Home Explore Help
Register Sign In
GlobalCube
/
qbuilder
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: main
Branches Tags
qbuilder
/
smarty
/
libs
/
plugins
/
modifier.escape.php

modifier.escape.php 2.5 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Smarty plugin
    4. 

  4.  * @package Smarty
    5. 

  5.  * @subpackage plugins
    6. 

  6.  */
    7. 

  7. 

  8. 

  9. /**
    10. 

  10.  * Smarty escape modifier plugin
    11. 

  11.  *
    12. 

  12.  * Type:     modifier<br>
    13. 

  13.  * Name:     escape<br>
    14. 

  14.  * Purpose:  Escape the string according to escapement type
    15. 

  15.  * @link http://smarty.php.net/manual/en/language.modifier.escape.php
    16. 

  16.  *          escape (Smarty online manual)
    17. 

  17.  * @param string
    18. 

  18.  * @param html|htmlall|url|quotes|hex|hexentity|javascript
    19. 

  19.  * @return string
    20. 

  20.  */
    21. 

  21. function smarty_modifier_escape($string, $esc_type = 'html')
    22. 

  22. {
    23. 

  23.     switch ($esc_type) {
    24. 

  24.         case 'html':
    25. 

  25.             return htmlspecialchars($string, ENT_QUOTES);
    26. 

  26. 

  27.         case 'htmlall':
    28. 

  28.             return htmlentities($string, ENT_QUOTES);
    29. 

  29. 

  30.         case 'url':
    31. 

  31.             return urlencode($string);
    32. 

  32. 

  33.         case 'quotes':
    34. 

  34.             // escape unescaped single quotes
    35. 

  35.             return preg_replace("%(?<!\\\\)'%", "\\'", $string);
    36. 

  36. 

  37.         case 'hex':
    38. 

  38.             // escape every character into hex
    39. 

  39.             $return = '';
    40. 

  40.             for ($x=0; $x < strlen($string); $x++) {
    41. 

  41.                 $return .= '%' . bin2hex($string[$x]);
    42. 

  42.             }
    43. 

  43.             return $return;
    44. 

  44.             
    45. 

  45.         case 'hexentity':
    46. 

  46.             $return = '';
    47. 

  47.             for ($x=0; $x < strlen($string); $x++) {
    48. 

  48.                 $return .= '&#x' . bin2hex($string[$x]) . ';';
    49. 

  49.             }
    50. 

  50.             return $return;
    51. 

  51. 

  52.         case 'decentity':
    53. 

  53.             $return = '';
    54. 

  54.             for ($x=0; $x < strlen($string); $x++) {
    55. 

  55.                 $return .= '&#' . ord($string[$x]) . ';';
    56. 

  56.             }
    57. 

  57.             return $return;
    58. 

  58. 

  59.         case 'javascript':
    60. 

  60.             // escape quotes and backslashes, newlines, etc.
    61. 

  61.             return strtr($string, array('\\'=>'\\\\',"'"=>"\\'",'"'=>'\\"',"\r"=>'\\r',"\n"=>'\\n','</'=>'<\/'));
    62. 

  62.             
    63. 

  63.         case 'mail':
    64. 

  64.             // safe way to display e-mail address on a web page
    65. 

  65.             return str_replace(array('@', '.'),array(' [AT] ', ' [DOT] '), $string);
    66. 

  66.             
    67. 

  67.         case 'nonstd':
    68. 

  68.            // escape non-standard chars, such as ms document quotes
    69. 

  69.            $_res = '';
    70. 

  70.            for($_i = 0, $_len = strlen($string); $_i < $_len; $_i++) {
    71. 

  71.                $_ord = ord($string{$_i});
    72. 

  72.                // non-standard char, escape it
    73. 

  73.                if($_ord >= 126){
    74. 

  74.                    $_res .= '&#' . $_ord . ';';
    75. 

  75.                }
    76. 

  76.                else {
    77. 

  77.                    $_res .= $string{$_i};
    78. 

  78.                }
    79. 

  79.            }
    80. 

  80.            return $_res;
    81. 

  81. 

  82.         default:
    83. 

  83.             return $string;
    84. 

  84.     }
    85. 

  85. }
    86. 

  86. 

  87. /* vim: set expandtab: */
    88. 

  88. 

  89. ?>
    90.