Home > Developer > PHP

Php filters html tag attributes (with source code)

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >
Php filters html tag attributes (with source code)

  3. /** HTML Attribute Filter

  4. * Date: 2013-09-22
  5. * Author: fdipzone
  6. * Ver: 1.0
  7. * Edit: bbs.it-home.org
  8. * Func:
  9. * Public strip filter attributes
  10. * Public setAllow: Set the allowed attributes.
  11. * Special case for setting public setException
  12. * Public setIgnore: Set the ignored flag.
  13. * Private findElements: Search for elements to be processed
  14. * Private findAttributes search attributes
  15. * Private removeAttributes: remove attributes
  16. * Private isException: determines whether a special case exists.
  17. * Private createAttributes: create attributes
  18. * Private protect special character escape
  19. */
  21. Class HtmlAttributeFilter {// class start
  23. Private $ _ str = ''; // source string
  24. Private $ _ allow = array (); // attributes that can be retained, for example, array ('id', 'class', 'title ')
  25. Private $ _ exception = array (); // special example: array ('a' => array ('href ', 'class '), 'span '=> array ('class '))
  26. Private $ _ ignore = array (); // ignore filtered tags, for example, array ('span ', 'IMG ')
  28. /** Process HTML and filter attributes that are not retained
  29. * @ Param String $ str Source String
  30. * @ Return String
  31. */
  32. Public function strip ($ str ){
  33. $ This-> _ str = $ str;
  35. If (is_string ($ this-> _ str) & strlen ($ this-> _ str)> 0) {// judge a string
  37. $ This-> _ str = strtolower ($ this-> _ str); // Convert it to lowercase.
  39. $ Res = $ this-> findElements ();
  40. If (is_string ($ res )){
  41. Return $ res;
  42. }
  43. $ Nodes = $ this-> findAttributes ($ res );
  44. $ This-> removeAttributes ($ nodes );
  45. }
  47. Return $ this-> _ str;
  48. }
  50. /** Set allowed attributes
  51. * @ Param Array $ param
  52. */
  53. Public function setAllow ($ param = array ()){
  54. $ This-> _ allow = $ param;
  55. }
  57. /** Set special cases
  58. * @ Param Array $ param
  59. */
  60. Public function setException ($ param = array ()){
  61. $ This-> _ exception = $ param;
  62. }
  64. /** Set the ignored flag
  65. * @ Param Array $ param
  66. */
  67. Public function setIgnore ($ param = array ()){
  68. $ This-> _ ignore = $ param;
  69. }
  71. /** Search for elements to be processed */
  72. Private function findElements (){
  73. $ Nodes = array ();
  74. Preg_match_all ("/<([^! \/\> \ N] +) ([^>] *)>/I ", $ this-> _ str, $ elements );
  75. Foreach ($ elements [1] as $ el_key => $ element ){
  76. If ($ elements [2] [$ el_key]) {
  77. $ Literal = $ elements [0] [$ el_key];
  78. $ Element_name = $ elements [1] [$ el_key];
  79. $ Attributes = $ elements [2] [$ el_key];
  80. If (is_array ($ this-> _ ignore )&&! In_array ($ element_name, $ this-> _ ignore )){
  81. $ Nodes [] = array ('literal' => $ literal, 'name' => $ element_name, 'bubuckets' => $ attributes );
  82. }
  83. }
  84. }
  86. If (! $ Nodes [0]) {
  87. Return $ this-> _ str;
  88. } Else {
  89. Return $ nodes;
  90. }
  91. }
  94. /** Search for attributes
  95. * @ Param Array $ elements to be processed by nodes
  96. */
  97. Private function findAttributes ($ nodes ){
  98. Foreach ($ nodes as & $ node ){
  99. Preg_match_all ("/([^ =] +) \ s * = \ s * [\" | '] {0, 1} ([^ \ "'] *) [\ "| '] {0, 1}/I", $ node ['bubuckets'], $ attributes );
  100. If ($ attributes [1]) {
  101. Foreach ($ attributes [1] as $ att_key => $ att ){
  102. $ Literal = $ attributes [0] [$ att_key];
  103. $ Attribute_name = $ attributes [1] [$ att_key];
  104. $ Value = $ attributes [2] [$ att_key];
  105. $ Atts [] = array ('literal' => $ literal, 'name' => $ attribute_name, 'value' => $ value );
  106. }
  107. } Else {
  108. $ Node ['bubuckets'] = null;
  109. }
  110. $ Node ['bubuckets'] = $ atts;
  111. Unset ($ atts );
  112. }
  113. Return $ nodes;
  114. }
  116. /** Remove attributes
  117. * @ Param Array $ elements to be processed by nodes
  118. */
  119. Private function removeAttributes ($ nodes ){
  120. Foreach ($ nodes as $ node ){
  121. $ Node_name = $ node ['name'];
  122. $ New_attributes = '';
  123. If (is_array ($ node ['bubuckets']) {
  124. Foreach ($ node ['buckets'] as $ attribute ){
  125. If (is_array ($ this-> _ allow) & in_array ($ attribute ['name'], $ this-> _ allow )) | $ this-> isException ($ node_name, $ attribute ['name'], $ this-> _ exception )){
  126. $ New_attributes = $ this-> createAttributes ($ new_attributes, $ attribute ['name'], $ attribute ['value']);
  127. }
  128. }
  129. }
  130. $ Replacement = ($ new_attributes )? "<$ Node_name $ new_attributes>": "<$ node_name> ";
  131. $ This-> _ str = preg_replace ('/'. $ this-> protect ($ node ['literal']). '/', $ replacement, $ this-> _ str );
  132. }
  133. }
  135. /** Determine whether a special case exists
  136. * @ Param String $ element_name element name
  137. * @ Param String $ attribute_name attribute name
  138. * @ Param Array $ special exceptions
  139. * @ Return boolean
  140. */
  141. Private function isException ($ element_name, $ attribute_name, $ exceptions ){
  142. If (array_key_exists ($ element_name, $ this-> _ exception )){
  143. If (in_array ($ attribute_name, $ this-> _ exception [$ element_name]) {
  144. Return true;
  145. }
  146. }
  147. Return false;
  148. }

