT: 'div'
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
String name of element that HTML fragment passed to library will be String name of element that HTML fragment passed to library will be
inserted in. An interesting variation would be using span as the inserted in. An interesting variation would be using span as the
parent element, meaning that only inline tags would be allowed. parent element, meaning that only inline tags would be allowed.
</p> </p>

16
library/HTMLPurifier/ConfigSchema/schema/HTML.Strict.txt
View File

@@ -1,8 +1,8 @@
HTML.Strict HTML.Strict
TYPE: bool TYPE: bool
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: false DEFAULT: false
DEPRECATED-VERSION: 1.7.0 DEPRECATED-VERSION: 1.7.0
DEPRECATED-USE: HTML.Doctype DEPRECATED-USE: HTML.Doctype
--DESCRIPTION-- --DESCRIPTION--
Determines whether or not to use Transitional (loose) or Strict rulesets. Determines whether or not to use Transitional (loose) or Strict rulesets.

16
library/HTMLPurifier/ConfigSchema/schema/HTML.TidyAdd.txt
View File

@@ -1,8 +1,8 @@
HTML.TidyAdd HTML.TidyAdd
TYPE: lookup TYPE: lookup
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: array() DEFAULT: array()
--DESCRIPTION-- --DESCRIPTION--
Fixes to add to the default set of Tidy fixes as per your level. Fixes to add to the default set of Tidy fixes as per your level.

46
library/HTMLPurifier/ConfigSchema/schema/HTML.TidyLevel.txt
View File

@@ -1,23 +1,23 @@
HTML.TidyLevel HTML.TidyLevel
TYPE: string TYPE: string
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: 'medium' DEFAULT: 'medium'
--DESCRIPTION-- --DESCRIPTION--
<p>General level of cleanliness the Tidy module should enforce. <p>General level of cleanliness the Tidy module should enforce.
There are four allowed values:</p> There are four allowed values:</p>
<dl> <dl>
<dt>none</dt> <dt>none</dt>
<dd>No extra tidying should be done</dd> <dd>No extra tidying should be done</dd>
<dt>light</dt> <dt>light</dt>
<dd>Only fix elements that would be discarded otherwise due to <dd>Only fix elements that would be discarded otherwise due to
lack of support in doctype</dd> lack of support in doctype</dd>
<dt>medium</dt> <dt>medium</dt>
<dd>Enforce best practices</dd> <dd>Enforce best practices</dd>
<dt>heavy</dt> <dt>heavy</dt>
<dd>Transform all deprecated elements and attributes to standards <dd>Transform all deprecated elements and attributes to standards
compliant equivalents</dd> compliant equivalents</dd>
</dl> </dl>
--ALLOWED-- --ALLOWED--
'none', 'light', 'medium', 'heavy' 'none', 'light', 'medium', 'heavy'

16
library/HTMLPurifier/ConfigSchema/schema/HTML.TidyRemove.txt
View File

@@ -1,8 +1,8 @@
HTML.TidyRemove HTML.TidyRemove
TYPE: lookup TYPE: lookup
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: array() DEFAULT: array()
--DESCRIPTION-- --DESCRIPTION--
Fixes to remove from the default set of Tidy fixes as per your level. Fixes to remove from the default set of Tidy fixes as per your level.

14
library/HTMLPurifier/ConfigSchema/schema/HTML.Trusted.txt
View File

@@ -1,7 +1,7 @@
HTML.Trusted HTML.Trusted
TYPE: bool TYPE: bool
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
Indicates whether or not the user input is trusted or not. If the input is Indicates whether or not the user input is trusted or not. If the input is
trusted, a more expansive set of allowed tags and attributes will be used. trusted, a more expansive set of allowed tags and attributes will be used.

20
library/HTMLPurifier/ConfigSchema/schema/HTML.XHTML.txt
View File

@@ -1,10 +1,10 @@
HTML.XHTML HTML.XHTML
TYPE: bool TYPE: bool
DEFAULT: true DEFAULT: true
VERSION: 1.1.0 VERSION: 1.1.0
DEPRECATED-VERSION: 1.7.0 DEPRECATED-VERSION: 1.7.0
DEPRECATED-USE: HTML.Doctype DEPRECATED-USE: HTML.Doctype
--DESCRIPTION-- --DESCRIPTION--
Determines whether or not output is XHTML 1.0 or HTML 4.01 flavor. Determines whether or not output is XHTML 1.0 or HTML 4.01 flavor.
--ALIASES-- --ALIASES--
Core.XHTML Core.XHTML

4
library/HTMLPurifier/ConfigSchema/schema/HTML.txt
View File

@@ -1,2 +1,2 @@
HTML HTML
DESCRIPTION: Configuration regarding allowed HTML. DESCRIPTION: Configuration regarding allowed HTML.

18
library/HTMLPurifier/ConfigSchema/schema/Output.CommentScriptContents.txt
View File

@@ -1,9 +1,9 @@
Output.CommentScriptContents Output.CommentScriptContents
TYPE: bool TYPE: bool
VERSION: 2.0.0 VERSION: 2.0.0
DEFAULT: true DEFAULT: true
--DESCRIPTION-- --DESCRIPTION--
Determines whether or not HTML Purifier should attempt to fix up the Determines whether or not HTML Purifier should attempt to fix up the
contents of script tags for legacy browsers with comments. contents of script tags for legacy browsers with comments.
--ALIASES-- --ALIASES--
Core.CommentScriptContents Core.CommentScriptContents

26
library/HTMLPurifier/ConfigSchema/schema/Output.Newline.txt
View File

@@ -1,13 +1,13 @@
Output.Newline Output.Newline
TYPE: string/null TYPE: string/null
VERSION: 2.0.1 VERSION: 2.0.1
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Newline string to format final output with. If left null, HTML Purifier Newline string to format final output with. If left null, HTML Purifier
will auto-detect the default newline type of the system and use that; will auto-detect the default newline type of the system and use that;
you can manually override it here. Remember, \r\n is Windows, \r you can manually override it here. Remember, \r\n is Windows, \r
is Mac, and \n is Unix. is Mac, and \n is Unix.
</p> </p>

48
library/HTMLPurifier/ConfigSchema/schema/Output.TidyFormat.txt
View File

@@ -1,24 +1,24 @@
Output.TidyFormat Output.TidyFormat
TYPE: bool TYPE: bool
VERSION: 1.1.1 VERSION: 1.1.1
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Determines whether or not to run Tidy on the final output for pretty Determines whether or not to run Tidy on the final output for pretty
formatting reasons, such as indentation and wrap. formatting reasons, such as indentation and wrap.
</p> </p>
<p> <p>
This can greatly improve readability for editors who are hand-editing This can greatly improve readability for editors who are hand-editing
the HTML, but is by no means necessary as HTML Purifier has already the HTML, but is by no means necessary as HTML Purifier has already
fixed all major errors the HTML may have had. Tidy is a non-default fixed all major errors the HTML may have had. Tidy is a non-default
extension, and this directive will silently fail if Tidy is not extension, and this directive will silently fail if Tidy is not
available. available.
</p> </p>
<p> <p>
If you are looking to make the overall look of your page's source If you are looking to make the overall look of your page's source
better, I recommend running Tidy on the entire page rather than just better, I recommend running Tidy on the entire page rather than just
user-content (after all, the indentation relative to the containing user-content (after all, the indentation relative to the containing
blocks will be incorrect). blocks will be incorrect).
</p> </p>
--ALIASES-- --ALIASES--
Core.TidyFormat Core.TidyFormat

4
library/HTMLPurifier/ConfigSchema/schema/Output.txt
View File

@@ -1,2 +1,2 @@
Output Output
DESCRIPTION: Configuration relating to the generation of (X)HTML. DESCRIPTION: Configuration relating to the generation of (X)HTML.

