d3/dca/htmlpurifier_8php_source.html

 <?php

 // Note: Cache data is base64 encoded because Phorum insists on flinging
 // to the user and expecting it to come back unharmed, newlines and
 // all, which ain't happening. It's slower, it takes up more space, but
 // at least it won't get mutilated

 function phorum_htmlpurifier_format($data)
 {
     $PHORUM = $GLOBALS["PHORUM"];

     $purifier =& HTMLPurifier::getInstance();
     $cache_serial = $PHORUM['mod_htmlpurifier']['body_cache_serial'];

     foreach($data as $message_id => $message){
         if(isset($message['body'])) {

             if ($message_id) {
                 // we're dealing with a real message, not a fake, so
                 // there a number of shortcuts that can be taken

                 if (isset($message['meta']['htmlpurifier_light'])) {
                     // format hook was called outside of Phorum's normal
                     // functions, do the abridged purification
                     $data[$message_id]['body'] = $purifier->purify($message['body']);
                     continue;
                 }

                 if (!empty($PHORUM['args']['purge'])) {
                     // purge the cache, must be below the following if
                     unset($message['meta']['body_cache']);
                 }

                 if (
                     isset($message['meta']['body_cache']) &&
                     isset($message['meta']['body_cache_serial']) &&
                     $message['meta']['body_cache_serial'] == $cache_serial
                 ) {
                     // cached version is present, bail out early
                     $data[$message_id]['body'] = base64_decode($message['meta']['body_cache']);
                     continue;
                 }
             }

             // migration might edit this array, that's why it's defined
             // so early
             $updated_message = array();

             // create the $body variable
             if (
                 $message_id && // message must be real to migrate
                 !isset($message['meta']['body_cache_serial'])
             ) {
                 // perform migration
                 $fake_data = array();
                 list($signature, $edit_message) = phorum_htmlpurifier_remove_sig_and_editmessage($message);
                 $fake_data[$message_id] = $message;
                 $fake_data = phorum_htmlpurifier_migrate($fake_data);
                 $body = $fake_data[$message_id]['body'];
                 $body = str_replace("<phorum break>\n", "\n", $body);
                 $updated_message['body'] = $body; // save it in
                 $body .= $signature . $edit_message; // add it back in
             } else {
                 // reverse Phorum's pre-processing
                 $body = $message['body'];
                 // order is important
                 $body = str_replace("<phorum break>\n", "\n", $body);
                 $body = str_replace(array('&lt;','&gt;','&amp;', '&quot;'), array('<','>','&','"'), $body);
                 if (!$message_id && defined('PHORUM_CONTROL_CENTER')) {
                     // we're in control.php, so it was double-escaped
                     $body = str_replace(array('&lt;','&gt;','&amp;', '&quot;'), array('<','>','&','"'), $body);
                 }
             }

             $body = $purifier->purify($body);

             // dynamically update the cache (MUST BE DONE HERE!)
             // this is inefficient because it's one db call per
             // cache miss, but once the cache is in place things are
             // a lot zippier.

             if ($message_id) { // make sure it's not a fake id
                 $updated_message['meta'] = $message['meta'];
                 $updated_message['meta']['body_cache'] = base64_encode($body);
                 $updated_message['meta']['body_cache_serial'] = $cache_serial;
                 phorum_db_update_message($message_id, $updated_message);
             }

             // must not get overloaded until after we cache it, otherwise
             // we'll inadvertently change the original text
             $data[$message_id]['body'] = $body;

         }
     }

     return $data;
 }

 // -----------------------------------------------------------------------
 // This is fragile code, copied from read.php:596 (Phorum 5.2.6). Please
 // keep this code in-sync with Phorum

 function phorum_htmlpurifier_generate_sig($row)
 {
     $phorum_sig = '';
     if(isset($row["user"]["signature"])
        && isset($row['meta']['show_signature']) && $row['meta']['show_signature']==1){
            $phorum_sig=trim($row["user"]["signature"]);
            if(!empty($phorum_sig)){
                $phorum_sig="\n\n$phorum_sig";
            }
     }
     return $phorum_sig;
 }

 function phorum_htmlpurifier_generate_editmessage($row)
 {
     $PHORUM = $GLOBALS['PHORUM'];
     $editmessage = '';
     if(isset($row['meta']['edit_count']) && $row['meta']['edit_count'] > 0) {
         $editmessage = str_replace ("%count%", $row['meta']['edit_count'], $PHORUM["DATA"]["LANG"]["EditedMessage"]);
         $editmessage = str_replace ("%lastedit%", phorum_date($PHORUM["short_date_time"],$row['meta']['edit_date']),  $editmessage);
         $editmessage = str_replace ("%lastuser%", $row['meta']['edit_username'],  $editmessage);
         $editmessage = "\n\n\n\n$editmessage";
     }
     return $editmessage;
 }

