mirror of
https://github.com/RSS-Bridge/rss-bridge.git
synced 2025-01-17 22:28:22 +01:00
10eb1c9a95
Sometimes `Item::getContent` returns `null`, in which case `sanitizeHtml` would pass it to `str_replace`, which would raise `E_DEPRECATED` on PHP 8.1.
142 lines
3.3 KiB
PHP
142 lines
3.3 KiB
PHP
<?php
|
|
/**
|
|
* This file is part of RSS-Bridge, a PHP project capable of generating RSS and
|
|
* Atom feeds for websites that don't have one.
|
|
*
|
|
* For the full license information, please view the UNLICENSE file distributed
|
|
* with this source code.
|
|
*
|
|
* @package Core
|
|
* @license https://unlicense.org/ UNLICENSE
|
|
* @link https://github.com/rss-bridge/rss-bridge
|
|
*/
|
|
|
|
/**
|
|
* An abstract class for format implementations
|
|
*
|
|
* This class implements {@see FormatInterface}
|
|
*/
|
|
abstract class FormatAbstract implements FormatInterface {
|
|
|
|
/** The default charset (UTF-8) */
|
|
const DEFAULT_CHARSET = 'UTF-8';
|
|
|
|
/** MIME type of format output */
|
|
const MIME_TYPE = 'text/plain';
|
|
|
|
/** @var string $charset The charset */
|
|
protected $charset;
|
|
|
|
/** @var array $items The items */
|
|
protected $items;
|
|
|
|
/**
|
|
* @var int $lastModified A timestamp to indicate the last modified time of
|
|
* the output data.
|
|
*/
|
|
protected $lastModified;
|
|
|
|
/** @var array $extraInfos The extra infos */
|
|
protected $extraInfos;
|
|
|
|
/** {@inheritdoc} */
|
|
public function getMimeType(){
|
|
return static::MIME_TYPE;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*
|
|
* @param string $charset {@inheritdoc}
|
|
*/
|
|
public function setCharset($charset){
|
|
$this->charset = $charset;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/** {@inheritdoc} */
|
|
public function getCharset(){
|
|
$charset = $this->charset;
|
|
|
|
return is_null($charset) ? static::DEFAULT_CHARSET : $charset;
|
|
}
|
|
|
|
/**
|
|
* Set the last modified time
|
|
*
|
|
* @param int $lastModified The last modified time
|
|
* @return void
|
|
*/
|
|
public function setLastModified($lastModified){
|
|
$this->lastModified = $lastModified;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*
|
|
* @param array $items {@inheritdoc}
|
|
*/
|
|
public function setItems(array $items){
|
|
$this->items = $items;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/** {@inheritdoc} */
|
|
public function getItems(){
|
|
if(!is_array($this->items))
|
|
throw new \LogicException('Feed the ' . get_class($this) . ' with "setItems" method before !');
|
|
|
|
return $this->items;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*
|
|
* @param array $extraInfos {@inheritdoc}
|
|
*/
|
|
public function setExtraInfos(array $extraInfos = array()){
|
|
foreach(array('name', 'uri', 'icon', 'donationUri') as $infoName) {
|
|
if(!isset($extraInfos[$infoName])) {
|
|
$extraInfos[$infoName] = '';
|
|
}
|
|
}
|
|
|
|
$this->extraInfos = $extraInfos;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/** {@inheritdoc} */
|
|
public function getExtraInfos(){
|
|
if(is_null($this->extraInfos)) { // No extra info ?
|
|
$this->setExtraInfos(); // Define with default value
|
|
}
|
|
|
|
return $this->extraInfos;
|
|
}
|
|
|
|
/**
|
|
* Sanitize HTML while leaving it functional.
|
|
*
|
|
* Keeps HTML as-is (with clickable hyperlinks) while reducing annoying and
|
|
* potentially dangerous things.
|
|
*
|
|
* @param string $html The HTML content
|
|
* @return string The sanitized HTML content
|
|
*
|
|
* @todo This belongs into `html.php`
|
|
* @todo Maybe switch to http://htmlpurifier.org/
|
|
* @todo Maybe switch to http://www.bioinformatics.org/phplabware/internal_utilities/htmLawed/index.php
|
|
*/
|
|
protected function sanitizeHtml(string $html): string
|
|
{
|
|
$html = str_replace('<script', '<‌script', $html); // Disable scripts, but leave them visible.
|
|
$html = str_replace('<iframe', '<‌iframe', $html);
|
|
$html = str_replace('<link', '<‌link', $html);
|
|
// We leave alone object and embed so that videos can play in RSS readers.
|
|
return $html;
|
|
}
|
|
}
|