12
library/HTMLPurifier/ConfigSchema/schema/Test.ForceNoIconv.txt
View File

@@ -1,6 +1,6 @@
Test.ForceNoIconv Test.ForceNoIconv
TYPE: bool TYPE: bool
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
When set to true, HTMLPurifier_Encoder will act as if iconv does not exist When set to true, HTMLPurifier_Encoder will act as if iconv does not exist
and use only pure PHP implementations. and use only pure PHP implementations.

4
library/HTMLPurifier/ConfigSchema/schema/Test.txt
View File

@@ -1,2 +1,2 @@
Test Test
DESCRIPTION: Developer testing configuration for our unit tests. DESCRIPTION: Developer testing configuration for our unit tests.

28
library/HTMLPurifier/ConfigSchema/schema/URI.AllowedSchemes.txt
View File

@@ -1,14 +1,14 @@
URI.AllowedSchemes URI.AllowedSchemes
TYPE: lookup TYPE: lookup
--DEFAULT-- --DEFAULT--
array ( array (
'http' => true, 'http' => true,
'https' => true, 'https' => true,
'mailto' => true, 'mailto' => true,
'ftp' => true, 'ftp' => true,
'nntp' => true, 'nntp' => true,
'news' => true, 'news' => true,
) )
--DESCRIPTION-- --DESCRIPTION--
Whitelist that defines the schemes that a URI is allowed to have. This Whitelist that defines the schemes that a URI is allowed to have. This
prevents XSS attacks from using pseudo-schemes like javascript or mocha. prevents XSS attacks from using pseudo-schemes like javascript or mocha.

34
library/HTMLPurifier/ConfigSchema/schema/URI.Base.txt
View File

@@ -1,17 +1,17 @@
URI.Base URI.Base
TYPE: string/null TYPE: string/null
VERSION: 2.1.0 VERSION: 2.1.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
The base URI is the URI of the document this purified HTML will be The base URI is the URI of the document this purified HTML will be
inserted into. This information is important if HTML Purifier needs inserted into. This information is important if HTML Purifier needs
to calculate absolute URIs from relative URIs, such as when %URI.MakeAbsolute to calculate absolute URIs from relative URIs, such as when %URI.MakeAbsolute
is on. You may use a non-absolute URI for this value, but behavior is on. You may use a non-absolute URI for this value, but behavior
may vary (%URI.MakeAbsolute deals nicely with both absolute and may vary (%URI.MakeAbsolute deals nicely with both absolute and
relative paths, but forwards-compatibility is not guaranteed). relative paths, but forwards-compatibility is not guaranteed).
<strong>Warning:</strong> If set, the scheme on this URI <strong>Warning:</strong> If set, the scheme on this URI
overrides the one specified by %URI.DefaultScheme. overrides the one specified by %URI.DefaultScheme.
</p> </p>

20
library/HTMLPurifier/ConfigSchema/schema/URI.DefaultScheme.txt
View File

@@ -1,10 +1,10 @@
URI.DefaultScheme URI.DefaultScheme
TYPE: string TYPE: string
DEFAULT: 'http' DEFAULT: 'http'
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Defines through what scheme the output will be served, in order to Defines through what scheme the output will be served, in order to
select the proper object validator when no scheme information is present. select the proper object validator when no scheme information is present.
</p> </p>

22
library/HTMLPurifier/ConfigSchema/schema/URI.DefinitionID.txt
View File

@@ -1,11 +1,11 @@
URI.DefinitionID URI.DefinitionID
TYPE: string/null TYPE: string/null
VERSION: 2.1.0 VERSION: 2.1.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Unique identifier for a custom-built URI definition. If you want Unique identifier for a custom-built URI definition. If you want
to add custom URIFilters, you must specify this value. to add custom URIFilters, you must specify this value.
</p> </p>

22
library/HTMLPurifier/ConfigSchema/schema/URI.DefinitionRev.txt
View File

@@ -1,11 +1,11 @@
URI.DefinitionRev URI.DefinitionRev
TYPE: int TYPE: int
VERSION: 2.1.0 VERSION: 2.1.0
DEFAULT: 1 DEFAULT: 1
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Revision identifier for your custom definition. See Revision identifier for your custom definition. See
%HTML.DefinitionRev for details. %HTML.DefinitionRev for details.
</p> </p>

26
library/HTMLPurifier/ConfigSchema/schema/URI.Disable.txt
View File

@@ -1,13 +1,13 @@
URI.Disable URI.Disable
TYPE: bool TYPE: bool
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Disables all URIs in all forms. Not sure why you'd want to do that Disables all URIs in all forms. Not sure why you'd want to do that
(after all, the Internet's founded on the notion of a hyperlink). (after all, the Internet's founded on the notion of a hyperlink).
</p> </p>
--ALIASES-- --ALIASES--
Attr.DisableURI Attr.DisableURI

20
library/HTMLPurifier/ConfigSchema/schema/URI.DisableExternal.txt
View File

@@ -1,10 +1,10 @@
URI.DisableExternal URI.DisableExternal
TYPE: bool TYPE: bool
VERSION: 1.2.0 VERSION: 1.2.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
Disables links to external websites. This is a highly effective anti-spam Disables links to external websites. This is a highly effective anti-spam
and anti-pagerank-leech measure, but comes at a hefty price: nolinks or and anti-pagerank-leech measure, but comes at a hefty price: nolinks or
images outside of your domain will be allowed. Non-linkified URIs will images outside of your domain will be allowed. Non-linkified URIs will
still be preserved. If you want to be able to link to subdomains or use still be preserved. If you want to be able to link to subdomains or use
absolute URIs, specify %URI.Host for your website. absolute URIs, specify %URI.Host for your website.

24
library/HTMLPurifier/ConfigSchema/schema/URI.DisableExternalResources.txt
View File

@@ -1,12 +1,12 @@
URI.DisableExternalResources URI.DisableExternalResources
TYPE: bool TYPE: bool
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
Disables the embedding of external resources, preventing users from Disables the embedding of external resources, preventing users from
embedding things like images from other hosts. This prevents access embedding things like images from other hosts. This prevents access
tracking (good for email viewers), bandwidth leeching, cross-site request tracking (good for email viewers), bandwidth leeching, cross-site request
forging, goatse.cx posting, and other nasties, but also results in a loss forging, goatse.cx posting, and other nasties, but also results in a loss
of end-user functionality (they can't directly post a pic they posted from of end-user functionality (they can't directly post a pic they posted from
Flickr anymore). Use it if you don't have a robust user-content moderation Flickr anymore). Use it if you don't have a robust user-content moderation
team. team.

