简体中文(ZH-CN)English(EN)繁体中文(ZH-TW)日本語(JA)한국어(KO)Melayu(MS)Français(FR)Deutsch(DE)
Home
Article
Q&A
Course
Topic
Download
Game
Dictionary
Recent Updates

Home  >  Article  >  Backend Development  >  PHP filter html tag attribute class (source code attached)

PHP filter html tag attribute class (source code attached)

WBOY
WBOYOriginal
2016-07-25 08:55:20926browse

  3. /**HTML Attribute Filter

  4. * Date: 2013-09-22
  5. * Author: fdipzone
  6. * ver: 1.0
  7. * edit: bbs.it-home.org
  8. * Func:
  9. * public strip filter attribute
  10. * public setAllow set allowed Attributes
  11. * public setException Set special case
  12. * public setIgnore Set ignored mark
  13. * private findElements Search for elements that need to be processed
  14. * private findAttributes Search for attributes
  15. * private removeAttributes Remove attributes
  16. * private isException Determine whether it is a special case
  17. * private createAttributes Create attributes
  18. * private protect special character escape
  19. */
  21. class HtmlAttributeFilter{ // class start
  23. private $_str = ''; // Source string
  24. private $_allow = array(); // Allowed reserved attributes such as: array('id','class','title')
  25. private $_exception = array(); // Special cases such as: array('a'=>array ('href','class'),'span'=>array('class'))
  26. private $_ignore = array(); // Ignore filtered tags. For example: array('span','img')
  28. /**Process HTML, filter unretained attributes
  29. * @param String $str source string
  30. * @return String
  31. */
  32. public function strip($str){
  33. $this->_str = $str;
  35. if(is_string($this->_str) && strlen($this-> ;_str)>0){ // Determine the string
  37. $this->_str = strtolower($this->_str); // Convert to lowercase
  39. $res = $this->findElements() ;
  40. if(is_string($res)){
  41. return $res;
  42. }
  43. $nodes = $this->findAttributes($res);
  44. $this->removeAttributes($nodes);
  45. }
  47. return $this->_str;
  48. }
  50. /**Set allowed properties
  51. * @param Array $param
  52. */
  53. public function setAllow($param=array()){
  54. $this->_allow = $param;
  55. }
  57. /** Set special case
  58. * @param Array $param
  59. */
  60. public function setException($param=array()){
  61. $this->_exception = $param;
  62. }
  64. /**Set ignored tags
  65. * @param Array $param
  66. */
  67. public function setIgnore($param=array ()){
  68. $this->_ignore = $param;
  69. }
  71. /**Search for elements to be processed*/
  72. private function findElements(){
  73. $nodes = array();
  74. preg_match_all("/<( [^ !/>n]+)([^>]*)>/i", $this->_str, $elements);
  75. foreach($elements[1] as $el_key => $ element){
  76. if($elements[2][$el_key]){
  77. $literal = $elements[0][$el_key];
  78. $element_name = $elements[1][$el_key];
  79. $attributes = $ elements[2][$el_key];
  80. if(is_array($this->_ignore) && !in_array($element_name, $this->_ignore)){
  81. $nodes[] = array('literal'=> ;$literal, 'name'=>$element_name, 'attributes'=>$attributes);
  82. }
  83. }
  84. }
  86. if(!$nodes[0]){
  87. return $this->_str;
  88. }else{
  89. return $nodes;
  90. }
  91. }
  94. /**Search attribute
  95. * @param Array $nodes elements to be processed
  96. */
  97. private function findAttributes($nodes){
  98. foreach($nodes as &$node){
  99. preg_match_all("/( [^ =]+)s*=s*["|']{0,1}([^"']*)["|']{0,1}/i", $node['attributes'] , $attributes);
  100. if($attributes[1]){
  101. foreach($attributes[1] as $att_key=>$att){
  102. $literal = $attributes[0][$att_key];
  103. $attribute_name = $attributes[1][$att_key];
  104. $value = $attributes[2][$att_key];
  105. $atts[] = array('literal'=>$literal, 'name'=>$attribute_name , 'value'=>$value);
  106. }
  107. }else{
  108. $node['attributes'] = null;
  109. }
  110. $node['attributes'] = $atts;
  111. unset($atts);
  112. }
  113. return $nodes;
  114. }
  116. /**Remove attributes
  117. * @param Array $nodes elements to be processed
  118. */
  119. private function removeAttributes($nodes){
  120. foreach($nodes as $node){
  121. $node_name = $node['name'];
  122. $new_attributes = '';
  123. if(is_array($node['attributes'])){
  124. foreach($node['attributes'] as $attribute){
  125. if((is_array($this->_allow) && in_array($attribute['name'], $this->_allow)) || $this->isException($node_name, $attribute['name'], $this->_exception)){
  126. $new_attributes = $this->createAttributes($new_attributes, $attribute['name'], $attribute['value']);
  127. }
  128. }
  129. }
  130. $replacement = ($new_attributes) ? "<$node_name $new_attributes>" : "<$node_name>";
  131. $this->_str = preg_replace('/'.$this->protect($node['literal']).'/', $replacement, $this->_str);
  132. }
  133. }
  135. /**Determine whether it is a special case
  136. * @param String $element_name element name
  137. * @param String $attribute_name attribute name
  138. * @param Array $exceptions allowed special cases
  139. * @return boolean
  140. */
  141. private function isException($element_name, $attribute_name, $exceptions){
  142. if(array_key_exists($element_name, $this->_exception)){
  143. if(in_array($attribute_name, $this->_exception[$element_name])){
  144. return true;
  145. }
  146. }
  147. return false;
  148. }

  149. /**创建属性

  150. * @param String $new_attributes
  151. * @param String $name
  152. * @param String $value
  153. * @return String
  154. */
  155. private function createAttributes($new_attributes, $name, $value){
  156. if($new_attributes){
  157. $new_attributes .= " ";
  158. }
  159. $new_attributes .= "$name="$value"";
  160. return $new_attributes;
  161. }
  163. /**Special character escape
  164. * @param String $str source string
  165. * @return String
  166. */
  167. private function protect($str){
  168. $conversions = array(
  169. "^" => "^",
  170. "[" => "[",
  171. "." => ".",
  172. "$" => "$",
  173. "{" => "{",
  174. "*" => "*",
  175. "(" => "(",
  176. "\" => "\\",
  177. "/" => "/",
  178. "+" => "+",
  179. ")" => ")",
  180. "|" => "|",
  181. "?" => "?",
  182. "<" => "<",
  183. ">" => ">"
  184. );
  185. return strtr($str, $conversions);
  186. }
  188. } // class end
  190. ?>

复制代码

2, Demonstration example

  2. require('HtmlAttributeFilter.class.php');
  4. $str = '';
  6. $obj = new HtmlAttributeFilter();
  8. // Allow id attribute
  9. $ obj->setAllow(array('id'));
  11. $obj->setException(array(
  12. 'a' => array('href'), // a tag allows special cases of href attribute
  13. ' ul' => array('class') // The ul tag allows special cases of class attributes
  14. ));
  16. // The img tag is ignored and no attributes are filtered
  17. $obj->setIgnore(array('img') );
  19. echo 'source str:
    ';
  20. echo htmlspecialchars($str).'

    ';
  21. echo 'filter str:
    ';
  22. echo htmlspecialchars( $obj->strip($str));
  23. ?>
Copy the code

Attached, the source code download address of php filtering html tag attribute class



Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Previous article:Installation steps to add GD library to php under linuxNext article:Installation steps to add GD library to php under linux

Related articles

See more