aboutsummaryrefslogtreecommitdiffstats
path: root/vendor/ezyang/htmlpurifier/library/HTMLPurifier/HTMLModule/Iframe.php
blob: 71dfc7744772e4c991821b2608e6729041afb472 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
<?php

/**
 * XHTML 1.1 Iframe Module provides inline frames.
 *
 * @note This module is not considered safe unless an Iframe
 * whitelisting mechanism is specified.  Currently, the only
 * such mechanism is %URL.SafeIframeRegexp
 */
class HTMLPurifier_HTMLModule_Iframe extends HTMLPurifier_HTMLModule
{

    /**
     * @type string
     */
    public $name = 'Iframe';

    /**
     * @type bool
     */
    public $safe = false;

    /**
     * @param HTMLPurifier_Config $config
     */
    public function setup($config)
    {
        if ($config->get('HTML.SafeIframe')) {
            $this->safe = true;
        }
        $attrs = array(
            'src' => 'URI#embedded',
            'width' => 'Length',
            'height' => 'Length',
            'name' => 'ID',
            'scrolling' => 'Enum#yes,no,auto',
            'frameborder' => 'Enum#0,1',
            'longdesc' => 'URI',
            'marginheight' => 'Pixels',
            'marginwidth' => 'Pixels',
        );

        if ($config->get('HTML.Trusted')) {
            $attrs['allowfullscreen'] = 'Bool#allowfullscreen';
        }

        $this->addElement(
            'iframe',
            'Inline',
            'Flow',
            'Common',
            $attrs
        );
    }
}

// vim: et sw=4 sts=4