24
library/HTMLPurifier/ConfigSchema/schema/URI.DisableResources.txt
View File

@@ -1,12 +1,12 @@
URI.DisableResources URI.DisableResources
TYPE: bool TYPE: bool
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Disables embedding resources, essentially meaning no pictures. You can Disables embedding resources, essentially meaning no pictures. You can
still link to them though. See %URI.DisableExternalResources for why still link to them though. See %URI.DisableExternalResources for why
this might be a good idea. this might be a good idea.
</p> </p>

38
library/HTMLPurifier/ConfigSchema/schema/URI.Host.txt
View File

@@ -1,19 +1,19 @@
URI.Host URI.Host
TYPE: string/null TYPE: string/null
VERSION: 1.2.0 VERSION: 1.2.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Defines the domain name of the server, so we can determine whether or Defines the domain name of the server, so we can determine whether or
an absolute URI is from your website or not. Not strictly necessary, an absolute URI is from your website or not. Not strictly necessary,
as users should be using relative URIs to reference resources on your as users should be using relative URIs to reference resources on your
website. It will, however, let you use absolute URIs to link to website. It will, however, let you use absolute URIs to link to
subdomains of the domain you post here: i.e. example.com will allow subdomains of the domain you post here: i.e. example.com will allow
sub.example.com. However, higher up domains will still be excluded: sub.example.com. However, higher up domains will still be excluded:
if you set %URI.Host to sub.example.com, example.com will be blocked. if you set %URI.Host to sub.example.com, example.com will be blocked.
<strong>Note:</strong> This directive overrides %URI.Base because <strong>Note:</strong> This directive overrides %URI.Base because
a given page may be on a sub-domain, but you wish HTML Purifier to be a given page may be on a sub-domain, but you wish HTML Purifier to be
more relaxed and allow some of the parent domains too. more relaxed and allow some of the parent domains too.
</p> </p>

16
library/HTMLPurifier/ConfigSchema/schema/URI.HostBlacklist.txt
View File

@@ -1,8 +1,8 @@
URI.HostBlacklist URI.HostBlacklist
TYPE: list TYPE: list
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: array() DEFAULT: array()
--DESCRIPTION-- --DESCRIPTION--
List of strings that are forbidden in the host of any URI. Use it to kill List of strings that are forbidden in the host of any URI. Use it to kill
domain names of spam, etc. Note that it will catch anything in the domain, domain names of spam, etc. Note that it will catch anything in the domain,
so <tt>moo.com</tt> will catch <tt>moo.com.example.com</tt>. so <tt>moo.com</tt> will catch <tt>moo.com.example.com</tt>.

24
library/HTMLPurifier/ConfigSchema/schema/URI.MakeAbsolute.txt
View File

@@ -1,12 +1,12 @@
URI.MakeAbsolute URI.MakeAbsolute
TYPE: bool TYPE: bool
VERSION: 2.1.0 VERSION: 2.1.0
DEFAULT: false DEFAULT: false
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Converts all URIs into absolute forms. This is useful when the HTML Converts all URIs into absolute forms. This is useful when the HTML
being filtered assumes a specific base path, but will actually be being filtered assumes a specific base path, but will actually be
viewed in a different context (and setting an alternate base URI is viewed in a different context (and setting an alternate base URI is
not possible). %URI.Base must be set for this directive to work. not possible). %URI.Base must be set for this directive to work.
</p> </p>

164
library/HTMLPurifier/ConfigSchema/schema/URI.Munge.txt
View File

@@ -1,82 +1,82 @@
URI.Munge URI.Munge
TYPE: string/null TYPE: string/null
VERSION: 1.3.0 VERSION: 1.3.0
DEFAULT: NULL DEFAULT: NULL
--DESCRIPTION-- --DESCRIPTION--
<p> <p>
Munges all browsable (usually http, https and ftp) Munges all browsable (usually http, https and ftp)
absolute URIs into another URI, usually a URI redirection service. absolute URIs into another URI, usually a URI redirection service.
This directive accepts a URI, formatted with a <code>%s</code> where This directive accepts a URI, formatted with a <code>%s</code> where
the url-encoded original URI should be inserted (sample: the url-encoded original URI should be inserted (sample:
<code>http://www.google.com/url?q=%s</code>). <code>http://www.google.com/url?q=%s</code>).
</p> </p>
<p> <p>
Uses for this directive: Uses for this directive:
</p> </p>
<ul> <ul>
<li> <li>
Prevent PageRank leaks, while being fairly transparent Prevent PageRank leaks, while being fairly transparent
to users (you may also want to add some client side JavaScript to to users (you may also want to add some client side JavaScript to
override the text in the statusbar). <strong>Notice</strong>: override the text in the statusbar). <strong>Notice</strong>:
Many security experts believe that this form of protection does not deter spam-bots. Many security experts believe that this form of protection does not deter spam-bots.
</li> </li>
<li> <li>
Redirect users to a splash page telling them they are leaving your Redirect users to a splash page telling them they are leaving your
website. While this is poor usability practice, it is often mandated website. While this is poor usability practice, it is often mandated
in corporate environments. in corporate environments.
</li> </li>
</ul> </ul>
<p> <p>
Prior to HTML Purifier 3.1.1, this directive also enabled the munging Prior to HTML Purifier 3.1.1, this directive also enabled the munging
of browsable external resources, which could break things if your redirection of browsable external resources, which could break things if your redirection
script was a splash page or used <code>meta</code> tags. To revert to script was a splash page or used <code>meta</code> tags. To revert to
previous behavior, please use %URI.MungeResources. previous behavior, please use %URI.MungeResources.
</p> </p>
<p> <p>
You may want to also use %URI.MungeSecretKey along with this directive You may want to also use %URI.MungeSecretKey along with this directive
in order to enforce what URIs your redirector script allows. Open in order to enforce what URIs your redirector script allows. Open
redirector scripts can be a security risk and negatively affect the redirector scripts can be a security risk and negatively affect the
reputation of your domain name. reputation of your domain name.
</p> </p>
<p> <p>
Starting with HTML Purifier 3.1.1, there is also these substitutions: Starting with HTML Purifier 3.1.1, there is also these substitutions:
</p> </p>
<table> <table>
<thead> <thead>
<tr> <tr>
<th>Key</th> <th>Key</th>
<th>Description</th> <th>Description</th>
<th>Example <code>&lt;a href=""&gt;</code></th> <th>Example <code>&lt;a href=""&gt;</code></th>
</tr> </tr>
</thead> </thead>
<tbody> <tbody>
<tr> <tr>
<td>%r</td> <td>%r</td>
<td>1 - The URI embeds a resource<br />(blank) - The URI is merely a link</td> <td>1 - The URI embeds a resource<br />(blank) - The URI is merely a link</td>
<td></td> <td></td>
</tr> </tr>
<tr> <tr>
<td>%n</td> <td>%n</td>
<td>The name of the tag this URI came from</td> <td>The name of the tag this URI came from</td>
<td>a</td> <td>a</td>
</tr> </tr>
<tr> <tr>
<td>%m</td> <td>%m</td>
<td>The name of the attribute this URI came from</td> <td>The name of the attribute this URI came from</td>
<td>href</td> <td>href</td>
</tr> </tr>
<tr> <tr>
<td>%p</td> <td>%p</td>
<td>The name of the CSS property this URI came from, or blank if irrelevant</td> <td>The name of the CSS property this URI came from, or blank if irrelevant</td>
<td></td> <td></td>
</tr> </tr>
</tbody> </tbody>
</table> </table>
<p> <p>
Admittedly, these letters are somewhat arbitrary; the only stipulation Admittedly, these letters are somewhat arbitrary; the only stipulation
was that they couldn't be a through f. r is for resource (I would have preferred was that they couldn't be a through f. r is for resource (I would have preferred
e, but you take what you can get), n is for name, m e, but you take what you can get), n is for name, m
was picked because it came after n (and I couldn't use a), p is for was picked because it came after n (and I couldn't use a), p is for
property. property.
</p> </p>

