source code: ./othercms/phpBB3/vendor/s9e/text-formatter/src/Configurator/TemplateChecks/DisallowUnsafeDynamicURL.php

Seditio Source
./othercms/phpBB3/vendor/s9e/text-formatter/src/Configurator/TemplateChecks/DisallowUnsafeDynamicURL.php

<?php





/**


* @package   s9e\TextFormatter


* @copyright Copyright (c) 2010-2021 The s9e authors


* @license   http://www.opensource.org/licenses/mit-license.php The MIT License


*/


namespace s9e\TextFormatter\Configurator\TemplateChecks;





use DOMAttr;


use DOMElement;


use DOMText;


use DOMXPath;


use s9e\TextFormatter\Configurator\Helpers\NodeLocator;


use s9e\TextFormatter\Configurator\Items\Attribute;


use s9e\TextFormatter\Configurator\Items\Tag;





/**


* This primary use of this check is to ensure that dynamic content cannot be used to create


* javascript: links


*/


class DisallowUnsafeDynamicURL extends AbstractDynamicContentCheck


{


    /**


    * @var string Regexp used to exclude nodes that start with a hardcoded scheme part, a hardcoded


    *             local part, or a fragment


    */


    protected $safeUrlRegexp = '(^(?:(?!data|\\w*script)\\w+:|[^:]*[#/?]))i';





    /**


    * {@inheritdoc}


    */


    protected function getNodes(DOMElement $template)


    {


        return NodeLocator::getURLNodes($template->ownerDocument);


    }





    /**


    * {@inheritdoc}


    */


    protected function isSafe(Attribute $attribute)


    {


        return $attribute->isSafeAsURL();


    }





    /**


    * {@inheritdoc}


    */


    protected function checkAttributeNode(DOMAttr $attribute, Tag $tag)


    {


        if (!$this->isSafeUrl($attribute->value))


        {


            parent::checkAttributeNode($attribute, $tag);


        }


    }





    /**


    * {@inheritdoc}


    */


    protected function checkElementNode(DOMElement $element, Tag $tag)


    {


        if (!$this->elementHasSafeUrl($element))


        {


            parent::checkElementNode($element, $tag);


        }


    }





    /**


    * Test whether every branch of a given xsl:choose element contains a known-safe URL


    *


    * @param  DOMElement $choose


    * @return bool


    */


    protected function chooseHasSafeUrl(DOMElement $choose)


    {


        $xpath        = new DOMXPath($choose->ownerDocument);


        $hasOtherwise = false;


        foreach ($xpath->query('xsl:when | xsl:otherwise', $choose) as $branch)


        {


            if (!$this->elementHasSafeUrl($branch))


            {


                return false;


            }


            if ($branch->nodeName === 'xsl:otherwise')


            {


                $hasOtherwise = true;


            }


        }





        return $hasOtherwise;


    }





    /**


    * Test whether given element contains a known-safe URL


    *


    * @param  DOMElement $element


    * @return bool


    */


    protected function elementHasSafeUrl(DOMElement $element)


    {


        if ($element->firstChild instanceof DOMElement && $element->firstChild->nodeName === 'xsl:choose')


        {


            return $this->chooseHasSafeUrl($element->firstChild);


        }





        return $element->firstChild instanceof DOMText && $this->isSafeUrl($element->firstChild->textContent);


    }





    /**


    * Test whether given URL is known to be safe


    *


    * @param  string $url


    * @return bool


    */


    protected function isSafeUrl($url)


    {


        return (bool) preg_match($this->safeUrlRegexp, $url);


    }


}