mirror of
https://github.com/smogon/pokemon-showdown-client.git
synced 2026-03-22 18:15:55 -05:00
2105dc8e57
Closes #1567 The main reason I'm not simply merging Annika's PR is because this way makes it clearer that I'm taking responsibility for all this code, that it's mostly code I wrote, and also because it makes it easier to ensure that none of the files have been changed. (Not that I don't personally trust Annika, but I have something resembling an obligation to users not to expose them to risks based on personal trust.)
39 lines
1009 B
PHP
39 lines
1009 B
PHP
<?php
|
|
|
|
/**
|
|
* XHTML 1.1 Iframe Module provides inline frames.
|
|
*
|
|
* @note This module is not considered safe unless an Iframe
|
|
* whitelisting mechanism is specified. Currently, the only
|
|
* such mechanism is %URL.SafeIframeRegexp
|
|
*/
|
|
class HTMLPurifier_HTMLModule_Iframe extends HTMLPurifier_HTMLModule
|
|
{
|
|
|
|
public $name = 'Iframe';
|
|
public $safe = false;
|
|
|
|
public function setup($config) {
|
|
if ($config->get('HTML.SafeIframe')) {
|
|
$this->safe = true;
|
|
}
|
|
$this->addElement(
|
|
'iframe', 'Inline', 'Flow', 'Common',
|
|
array(
|
|
'src' => 'URI#embedded',
|
|
'width' => 'Length',
|
|
'height' => 'Length',
|
|
'name' => 'ID',
|
|
'scrolling' => 'Enum#yes,no,auto',
|
|
'frameborder' => 'Enum#0,1',
|
|
'longdesc' => 'URI',
|
|
'marginheight' => 'Pixels',
|
|
'marginwidth' => 'Pixels',
|
|
)
|
|
);
|
|
}
|
|
|
|
}
|
|
|
|
// vim: et sw=4 sts=4
|