16
library/HTMLPurifier/ConfigSchema/schema/URI.OverrideAllowedSchemes.txt
View File

@@ -1,8 +1,8 @@
URI.OverrideAllowedSchemes URI.OverrideAllowedSchemes
TYPE: bool TYPE: bool
DEFAULT: true DEFAULT: true
--DESCRIPTION-- --DESCRIPTION--
If this is set to true (which it is by default), you can override If this is set to true (which it is by default), you can override
%URI.AllowedSchemes by simply registering a HTMLPurifier_URIScheme to the %URI.AllowedSchemes by simply registering a HTMLPurifier_URIScheme to the
registry. If false, you will also have to update that directive in order registry. If false, you will also have to update that directive in order
to add more schemes. to add more schemes.

4
library/HTMLPurifier/ConfigSchema/schema/URI.txt
View File

@@ -1,2 +1,2 @@
URI URI
DESCRIPTION: Features regarding Uniform Resource Identifiers. DESCRIPTION: Features regarding Uniform Resource Identifiers.

92
library/HTMLPurifier/DefinitionCache/Decorator/Template.php.in
View File

@@ -1,46 +1,46 @@
<?php <?php
require_once 'HTMLPurifier/DefinitionCache/Decorator.php'; require_once 'HTMLPurifier/DefinitionCache/Decorator.php';
/** /**
* Definition cache decorator template. * Definition cache decorator template.
*/ */
class HTMLPurifier_DefinitionCache_Decorator_Template extends class HTMLPurifier_DefinitionCache_Decorator_Template extends
HTMLPurifier_DefinitionCache_Decorator HTMLPurifier_DefinitionCache_Decorator
{ {
var $name = 'Template'; // replace this var $name = 'Template'; // replace this
function copy() { function copy() {
// replace class name with yours // replace class name with yours
return new HTMLPurifier_DefinitionCache_Decorator_Template(); return new HTMLPurifier_DefinitionCache_Decorator_Template();
} }
// remove methods you don't need // remove methods you don't need
function add($def, $config) { function add($def, $config) {
return parent::add($def, $config); return parent::add($def, $config);
} }
function set($def, $config) { function set($def, $config) {
return parent::set($def, $config); return parent::set($def, $config);
} }
function replace($def, $config) { function replace($def, $config) {
return parent::replace($def, $config); return parent::replace($def, $config);
} }
function get($config) { function get($config) {
return parent::get($config); return parent::get($config);
} }
function flush() { function flush() {
return parent::flush(); return parent::flush();
} }
function cleanup($config) { function cleanup($config) {
return parent::cleanup($config); return parent::cleanup($config);
} }
} }

1
library/HTMLPurifier/DefinitionCache/README Normal file
View File

@@ -0,0 +1 @@
This is a dummy file to prevent Git from ignoring this empty directory.

92
library/HTMLPurifier/HTMLModule/Object.php
View File

@@ -1,46 +1,46 @@
<?php <?php
/** /**
* XHTML 1.1 Object Module, defines elements for generic object inclusion * XHTML 1.1 Object Module, defines elements for generic object inclusion
* @warning Users will commonly use <embed> to cater to legacy browsers: this * @warning Users will commonly use <embed> to cater to legacy browsers: this
* module does not allow this sort of behavior * module does not allow this sort of behavior
*/ */
class HTMLPurifier_HTMLModule_Object extends HTMLPurifier_HTMLModule class HTMLPurifier_HTMLModule_Object extends HTMLPurifier_HTMLModule
{ {
public $name = 'Object'; public $name = 'Object';
public $safe = false; public $safe = false;
public function setup($config) { public function setup($config) {
$this->addElement('object', 'Inline', 'Optional: #PCDATA | Flow | param', 'Common', $this->addElement('object', 'Inline', 'Optional: #PCDATA | Flow | param', 'Common',
array( array(
'archive' => 'URI', 'archive' => 'URI',
'classid' => 'URI', 'classid' => 'URI',
'codebase' => 'URI', 'codebase' => 'URI',
'codetype' => 'Text', 'codetype' => 'Text',
'data' => 'URI', 'data' => 'URI',
'declare' => 'Bool#declare', 'declare' => 'Bool#declare',
'height' => 'Length', 'height' => 'Length',
'name' => 'CDATA', 'name' => 'CDATA',
'standby' => 'Text', 'standby' => 'Text',
'tabindex' => 'Number', 'tabindex' => 'Number',
'type' => 'ContentType', 'type' => 'ContentType',
'width' => 'Length' 'width' => 'Length'
) )
); );
$this->addElement('param', false, 'Empty', false, $this->addElement('param', false, 'Empty', false,
array( array(
'id' => 'ID', 'id' => 'ID',
'name*' => 'Text', 'name*' => 'Text',
'type' => 'Text', 'type' => 'Text',
'value' => 'Text', 'value' => 'Text',
'valuetype' => 'Enum#data,ref,object' 'valuetype' => 'Enum#data,ref,object'
) )
); );
} }
} }

