mirror of
https://github.com/WordPress/WordPress.git
synced 2025-01-25 17:51:27 +01:00
0860bb2771
Prior to about 2013, many class methods lacked even access modifiers which made the `@access` notations that much more useful. Now that we've gotten to a point where the codebase is more mature from a maintenance perspective and we can finally remove these notations. Notable exceptions to this change include standalone functions notated as private as well as some classes still considered to represent "private" APIs. See #41452. Built from https://develop.svn.wordpress.org/trunk@41162 git-svn-id: http://core.svn.wordpress.org/trunk@41002 1a063a9b-81f0-0310-95a4-ce76da25c4cd
59 lines
1.7 KiB
PHP
59 lines
1.7 KiB
PHP
<?php
|
|
/**
|
|
* Feed API: WP_SimplePie_Sanitize_KSES class
|
|
*
|
|
* @package WordPress
|
|
* @subpackage Feed
|
|
* @since 4.7.0
|
|
*/
|
|
|
|
/**
|
|
* Core class used to implement SimpliePie feed sanitization.
|
|
*
|
|
* Extends the SimplePie_Sanitize class to use KSES, because
|
|
* we cannot universally count on DOMDocument being available.
|
|
*
|
|
* @since 3.5.0
|
|
*
|
|
* @see SimplePie_Sanitize
|
|
*/
|
|
class WP_SimplePie_Sanitize_KSES extends SimplePie_Sanitize {
|
|
|
|
/**
|
|
* WordPress SimplePie sanitization using KSES.
|
|
*
|
|
* Sanitizes the incoming data, to ensure that it matches the type of data expected, using KSES.
|
|
*
|
|
* @since 3.5.0
|
|
*
|
|
* @param mixed $data The data that needs to be sanitized.
|
|
* @param integer $type The type of data that it's supposed to be.
|
|
* @param string $base Optional. The `xml:base` value to use when converting relative
|
|
* URLs to absolute ones. Default empty.
|
|
* @return mixed Sanitized data.
|
|
*/
|
|
public function sanitize( $data, $type, $base = '' ) {
|
|
$data = trim( $data );
|
|
if ( $type & SIMPLEPIE_CONSTRUCT_MAYBE_HTML ) {
|
|
if (preg_match('/(&(#(x[0-9a-fA-F]+|[0-9]+)|[a-zA-Z0-9]+)|<\/[A-Za-z][^\x09\x0A\x0B\x0C\x0D\x20\x2F\x3E]*' . SIMPLEPIE_PCRE_HTML_ATTRIBUTE . '>)/', $data)) {
|
|
$type |= SIMPLEPIE_CONSTRUCT_HTML;
|
|
}
|
|
else {
|
|
$type |= SIMPLEPIE_CONSTRUCT_TEXT;
|
|
}
|
|
}
|
|
if ( $type & SIMPLEPIE_CONSTRUCT_BASE64 ) {
|
|
$data = base64_decode( $data );
|
|
}
|
|
if ( $type & ( SIMPLEPIE_CONSTRUCT_HTML | SIMPLEPIE_CONSTRUCT_XHTML ) ) {
|
|
$data = wp_kses_post( $data );
|
|
if ( $this->output_encoding !== 'UTF-8' ) {
|
|
$data = $this->registry->call( 'Misc', 'change_encoding', array( $data, 'UTF-8', $this->output_encoding ) );
|
|
}
|
|
return $data;
|
|
} else {
|
|
return parent::sanitize( $data, $type, $base );
|
|
}
|
|
}
|
|
}
|