a6c9bd0eb5
Signed-off-by: Chris Nighswonger <cnighswonger@foundations.edu> Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com> Signed-off-by: Katrin Fischer <katrin.fischer@bsz-bw.de> http://bugs.koha-community.org/show_bug.cgi?id=9987 Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com> Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com>
77 lines
2.3 KiB
Perl
77 lines
2.3 KiB
Perl
package C4::Scrubber;
|
|
|
|
# Copyright Liblime 2008
|
|
# Parts copyright sys-tech.net 2011
|
|
# Copyright PTFS Europe 2011
|
|
#
|
|
# This file is part of Koha.
|
|
#
|
|
# Koha is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation; either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# Koha is distributed in the hope that it will be useful, but
|
|
# WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with Koha; if not, see <http://www.gnu.org/licenses>.
|
|
|
|
use strict;
|
|
use warnings;
|
|
use Carp;
|
|
use HTML::Scrubber;
|
|
|
|
use C4::Context;
|
|
use C4::Debug;
|
|
|
|
our $VERSION = v3.07.00.049;
|
|
|
|
|
|
my %scrubbertypes = (
|
|
default => {}, # place holder, default settings are below as fallbacks in call to constructor
|
|
tag => {}, # uses defaults
|
|
comment => { allow => [qw( br b i em big small strong )], },
|
|
staff => {
|
|
default => [ 1 => { '*' => 1 } ],
|
|
comment => 1,
|
|
},
|
|
);
|
|
|
|
|
|
sub new {
|
|
shift; # ignore our class we are wrapper
|
|
my $type = (@_) ? shift : 'default';
|
|
if ( !exists $scrubbertypes{$type} ) {
|
|
croak "New called with unrecognized type '$type'";
|
|
}
|
|
$debug and carp "Building new Scrubber of type '$type'";
|
|
my $settings = $scrubbertypes{$type};
|
|
my $scrubber = HTML::Scrubber->new(
|
|
allow => exists $settings->{allow} ? $settings->{allow} : [],
|
|
rules => exists $settings->{rules} ? $settings->{rules} : [],
|
|
default => exists $settings->{default} ? $settings->{default} : [ 0 => { '*' => 0 } ],
|
|
comment => exists $settings->{comment} ? $settings->{comment} : 0,
|
|
process => 0,
|
|
);
|
|
return $scrubber;
|
|
}
|
|
|
|
|
|
1;
|
|
__END__
|
|
|
|
=head1 C4::Sanitize
|
|
|
|
Standardized wrapper with settings for building HTML::Scrubber tailored to various koha inputs.
|
|
More verbose debugging messages are sent in the presence of non-zero $ENV{"DEBUG"}.
|
|
|
|
The default is to scrub everything, leaving no markup at all. This is compatible with the expectations
|
|
for Tags.
|
|
|
|
=head2 TODO: Add real perldoc
|
|
|
|
=cut
|
|
|