X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=banana%2Fmisc.inc.php;h=f8df8709168cc9fe047e0d758ee8ae95ab49a44f;hb=76032c26b695305820448a33acd03e73cc502b41;hp=410ec7e68577f7c61f496da721e7e74cdb76e5bd;hpb=f5eb6c66d0e4e7878cd4b388bdfbb191ab709d70;p=banana.git diff --git a/banana/misc.inc.php b/banana/misc.inc.php index 410ec7e..f8df870 100644 --- a/banana/misc.inc.php +++ b/banana/misc.inc.php @@ -14,7 +14,7 @@ function _b_($str) { return utf8_decode(dgettext('banana', utf8_encode($str))); } function to_entities($str) { - require_once 'banana/utf8.php'; + require_once dirname(__FILE__).'/utf8.php'; return utf8entities(htmlentities($str, ENT_NOQUOTES, 'UTF-8')); } @@ -35,14 +35,15 @@ function textFormat_translate($format) * Taken from php.net */ - /** +/** * @return string * @param string * @desc Strip forbidden tags and delegate tag-source check to removeEvilAttributes() */ function removeEvilTags($source) { - $allowedTags = '
'; + $allowedTags = '
)\n?-- \n?(
'; + $source = preg_replace('||i', '
', $source); $source = strip_tags($source, $allowedTags); return preg_replace('/<(.*?)>/ie', "'<'.removeEvilAttributes('\\1').'>'", $source); } @@ -59,6 +60,55 @@ function removeEvilAttributes($tagSource) return stripslashes(preg_replace("/$stripAttrib/i", '', $tagSource)); } +/** Convert html to plain text + */ +function htmlToPlainText($res) +{ + $res = trim(html_entity_decode(strip_tags($res, ''; @@ -258,19 +308,30 @@ function wrap($text, $_prefix="") function formatbody($_text, $format='plain') { if ($format == 'html') { - $res = ''))); + $res = preg_replace("@?(br|p|div)[^>]*>@i", "\n", $res); + if (!is_utf8($res)) { + $res = utf8_encode($res); + } + return $res; +} + +/******************************************************************************** + * RICHTEXT STUFF + */ + +/** Convert richtext to html + */ +function richtextToHtml($source) +{ + $tags = Array('bold' => 'b', + 'italic' => 'i', + 'smaller' => 'small', + 'bigger' => 'big', + 'underline' => 'u', + 'subscript' => 'sub', + 'superscript' => 'sup', + 'excerpt' => 'blockquote', + 'paragraph' => 'p', + 'nl' => 'br' + ); + + // clean unsupported tags + $protectedTags = '
<'.join('><', array_keys($tags)).'>'; + $source = strip_tags($source, $protectedTags); + + // convert richtext tags to html + foreach (array_keys($tags) as $tag) { + $source = preg_replace('@(?)'.$tag.'([^>]*>)@i', '\1'.$tags[$tag].'\2', $source); + } + + // some special cases + $source = preg_replace('@ @i', ' @i', '', $source); + $source = preg_replace('@
--
', $source); + $source = preg_replace('@@i', '<', $source); + $source = preg_replace('@ ]*>((?:[^<]|<(?!/comment>))*) @i', '', $source); + return removeEvilAttributes($source); +} + /******************************************************************************** * HEADER STUFF */ @@ -223,10 +273,10 @@ function displayshortcuts($first = -1) { } } else { $res .= "[" - ._b_('Répondre')."] "; - if ($banana->post->checkcancel()) { + ._b_('Répondre')."] "; + if ($banana->post && $banana->post->checkcancel()) { $res .= "[" - ._b_('Annuler ce message')."] "; + ._b_('Annuler ce message')."] "; } } return $res.'
'.removeEvilTags(html_entity_decode(to_entities($_text))).'
'; + $res = '
'.html_entity_decode(to_entities(removeEvilTags($_text))).'
'; + } else if ($format == 'richtext') { + $res = '
'.html_entity_decode(to_entities(richtextToHtml($_text))).'
'; + $format = 'html'; } else { $res = "\n\n" . to_entities(wrap($_text, ""))."\n\n"; } $res = preg_replace("/(<|>|")/", " \\1 ", $res); - $res = preg_replace('/(["\[])?((https?|ftp|news):\/\/[a-z@0-9.~%$£µ&i#\-+=_\/\?]*)(["\]])?/i', "\\1\\2\\4", $res); + $res = preg_replace('/(["\[])?((https?|ftp|news):\/\/[a-z@0-9.~%$£µ&i#\-+=_\/\?]*)(["\]])?/i', '\1\2\4', $res); $res = preg_replace("/ (<|>|") /", "\\1", $res); if ($format == 'html') { - $res = preg_replace("@(]*>|
)@", "\\1
-- \\2", $res); - $res = preg_replace("@
\n?-- \n?(]*>)@", "
--
\\2", $res); - $parts = preg_split("@(:?]*>\n?-- \n?
|
]*>\n?-- \n?
)@", $res); + $res = preg_replace("@()\n?-- \n?(]*>|
]*>)@", "\\1
-- \\2", $res); + $res = preg_replace("@
]*>\n?-- \n?(]*>)@", "
--
\\2", $res); + $parts = preg_split("@(:?]*>\n?-- \n?
|
]*>\n?-- \n?
]*>)@", $res); } else { + for ($i = 1 ; preg_match("@(^||\n)>@i", $res) ; $i++) { + $res = preg_replace("@(^||\n)((>[^\n]*\n)+)@ie", + "'\\1'" + .".stripslashes(preg_replace('@(^||\n)>[ \\t\\r]*@i', '\\1', '\\2'))" + .".''", + $res); + } + $res = preg_replace("@-- ?\n@", "\n-- \n", $res); $parts = preg_split("/\n-- ?\n/", $res); } @@ -278,7 +339,7 @@ function formatbody($_text, $format='plain') $sign = array_pop($parts); if ($format == 'html') { $res = join('
--
', $parts); - $sign = '
'.$sign; + $sign = '
'.$sign.'
'; } else { $res = join('\n-- \n', $parts); $sign = ''.$sign;