 // End fragile code
 // -----------------------------------------------------------------------

 function phorum_htmlpurifier_remove_sig_and_editmessage(&$row)
 {
     $signature = phorum_htmlpurifier_generate_sig($row);
     $editmessage = phorum_htmlpurifier_generate_editmessage($row);
     $replacements = array();
     // we need to remove add <phorum break> as that is the form these
     // extra bits are in.
     if ($signature) $replacements[str_replace("\n", "<phorum break>\n", $signature)] = '';
     if ($editmessage) $replacements[str_replace("\n", "<phorum break>\n", $editmessage)] = '';
     $row['body'] = strtr($row['body'], $replacements);
     return array($signature, $editmessage);
 }

 function phorum_htmlpurifier_posting($message)
 {
     $PHORUM = $GLOBALS["PHORUM"];
     unset($message['meta']['body_cache']); // invalidate the cache
     $message['meta']['body_cache_serial'] = $PHORUM['mod_htmlpurifier']['body_cache_serial'];
     return $message;
 }

 function phorum_htmlpurifier_quote($array)
 {
     $PHORUM = $GLOBALS["PHORUM"];
     $purifier =& HTMLPurifier::getInstance();
     $text = $purifier->purify($array[1]);
     $source = htmlspecialchars($array[0]);
     return "<blockquote cite=\"$source\">\n$text\n</blockquote>";
 }

 function phorum_htmlpurifier_common()
 {
     require_once(dirname(__FILE__).'/htmlpurifier/HTMLPurifier.auto.php');
     require(dirname(__FILE__).'/init-config.php');

     $config = phorum_htmlpurifier_get_config();
     HTMLPurifier::getInstance($config);

     // increment revision.txt if you want to invalidate the cache
     $GLOBALS['PHORUM']['mod_htmlpurifier']['body_cache_serial'] = $config->getSerial();

     // load migration
     if (file_exists(dirname(__FILE__) . '/migrate.php')) {
         include(dirname(__FILE__) . '/migrate.php');
     } else {
         echo '<strong>Error:</strong> No migration path specified for HTML Purifier, please check
         <tt>modes/htmlpurifier/migrate.bbcode.php</tt> for instructions on
         how to migrate from your previous markup language.';
         exit;
     }

     if (!function_exists('phorum_htmlpurifier_migrate')) {
         // Dummy function
         function phorum_htmlpurifier_migrate($data) {return $data;}
     }

 }

 function phorum_htmlpurifier_before_editor($message)
 {
     if (!empty($GLOBALS['PHORUM']['mod_htmlpurifier']['wysiwyg'])) {
         if (!empty($message['body'])) {
             $body = $message['body'];
             // de-entity-ize contents
             $body = str_replace(array('&lt;','&gt;','&amp;'), array('<','>','&'), $body);
             $purifier =& HTMLPurifier::getInstance();
             $body = $purifier->purify($body);
             // re-entity-ize contents
             $body = htmlspecialchars($body, ENT_QUOTES, $GLOBALS['PHORUM']['DATA']['CHARSET']);
             $message['body'] = $body;
         }
     }
     return $message;
 }