7812
library/HTMLPurifier/Lexer/PH5P.php
View File

File diff suppressed because it is too large Load Diff

182
maintenance/PH5P.patch
View File

@@ -1,102 +1,102 @@
--- C:\Users\Edward\Webs\htmlpurifier\maintenance\PH5P.php 2007-11-05 00:01:51.643585000 -0500 --- C:\Users\Edward\Webs\htmlpurifier\maintenance\PH5P.php 2007-11-05 00:01:51.643585000 -0500
+++ C:\Users\Edward\Webs\htmlpurifier\maintenance/PH5P.new.php 2008-04-05 00:26:39.343160000 -0400 +++ C:\Users\Edward\Webs\htmlpurifier\maintenance/PH5P.new.php 2008-04-05 00:26:39.343160000 -0400
@@ -65,7 +65,7 @@ @@ -65,7 +65,7 @@
public function __construct($data) { public function __construct($data) {
$data = str_replace("\r\n", "\n", $data); $data = str_replace("\r\n", "\n", $data);
- $date = str_replace("\r", null, $data); - $date = str_replace("\r", null, $data);
+ $data = str_replace("\r", null, $data); + $data = str_replace("\r", null, $data);
$this->data = $data; $this->data = $data;
$this->char = -1; $this->char = -1;
@@ -211,7 +211,10 @@ @@ -211,7 +211,10 @@
// If nothing is returned, emit a U+0026 AMPERSAND character token. // If nothing is returned, emit a U+0026 AMPERSAND character token.
// Otherwise, emit the character token that was returned. // Otherwise, emit the character token that was returned.
$char = (!$entity) ? '&' : $entity; $char = (!$entity) ? '&' : $entity;
- $this->emitToken($char); - $this->emitToken($char);
+ $this->emitToken(array( + $this->emitToken(array(
+ 'type' => self::CHARACTR, + 'type' => self::CHARACTR,
+ 'data' => $char + 'data' => $char
+ )); + ));
// Finally, switch to the data state. // Finally, switch to the data state.
$this->state = 'data'; $this->state = 'data';
@@ -708,7 +711,7 @@ @@ -708,7 +711,7 @@
} elseif($char === '&') { } elseif($char === '&') {
/* U+0026 AMPERSAND (&) /* U+0026 AMPERSAND (&)
Switch to the entity in attribute value state. */ Switch to the entity in attribute value state. */
- $this->entityInAttributeValueState('non'); - $this->entityInAttributeValueState('non');
+ $this->entityInAttributeValueState(); + $this->entityInAttributeValueState();
} elseif($char === '>') { } elseif($char === '>') {
/* U+003E GREATER-THAN SIGN (>) /* U+003E GREATER-THAN SIGN (>)
@@ -738,7 +741,8 @@ @@ -738,7 +741,8 @@
? '&' ? '&'
: $entity; : $entity;
- $this->emitToken($char); - $this->emitToken($char);
+ $last = count($this->token['attr']) - 1; + $last = count($this->token['attr']) - 1;
+ $this->token['attr'][$last]['value'] .= $char; + $this->token['attr'][$last]['value'] .= $char;
} }
private function bogusCommentState() { private function bogusCommentState() {
@@ -1066,6 +1070,11 @@ @@ -1066,6 +1070,11 @@
$this->char++; $this->char++;
if(in_array($id, $this->entities)) { if(in_array($id, $this->entities)) {
+ if ($e_name[$c-1] !== ';') { + if ($e_name[$c-1] !== ';') {
+ if ($c < $len && $e_name[$c] == ';') { + if ($c < $len && $e_name[$c] == ';') {
+ $this->char++; // consume extra semicolon + $this->char++; // consume extra semicolon
+ } + }
+ } + }
$entity = $id; $entity = $id;
break; break;
} }
@@ -2084,7 +2093,7 @@ @@ -2084,7 +2093,7 @@
/* Reconstruct the active formatting elements, if any. */ /* Reconstruct the active formatting elements, if any. */
$this->reconstructActiveFormattingElements(); $this->reconstructActiveFormattingElements();
- $this->insertElement($token); - $this->insertElement($token);
+ $this->insertElement($token, true, true); + $this->insertElement($token, true, true);
break; break;
} }
break; break;
@@ -3465,7 +3474,18 @@ @@ -3465,7 +3474,18 @@
} }
} }
- private function insertElement($token, $append = true) { - private function insertElement($token, $append = true) {
+ private function insertElement($token, $append = true, $check = false) { + private function insertElement($token, $append = true, $check = false) {
+ // Proprietary workaround for libxml2's limitations with tag names + // Proprietary workaround for libxml2's limitations with tag names
+ if ($check) { + if ($check) {
+ // Slightly modified HTML5 tag-name modification, + // Slightly modified HTML5 tag-name modification,
+ // removing anything that's not an ASCII letter, digit, or hyphen + // removing anything that's not an ASCII letter, digit, or hyphen
+ $token['name'] = preg_replace('/[^a-z0-9-]/i', '', $token['name']); + $token['name'] = preg_replace('/[^a-z0-9-]/i', '', $token['name']);
+ // Remove leading hyphens and numbers + // Remove leading hyphens and numbers
+ $token['name'] = ltrim($token['name'], '-0..9'); + $token['name'] = ltrim($token['name'], '-0..9');
+ // In theory, this should ever be needed, but just in case + // In theory, this should ever be needed, but just in case
+ if ($token['name'] === '') $token['name'] = 'span'; // arbitrary generic choice + if ($token['name'] === '') $token['name'] = 'span'; // arbitrary generic choice
+ } + }
+ +
$el = $this->dom->createElement($token['name']); $el = $this->dom->createElement($token['name']);
foreach($token['attr'] as $attr) { foreach($token['attr'] as $attr) {
@@ -3659,7 +3679,7 @@ @@ -3659,7 +3679,7 @@
} }
} }
- private function generateImpliedEndTags(array $exclude = array()) { - private function generateImpliedEndTags(array $exclude = array()) {
+ private function generateImpliedEndTags($exclude = array()) { + private function generateImpliedEndTags($exclude = array()) {
/* When the steps below require the UA to generate implied end tags, /* When the steps below require the UA to generate implied end tags,
then, if the current node is a dd element, a dt element, an li element, then, if the current node is a dd element, a dt element, an li element,
a p element, a td element, a th element, or a tr element, the UA must a p element, a td element, a th element, or a tr element, the UA must
@@ -3673,7 +3693,8 @@ @@ -3673,7 +3693,8 @@
} }
} }
- private function getElementCategory($name) { - private function getElementCategory($name) {
+ private function getElementCategory($node) { + private function getElementCategory($node) {
+ $name = $node->tagName; + $name = $node->tagName;
if(in_array($name, $this->special)) if(in_array($name, $this->special))
return self::SPECIAL; return self::SPECIAL;

