Accueil Explorer Aide
Connexion
SylvieLorxu
/
freepost
forké depuis zPlus/freepost
Suivre 1
Voter 0
Fork 0
Fichiers
Branche: master
Branches Tags
freepost
/
template
/
Twig
/
NodeVisitor
/
Escaper.php

Escaper.php 4.8 KB
Lien permanent Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of Twig.
    5. 

  5.  *
    6. 

  6.  * (c) 2009 Fabien Potencier
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. /**
    13. 

  13.  * Twig_NodeVisitor_Escaper implements output escaping.
    14. 

  14.  *
    15. 

  15.  * @author Fabien Potencier <fabien@symfony.com>
    16. 

  16.  */
    17. 

  17. class Twig_NodeVisitor_Escaper extends Twig_BaseNodeVisitor
    18. 

  18. {
    19. 

  19.     protected $statusStack = array();
    20. 

  20.     protected $blocks = array();
    21. 

  21.     protected $safeAnalysis;
    22. 

  22.     protected $traverser;
    23. 

  23.     protected $defaultStrategy = false;
    24. 

  24.     protected $safeVars = array();
    25. 

  25. 

  26.     public function __construct()
    27. 

  27.     {
    28. 

  28.         $this->safeAnalysis = new Twig_NodeVisitor_SafeAnalysis();
    29. 

  29.     }
    30. 

  30. 

  31.     /**
    32. 

  32.      * {@inheritdoc}
    33. 

  33.      */
    34. 

  34.     protected function doEnterNode(Twig_Node $node, Twig_Environment $env)
    35. 

  35.     {
    36. 

  36.         if ($node instanceof Twig_Node_Module) {
    37. 

  37.             if ($env->hasExtension('escaper') && $defaultStrategy = $env->getExtension('escaper')->getDefaultStrategy($node->getAttribute('filename'))) {
    38. 

  38.                 $this->defaultStrategy = $defaultStrategy;
    39. 

  39.             }
    40. 

  40.             $this->safeVars = array();
    41. 

  41.         } elseif ($node instanceof Twig_Node_AutoEscape) {
    42. 

  42.             $this->statusStack[] = $node->getAttribute('value');
    43. 

  43.         } elseif ($node instanceof Twig_Node_Block) {
    44. 

  44.             $this->statusStack[] = isset($this->blocks[$node->getAttribute('name')]) ? $this->blocks[$node->getAttribute('name')] : $this->needEscaping($env);
    45. 

  45.         } elseif ($node instanceof Twig_Node_Import) {
    46. 

  46.             $this->safeVars[] = $node->getNode('var')->getAttribute('name');
    47. 

  47.         }
    48. 

  48. 

  49.         return $node;
    50. 

  50.     }
    51. 

  51. 

  52.     /**
    53. 

  53.      * {@inheritdoc}
    54. 

  54.      */
    55. 

  55.     protected function doLeaveNode(Twig_Node $node, Twig_Environment $env)
    56. 

  56.     {
    57. 

  57.         if ($node instanceof Twig_Node_Module) {
    58. 

  58.             $this->defaultStrategy = false;
    59. 

  59.             $this->safeVars = array();
    60. 

  60.         } elseif ($node instanceof Twig_Node_Expression_Filter) {
    61. 

  61.             return $this->preEscapeFilterNode($node, $env);
    62. 

  62.         } elseif ($node instanceof Twig_Node_Print) {
    63. 

  63.             return $this->escapePrintNode($node, $env, $this->needEscaping($env));
    64. 

  64.         }
    65. 

  65. 

  66.         if ($node instanceof Twig_Node_AutoEscape || $node instanceof Twig_Node_Block) {
    67. 

  67.             array_pop($this->statusStack);
    68. 

  68.         } elseif ($node instanceof Twig_Node_BlockReference) {
    69. 

  69.             $this->blocks[$node->getAttribute('name')] = $this->needEscaping($env);
    70. 

  70.         }
    71. 