 function phorum_htmlpurifier_editor_after_subject()
 {
     // don't show this message if it's a WYSIWYG editor, since it will
     // then be handled automatically
     if (!empty($GLOBALS['PHORUM']['mod_htmlpurifier']['wysiwyg'])) {
         $i = $GLOBALS['PHORUM']['DATA']['MODE'];
         if ($i == 'quote' || $i == 'edit' || $i == 'moderation') {
           ?>
           <div>
             <p>
               <strong>Notice:</strong> HTML has been scrubbed for your safety.
               If you would like to see the original, turn off WYSIWYG mode
               (consult your administrator for details.)
             </p>
           </div>
           <?php
         }
         return;
     }
     if (!empty($GLOBALS['PHORUM']['mod_htmlpurifier']['suppress_message'])) return;
     ?><div class="htmlpurifier-help">
     <p>
         <strong>HTML input</strong> is enabled. Make sure you escape all HTML and
         angled brackets with <code>&amp;lt;</code> and <code>&amp;gt;</code>.
     </p><?php
             $purifier =& HTMLPurifier::getInstance();
             $config = $purifier->config;
             if ($config->get('AutoFormat.AutoParagraph')) {
                 ?><p>
                     <strong>Auto-paragraphing</strong> is enabled. Double
                     newlines will be converted to paragraphs; for single
                     newlines, use the <code>pre</code> tag.
                 </p><?php
             }
             $html_definition = $config->getDefinition('HTML');
             $allowed = array();
             foreach ($html_definition->info as $name => $x) $allowed[] = "<code>$name</code>";
             sort($allowed);
             $allowed_text = implode(', ', $allowed);
             ?><p><strong>Allowed tags:</strong> <?php
             echo $allowed_text;
             ?>.</p><?php
         ?>
     </p>
     <p>
         For inputting literal code such as HTML and PHP for display, use
         CDATA tags to auto-escape your angled brackets, and <code>pre</code>
         to preserve newlines:
     </p>
     <pre>&lt;pre&gt;&lt;![CDATA[
 <em>Place code here</em>
 ]]&gt;&lt;/pre&gt;</pre>
     <p>
         Power users, you can hide this notice with:
         <pre>.htmlpurifier-help {display:none;}</pre>
     </p>
     </div><?php
 }

 // vim: et sw=4 sts=4
to
File written to
Definition: 01pharSimple.php:86

$config
$config
Definition: flush-definition-cache.php:23

is
Sum of both Ranges is
Definition: 03formulas.php:77

$x
$x
Definition: example_009.php:98

phorum_htmlpurifier_generate_editmessage
phorum_htmlpurifier_generate_editmessage($row)
Generates an edit message based on a message array.
Definition: htmlpurifier.php:145

phorum_htmlpurifier_migrate
phorum_htmlpurifier_migrate($data)
&#39;format&#39; hook style function that will be called to convert legacy markup into HTML.
Definition: migrate.bbcode.php:26

PHP
PHP
Definition: index.php:3

$PHORUM
$PHORUM['mod_htmlpurifier']['directives']
Definition: settings.php:28

$GLOBALS
$GLOBALS['loaded']
Global hash that tracks already loaded includes.
Definition: generate-standalone.php:18

phorum_htmlpurifier_quote
phorum_htmlpurifier_quote($array)
Overload quoting mechanism to prevent default, mail-style quote from happening.
Definition: htmlpurifier.php:195

phorum_htmlpurifier_get_config
phorum_htmlpurifier_get_config($default=false)
Initializes the appropriate configuration from either a PHP file or a module configuration value...
Definition: init-config.php:8

$name
if($format !==null) $name
Definition: metadata.php:146

phorum_htmlpurifier_editor_after_subject
phorum_htmlpurifier_editor_after_subject()
Definition: htmlpurifier.php:257

$message
catch(Exception $e) $message
Definition: saml2-logout.php:34

phorum_htmlpurifier_common
phorum_htmlpurifier_common()
Ensure that our format hook is processed last.
Definition: htmlpurifier.php:208

phorum_htmlpurifier_posting
phorum_htmlpurifier_posting($message)
Indicate that data is fully HTML and not from migration, invalidate previous caches.
Definition: htmlpurifier.php:184

$data
$data
Definition: test-settings.sample.php:14

$text
$text
Definition: errorreport.php:18

HTMLPurifier\getInstance
static getInstance($prototype=null)
Singleton for enforcing just one HTML Purifier in your system.
Definition: HTMLPurifier.php:286

phorum_htmlpurifier_remove_sig_and_editmessage
phorum_htmlpurifier_remove_sig_and_editmessage(&$row)
Removes the signature and edit message from a message.
Definition: htmlpurifier.php:165

phorum_htmlpurifier_generate_sig
phorum_htmlpurifier_generate_sig($row)
Generates a signature based on a message array.
Definition: htmlpurifier.php:129

array
Create styles array
The data for the language used.
Definition: 40duplicateStyle.php:19

phorum_htmlpurifier_before_editor
phorum_htmlpurifier_before_editor($message)
Pre-emptively performs purification if it looks like a WYSIWYG editor is being used.
Definition: htmlpurifier.php:240

$i
$i
Definition: disco.tpl.php:19

$source
$source
Definition: linkback.php:22

$row
$row
Definition: 10autofilter-selection-1.php:74

phorum_htmlpurifier_format
phorum_htmlpurifier_format($data)
HTML Purifier Phorum Mod.
Definition: htmlpurifier.php:31

defined
defined( 'APPLICATION_ENV')||define( 'APPLICATION_ENV'
Definition: bootstrap.php:27

exit
exit
Definition: old-extract-schema.php:8