208
maintenance/phpt-modifications.patch
View File

@@ -1,8 +1,8 @@
Index: src/PHPT/Case.php Index: src/PHPT/Case.php
=================================================================== ===================================================================
--- src/PHPT/Case.php (revision 691) --- src/PHPT/Case.php (revision 691)
+++ src/PHPT/Case.php (working copy) +++ src/PHPT/Case.php (working copy)
@@ -28,17 +28,14 @@ @@ -28,17 +28,14 @@
{ {
$reporter->onCaseStart($this); $reporter->onCaseStart($this);
try { try {
@@ -26,7 +26,7 @@ Index: src/PHPT/Case.php
} }
$reporter->onCasePass($this); $reporter->onCasePass($this);
} catch (PHPT_Case_VetoException $veto) { } catch (PHPT_Case_VetoException $veto) {
@@ -46,7 +43,6 @@ @@ -46,7 +43,6 @@
} catch (PHPT_Case_FailureException $failure) { } catch (PHPT_Case_FailureException $failure) {
$reporter->onCaseFail($this, $failure); $reporter->onCaseFail($this, $failure);
} }
@@ -34,11 +34,11 @@ Index: src/PHPT/Case.php
$reporter->onCaseEnd($this); $reporter->onCaseEnd($this);
} }
Index: src/PHPT/Case/Validator/CgiRequired.php Index: src/PHPT/Case/Validator/CgiRequired.php
=================================================================== ===================================================================
--- src/PHPT/Case/Validator/CgiRequired.php (revision 691) --- src/PHPT/Case/Validator/CgiRequired.php (revision 691)
+++ src/PHPT/Case/Validator/CgiRequired.php (working copy) +++ src/PHPT/Case/Validator/CgiRequired.php (working copy)
@@ -17,7 +17,6 @@ @@ -17,7 +17,6 @@
public function is(PHPT_Case $case) public function is(PHPT_Case $case)
{ {
$return = $case->sections->filterByInterface('CgiExecutable')->valid(); $return = $case->sections->filterByInterface('CgiExecutable')->valid();
@@ -46,11 +46,11 @@ Index: src/PHPT/Case/Validator/CgiRequired.php
return $return; return $return;
} }
} }
Index: src/PHPT/CodeRunner/CommandLine.php Index: src/PHPT/CodeRunner/CommandLine.php
=================================================================== ===================================================================
--- src/PHPT/CodeRunner/CommandLine.php (revision 691) --- src/PHPT/CodeRunner/CommandLine.php (revision 691)
+++ src/PHPT/CodeRunner/CommandLine.php (working copy) +++ src/PHPT/CodeRunner/CommandLine.php (working copy)
@@ -13,7 +13,7 @@ @@ -13,7 +13,7 @@
$this->_filename = $runner->filename; $this->_filename = $runner->filename;
$this->_ini = (string)$runner->ini; $this->_ini = (string)$runner->ini;
$this->_args = (string)$runner->args; $this->_args = (string)$runner->args;
@@ -59,45 +59,45 @@ Index: src/PHPT/CodeRunner/CommandLine.php
$this->_post_filename = (string)$runner->post_filename; $this->_post_filename = (string)$runner->post_filename;
} }
Index: src/PHPT/CodeRunner/Driver/WScriptShell.php Index: src/PHPT/CodeRunner/Driver/WScriptShell.php
=================================================================== ===================================================================
--- src/PHPT/CodeRunner/Driver/WScriptShell.php (revision 691) --- src/PHPT/CodeRunner/Driver/WScriptShell.php (revision 691)
+++ src/PHPT/CodeRunner/Driver/WScriptShell.php (working copy) +++ src/PHPT/CodeRunner/Driver/WScriptShell.php (working copy)
@@ -23,9 +23,9 @@ @@ -23,9 +23,9 @@
} }
} }
if ($found == false) { if ($found == false) {
- throw new PHPT_CodeRunner_InvalidExecutableException( - throw new PHPT_CodeRunner_InvalidExecutableException(
- 'unable to locate PHP executable: ' . $this->executable - 'unable to locate PHP executable: ' . $this->executable
- ); - );
+ //throw new PHPT_CodeRunner_InvalidExecutableException( + //throw new PHPT_CodeRunner_InvalidExecutableException(
+ // 'unable to locate PHP executable: ' . $this->executable + // 'unable to locate PHP executable: ' . $this->executable
+ //); + //);
} }
} }
@@ -69,7 +69,7 @@ @@ -69,7 +69,7 @@
$error = $this->_process->StdErr->ReadAll(); $error = $this->_process->StdErr->ReadAll();
if (!empty($error)) { if (!empty($error)) {
- throw new PHPT_CodeRunner_ExecutionException($error); - throw new PHPT_CodeRunner_ExecutionException($error);
+ throw new PHPT_CodeRunner_ExecutionException($error, $this->_commandFactory()); + throw new PHPT_CodeRunner_ExecutionException($error, $this->_commandFactory());
} }
return $this->_process->StdOut->ReadAll(); return $this->_process->StdOut->ReadAll();
@@ -93,6 +93,7 @@ @@ -93,6 +93,7 @@
{ {
$return = ''; $return = '';
foreach ($this->environment as $key => $value) { foreach ($this->environment as $key => $value) {
+ $value = str_replace('&', '^&', $value); + $value = str_replace('&', '^&', $value);
$return .= "set {$key}={$value} & "; $return .= "set {$key}={$value} & ";
} }
return $return; return $return;
Index: src/PHPT/CodeRunner/Factory.php Index: src/PHPT/CodeRunner/Factory.php
=================================================================== ===================================================================
--- src/PHPT/CodeRunner/Factory.php (revision 691) --- src/PHPT/CodeRunner/Factory.php (revision 691)
+++ src/PHPT/CodeRunner/Factory.php (working copy) +++ src/PHPT/CodeRunner/Factory.php (working copy)
@@ -33,7 +33,13 @@ @@ -33,7 +33,13 @@
'php-cgi'; 'php-cgi';
} }
@@ -112,11 +112,11 @@ Index: src/PHPT/CodeRunner/Factory.php
$runner->executable = $runner->executable . '.exe'; $runner->executable = $runner->executable . '.exe';
} }
try { try {
Index: src/PHPT/Section/ModifiableAbstract.php Index: src/PHPT/Section/ModifiableAbstract.php
=================================================================== ===================================================================
--- src/PHPT/Section/ModifiableAbstract.php (revision 691) --- src/PHPT/Section/ModifiableAbstract.php (revision 691)
+++ src/PHPT/Section/ModifiableAbstract.php (working copy) +++ src/PHPT/Section/ModifiableAbstract.php (working copy)
@@ -15,12 +15,10 @@ @@ -15,12 +15,10 @@
public function run(PHPT_Case $case) public function run(PHPT_Case $case)
{ {
@@ -133,11 +133,11 @@ Index: src/PHPT/Section/ModifiableAbstract.php
} }
} }
Index: src/PHPT/Section/SKIPIF.php Index: src/PHPT/Section/SKIPIF.php
=================================================================== ===================================================================
--- src/PHPT/Section/SKIPIF.php (revision 691) --- src/PHPT/Section/SKIPIF.php (revision 691)
+++ src/PHPT/Section/SKIPIF.php (working copy) +++ src/PHPT/Section/SKIPIF.php (working copy)
@@ -3,10 +3,12 @@ @@ -3,10 +3,12 @@
class PHPT_Section_SKIPIF implements PHPT_Section_RunnableBefore class PHPT_Section_SKIPIF implements PHPT_Section_RunnableBefore
{ {
private $_data = null; private $_data = null;
@@ -150,7 +150,7 @@ Index: src/PHPT/Section/SKIPIF.php
} }
public function run(PHPT_Case $case) public function run(PHPT_Case $case)
@@ -16,9 +18,7 @@ @@ -16,9 +18,7 @@
// @todo refactor to PHPT_CodeRunner // @todo refactor to PHPT_CodeRunner
file_put_contents($filename, $this->_data); file_put_contents($filename, $this->_data);