  71. 

  72.         return $node;
    73. 

  73.     }
    74. 

  74. 

  75.     protected function escapePrintNode(Twig_Node_Print $node, Twig_Environment $env, $type)
    76. 

  76.     {
    77. 

  77.         if (false === $type) {
    78. 

  78.             return $node;
    79. 

  79.         }
    80. 

  80. 

  81.         $expression = $node->getNode('expr');
    82. 

  82. 

  83.         if ($this->isSafeFor($type, $expression, $env)) {
    84. 

  84.             return $node;
    85. 

  85.         }
    86. 

  86. 

  87.         $class = get_class($node);
    88. 

  88. 

  89.         return new $class(
    90. 

  90.             $this->getEscaperFilter($type, $expression),
    91. 

  91.             $node->getLine()
    92. 

  92.         );
    93. 

  93.     }
    94. 

  94. 

  95.     protected function preEscapeFilterNode(Twig_Node_Expression_Filter $filter, Twig_Environment $env)
    96. 

  96.     {
    97. 

  97.         $name = $filter->getNode('filter')->getAttribute('value');
    98. 

  98. 

  99.         $type = $env->getFilter($name)->getPreEscape();
    100. 

  100.         if (null === $type) {
    101. 

  101.             return $filter;
    102. 

  102.         }
    103. 

  103. 

  104.         $node = $filter->getNode('node');
    105. 

  105.         if ($this->isSafeFor($type, $node, $env)) {
    106. 

  106.             return $filter;
    107. 

  107.         }
    108. 

  108. 

  109.         $filter->setNode('node', $this->getEscaperFilter($type, $node));
    110. 

  110. 

  111.         return $filter;
    112. 

  112.     }
    113. 

  113. 

  114.     protected function isSafeFor($type, Twig_NodeInterface $expression, $env)
    115. 

  115.     {
    116. 

  116.         $safe = $this->safeAnalysis->getSafe($expression);
    117. 

  117. 

  118.         if (null === $safe) {
    119. 

  119.             if (null === $this->traverser) {
    120. 

  120.                 $this->traverser = new Twig_NodeTraverser($env, array($this->safeAnalysis));
    121. 

  121.             }
    122. 

  122. 

  123.             $this->safeAnalysis->setSafeVars($this->safeVars);
    124. 

  124. 

  125.             $this->traverser->traverse($expression);
    126. 

  126.             $safe = $this->safeAnalysis->getSafe($expression);
    127. 

  127.         }
    128. 

  128. 

  129.         return in_array($type, $safe) || in_array('all', $safe);
    130. 

  130.     }
    131. 

  131. 

  132.     protected function needEscaping(Twig_Environment $env)
    133. 

  133.     {
    134. 

  134.         if (count($this->statusStack)) {
    135. 

  135.             return $this->statusStack[count($this->statusStack) - 1];
    136. 

  136.         }
    137. 

  137. 

  138.         return $this->defaultStrategy ? $this->defaultStrategy : false;
    139. 

  139.     }
    140. 

  140. 

  141.     protected function getEscaperFilter($type, Twig_NodeInterface $node)
    142. 

  142.     {
    143. 

  143.         $line = $node->getLine();
    144. 

  144.         $name = new Twig_Node_Expression_Constant('escape', $line);
    145. 

  145.         $args = new Twig_Node(array(new Twig_Node_Expression_Constant((string) $type, $line), new Twig_Node_Expression_Constant(null, $line), new Twig_Node_Expression_Constant(true, $line)));
    146. 

  146. 

  147.         return new Twig_Node_Expression_Filter($node, $name, $args, $line);
    148. 

  148.     }
    149. 

  149. 

  150.     /**
    151. 

  151.      * {@inheritdoc}
    152. 

  152.      */
    153. 

  153.     public function getPriority()
    154. 

  154.     {
    155. 

  155.         return 0;
    156. 

  156.     }
    157. 

  157. }
    158. 

  158.