  149. /** Create attributes

  150. * @ Param String $ new_attributes
  151. * @ Param String $ name
  152. * @ Param String $ value
  153. * @ Return String
  154. */
  155. Private function createAttributes ($ new_attributes, $ name, $ value ){
  156. If ($ new_attributes ){
  157. $ New_attributes. = "";
  158. }
  159. $ New_attributes. = "$ name = \" $ value \"";
  160. Return $ new_attributes;
  161. }
  163. /** Escape special characters
  164. * @ Param String $ str Source String
  165. * @ Return String
  166. */
  167. Private function protect ($ str ){
  168. $ Conversions = array (
  169. "^" => "\ ^ ",
  170. "[" => "\[",
  171. "." => "\.",
  172. "$" => "\ $ ",
  173. "{" => "\{",
  174. "*" => "\*",
  175. "(" => "\(",
  176. "\\" => "\\\\",
  177. "/" => "\/",
  178. "+" => "\ + ",
  179. ")" => "\)",
  180. "|" => "\ | ",
  181. "? "=> "\? ",
  182. "<" => "\ <",
  183. ">" => "\>"
  184. );
  185. Return strtr ($ str, $ conversions );
  186. }
  188. } // Class end
  190. ?>

2. Demo

  2. Require ('htmlattributefilter. class. php ');
  4. $ Str ='

    • Yuna

      Love

      Want to knowYES

    ';
  6. $ Obj = new HtmlAttributeFilter ();
  8. // Allow the id attribute
  9. $ Obj-> setAllow (array ('id '));
  11. $ Obj-> setException (array (
  12. 'A' => array ('href '), // a tag allows special cases with the href attribute
  13. 'Ul '=> array ('class') // The ul tag allows special class attribute exceptions.
  14. ));
  16. // The img label is ignored and no attributes are filtered.
  17. $ Obj-> setIgnore (array ('IMG '));
  19. Echo 'source str:
    ';
  20. Echo htmlspecialchars ($ str ).'

    ';
  21. Echo 'filter str:
    ';
  22. Echo htmlspecialchars ($ obj-> strip ($ str ));
  23. ?>

Appendix: php source code used to filter html tag attribute classes

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More