@@ -161,11 +161,11 @@ Index: src/PHPT/Section/SKIPIF.php
unlink($filename); unlink($filename);
if (preg_match('/^skip( - (.*))?/', $response, $matches)) { if (preg_match('/^skip( - (.*))?/', $response, $matches)) {
Index: src/PHPT/SectionList.php Index: src/PHPT/SectionList.php
=================================================================== ===================================================================
--- src/PHPT/SectionList.php (revision 691) --- src/PHPT/SectionList.php (revision 691)
+++ src/PHPT/SectionList.php (working copy) +++ src/PHPT/SectionList.php (working copy)
@@ -2,7 +2,6 @@ @@ -2,7 +2,6 @@
class PHPT_SectionList implements Iterator class PHPT_SectionList implements Iterator
{ {
@@ -173,7 +173,7 @@ Index: src/PHPT/SectionList.php
private $_sections = array(); private $_sections = array();
private $_section_map = array(); private $_section_map = array();
private $_key_map = array(); private $_key_map = array();
@@ -15,14 +14,12 @@ @@ -15,14 +14,12 @@
} }
$name = strtoupper(str_replace('PHPT_Section_', '', get_class($section))); $name = strtoupper(str_replace('PHPT_Section_', '', get_class($section)));
$key = $section instanceof PHPT_Section_Runnable ? $section->getPriority() . '.' . $name : $name; $key = $section instanceof PHPT_Section_Runnable ? $section->getPriority() . '.' . $name : $name;
@@ -190,7 +190,7 @@ Index: src/PHPT/SectionList.php
} }
public function current() public function current()
@@ -52,21 +49,23 @@ @@ -52,21 +49,23 @@
public function filterByInterface($interface = null) public function filterByInterface($interface = null)
{ {
@@ -220,7 +220,7 @@ Index: src/PHPT/SectionList.php
} }
public function has($name) public function has($name)
@@ -74,11 +73,11 @@ @@ -74,11 +73,11 @@
if (!isset($this->_section_map[$name])) { if (!isset($this->_section_map[$name])) {
return false; return false;
} }
@@ -234,11 +234,11 @@ Index: src/PHPT/SectionList.php
+ return $this->_sections[$this->_section_map[$key]]; + return $this->_sections[$this->_section_map[$key]];
} }
} }
Index: tests/CodeRunner/Driver/WScriptShell/injects-ini-settings.phpt Index: tests/CodeRunner/Driver/WScriptShell/injects-ini-settings.phpt
=================================================================== ===================================================================
--- tests/CodeRunner/Driver/WScriptShell/injects-ini-settings.phpt (revision 691) --- tests/CodeRunner/Driver/WScriptShell/injects-ini-settings.phpt (revision 691)
+++ tests/CodeRunner/Driver/WScriptShell/injects-ini-settings.phpt (working copy) +++ tests/CodeRunner/Driver/WScriptShell/injects-ini-settings.phpt (working copy)
@@ -17,9 +17,9 @@ @@ -17,9 +17,9 @@
// sanity check // sanity check
$obj = new FoobarIni(); $obj = new FoobarIni();
@@ -250,11 +250,11 @@ Index: tests/CodeRunner/Driver/WScriptShell/injects-ini-settings.phpt
unset($obj); unset($obj);
Index: tests/Section/File/restores-case-sections.phpt Index: tests/Section/File/restores-case-sections.phpt
=================================================================== ===================================================================
--- tests/Section/File/restores-case-sections.phpt (revision 691) --- tests/Section/File/restores-case-sections.phpt (revision 691)
+++ tests/Section/File/restores-case-sections.phpt (working copy) +++ tests/Section/File/restores-case-sections.phpt (working copy)
@@ -1,24 +0,0 @@ @@ -1,24 +0,0 @@
---TEST-- ---TEST--
-After PHPT_Section_FILE::run(), the sections property of the provide $case object -After PHPT_Section_FILE::run(), the sections property of the provide $case object
-is restored to its unfiltered state -is restored to its unfiltered state
@@ -279,11 +279,11 @@ Index: tests/Section/File/restores-case-sections.phpt
-===DONE=== -===DONE===
---EXPECT-- ---EXPECT--
-===DONE=== -===DONE===
Index: tests/SectionList/filter-by-interface.phpt Index: tests/SectionList/filter-by-interface.phpt
=================================================================== ===================================================================
--- tests/SectionList/filter-by-interface.phpt (revision 691) --- tests/SectionList/filter-by-interface.phpt (revision 691)
+++ tests/SectionList/filter-by-interface.phpt (working copy) +++ tests/SectionList/filter-by-interface.phpt (working copy)
@@ -17,10 +17,10 @@ @@ -17,10 +17,10 @@
$data = array_merge($runnable, $non_runnable); $data = array_merge($runnable, $non_runnable);
$list = new PHPT_SectionList($data); $list = new PHPT_SectionList($data);
@@ -298,11 +298,11 @@ Index: tests/SectionList/filter-by-interface.phpt
?> ?>
===DONE=== ===DONE===
Index: tests/SectionList/filter-resets-with-null.phpt Index: tests/SectionList/filter-resets-with-null.phpt
=================================================================== ===================================================================
--- tests/SectionList/filter-resets-with-null.phpt (revision 691) --- tests/SectionList/filter-resets-with-null.phpt (revision 691)
+++ tests/SectionList/filter-resets-with-null.phpt (working copy) +++ tests/SectionList/filter-resets-with-null.phpt (working copy)
@@ -1,36 +0,0 @@ @@ -1,36 +0,0 @@
---TEST-- ---TEST--
-If you call filterByInterface() with null or no-value, the full dataset is restored -If you call filterByInterface() with null or no-value, the full dataset is restored
---FILE-- ---FILE--
@@ -339,11 +339,11 @@ Index: tests/SectionList/filter-resets-with-null.phpt
-===DONE=== -===DONE===
---EXPECT-- ---EXPECT--
-===DONE=== -===DONE===
Index: tests/Util/Code/runAsFile-executes-in-file.phpt Index: tests/Util/Code/runAsFile-executes-in-file.phpt
=================================================================== ===================================================================
--- tests/Util/Code/runAsFile-executes-in-file.phpt (revision 691) --- tests/Util/Code/runAsFile-executes-in-file.phpt (revision 691)
+++ tests/Util/Code/runAsFile-executes-in-file.phpt (working copy) +++ tests/Util/Code/runAsFile-executes-in-file.phpt (working copy)
@@ -10,7 +10,7 @@ @@ -10,7 +10,7 @@
$util = new PHPT_Util_Code($code); $util = new PHPT_Util_Code($code);
@@ -352,11 +352,11 @@ Index: tests/Util/Code/runAsFile-executes-in-file.phpt
$result = $util->runAsFile($file); $result = $util->runAsFile($file);
assert('$result == $file'); assert('$result == $file');
Index: tests/Util/Code/runAsFile-returns-output-if-no-return.phpt Index: tests/Util/Code/runAsFile-returns-output-if-no-return.phpt
=================================================================== ===================================================================
--- tests/Util/Code/runAsFile-returns-output-if-no-return.phpt (revision 691) --- tests/Util/Code/runAsFile-returns-output-if-no-return.phpt (revision 691)
+++ tests/Util/Code/runAsFile-returns-output-if-no-return.phpt (working copy) +++ tests/Util/Code/runAsFile-returns-output-if-no-return.phpt (working copy)
@@ -9,7 +9,7 @@ @@ -9,7 +9,7 @@
$util = new PHPT_Util_Code($code); $util = new PHPT_Util_Code($code);

