1: | <?php
|
2: |
|
3: | class HTMLPurifier_URIFilter_DisableExternal extends HTMLPurifier_URIFilter
|
4: | {
|
5: | |
6: | |
7: |
|
8: | public $name = 'DisableExternal';
|
9: |
|
10: | |
11: | |
12: |
|
13: | protected $ourHostParts = false;
|
14: |
|
15: | |
16: | |
17: | |
18: |
|
19: | public function prepare($config)
|
20: | {
|
21: | $our_host = $config->getDefinition('URI')->host;
|
22: | if ($our_host !== null) {
|
23: | $this->ourHostParts = array_reverse(explode('.', $our_host));
|
24: | }
|
25: | }
|
26: |
|
27: | |
28: | |
29: | |
30: | |
31: | |
32: |
|
33: | public function filter(&$uri, $config, $context)
|
34: | {
|
35: | if (is_null($uri->host)) {
|
36: | return true;
|
37: | }
|
38: | if ($this->ourHostParts === false) {
|
39: | return false;
|
40: | }
|
41: | $host_parts = array_reverse(explode('.', $uri->host));
|
42: | foreach ($this->ourHostParts as $i => $x) {
|
43: | if (!isset($host_parts[$i])) {
|
44: | return false;
|
45: | }
|
46: | if ($host_parts[$i] != $this->ourHostParts[$i]) {
|
47: | return false;
|
48: | }
|
49: | }
|
50: | return true;
|
51: | }
|
52: | }
|
53: |
|
54: |
|
55: | |