154
maintenance/update-freshmeat.php Normal file
View File

@@ -0,0 +1,154 @@
#!/usr/bin/php
<?php
chdir(dirname(__FILE__));
require_once 'common.php';
assertCli();
/**
* @file
* Updates Freshmeat's HTML Purifier with the latest information via XML RPC.
*/
class XmlRpc_Freshmeat
{
const URL = 'http://freshmeat.net/xmlrpc/';
public $chatty = false;
public $encodeOptions = array(
'encoding' => 'utf-8',
);
/**
* This array defines shortcut method signatures for dealing with simple
* XML RPC methods. More complex ones (publish_release) should use the named parameter
* syntax.
*/
public $signatures = array(
'login' => array('username', 'password'),
'fetch_branch_list' => array('project_name'),
'fetch_release' => array('project_name', 'branch_name', 'version'),
'withdraw_release' => array('project_name', 'branch_name', 'version'),
);
protected $sid = null;
/**
* @param $username Username to login with
* @param $password Password to login with
*/
public function __construct($username = null, $password = null) {
if ($username && $password) {
$this->login($username, $password);
}
}
/**
* Performs a raw XML RPC call to self::URL
*/
protected function call($method, $params) {
$request = xmlrpc_encode_request($method, $params, $this->encodeOptions);
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, self::URL);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_TIMEOUT, 1);
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
'Content-type: text/xml',
'Content-length: ' . strlen($request)
));
curl_setopt($ch, CURLOPT_POSTFIELDS, $request);
$data = curl_exec($ch);
if ($errno = curl_errno($ch)) {
throw new Exception("Curl error [$errno]: " . curl_error($ch));
} else {
curl_close($ch);
return xmlrpc_decode($data);
}
}
/**
* Performs an XML RPC call to Freshmeat.
* @param $name Name of method to call, can be methodName or method_name
* @param $args Arguments of call, in form array('key1', 'val1', 'key2' ...)
*/
public function __call($name, $args) {
$method = $this->camelToUnderscore($name);
$params = array();
if ($this->sid) $params['SID'] = $this->sid;
if (isset($this->signatures[$method])) {
for ($i = 0, $c = count($this->signatures[$method]); $i < $c; $i++) {
$params[$this->signatures[$method][$i]] = $args[$i];
}
} else {
for ($i = 0, $c = count($args); $i + 1 < $c; $i += 2) {
$params[$args[$i]] = $args[$i + 1];
}
}
$result = $this->call($method, $params);
switch ($method) {
case 'login':
$this->sid = $result['SID'];
break;
case 'logout':
$this->sid = null;
break;
}
if ($this->chatty) print_r($result);
return $result;
}
/**
* Munge methodName to method_name
*/
private function camelToUnderscore($name) {
$method = '';
for ($i = 0, $c = strlen($name); $i < $c; $i++) {
$v = $name[$i];
if (ctype_lower($v)) $method .= $v;
else $method .= '_' . strtolower($v);
}
return $method;
}
/**
* Automatically logout at end of scope
*/
public function __destruct() {
if ($this->sid) $this->logout();
}
}
$rpc = new XmlRpc_Freshmeat($argv[1], $argv[2]);
$rpc->chatty = true;
$project = 'htmlpurifier';
$branch = 'Default';
$version = file_get_contents('../VERSION');
$result = $rpc->fetchRelease($project, $branch, $version);
if (!isset($result['faultCode'])) {
echo "Freshmeat release already exists.\n";
exit(0);
}
$changes = strtr(file_get_contents('../WHATSNEW'), array("\r" => '', "\n" => ' '));
$focus = (int) trim(file_get_contents('../FOCUS'));
if (strlen($changes) > 600) {
echo "WHATSNEW entry is too long.\n";
exit(1);
}
$rpc->publishRelease(
'project_name', $project,
'branch_name', $branch,
'version', $version,
'changes', $changes,
'release_focus', $focus,
'url_tgz', "http://htmlpurifier.org/releases/htmlpurifier-$version.tar.gz",
'url_zip', "http://htmlpurifier.org/releases/htmlpurifier-$version.zip",
'url_changelog', "http://htmlpurifier.org/svnroot/htmlpurifier/tags/$version/NEWS"
);

48
plugins/phorum/Changelog
View File

@@ -1,24 +1,24 @@
Changelog HTMLPurifier : Phorum Mod Changelog HTMLPurifier : Phorum Mod
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
= KEY ==================== = KEY ====================
# Breaks back-compat # Breaks back-compat
! Feature ! Feature
- Bugfix - Bugfix
+ Sub-comment + Sub-comment
. Internal change . Internal change
========================== ==========================
Version 3.0.0.1 for Phorum 5.2, unknown release date Version 3.0.0.1 for Phorum 5.2, unknown release date
! Better installation documentation ! Better installation documentation
- Fixed double encoded quotes - Fixed double encoded quotes
- Fixed fatal error when migrate.php is blank - Fixed fatal error when migrate.php is blank
Version 3.0.0 for Phorum 5.2, released January 12, 2008 Version 3.0.0 for Phorum 5.2, released January 12, 2008
# WYSIWYG and suppress_message options are now configurable via web # WYSIWYG and suppress_message options are now configurable via web
interface. interface.
- Module now compatible with Phorum 5.2, primary bugs were in migration - Module now compatible with Phorum 5.2, primary bugs were in migration
code as well as signature and edit message handling. This module is NOT code as well as signature and edit message handling. This module is NOT
compatible with Phorum 5.1. compatible with Phorum 5.1.
- Buggy WYSIWYG mode refined - Buggy WYSIWYG mode refined
. AutoFormatParam added to list of default configuration namespaces . AutoFormatParam added to list of default configuration namespaces

2
release1-update.php
View File

@@ -104,5 +104,5 @@ file_put_contents('library/HTMLPurifier/Config.php', $config_c);
passthru('php maintenance/flush.php'); passthru('php maintenance/flush.php');
if ($is_dev) echo "Review changes, write something in WHATSNEW, and then SVN commit with log 'Release $version.'" . PHP_EOL; if ($is_dev) echo "Review changes, write something in WHATSNEW and FOCUS, and then SVN commit with log 'Release $version.'" . PHP_EOL;
else echo "Numbers updated to dev, no other modifications necessary!"; else echo "Numbers updated to dev, no other modifications necessary!";

1
tests/HTMLPurifier/DefinitionCache/SerializerTest/README Normal file
View File

@@ -0,0 +1 @@
This is a dummy file to prevent Git from ignoring this empty directory.

Some files were not shown because too many files have changed in this diff Show More