Class Text_Filter_xss

Description

This filter attempts to make HTML safe for viewing. IT IS NOT PERFECT. If

you enable HTML viewing, you are opening a security hole. With the current state of the web, I believe that the best we can do is to make sure that people *KNOW* HTML is a security hole, clean up what we can, and leave it at that.

$Horde: framework/Text_Filter/Filter/xss.php,v 1.1.2.21 2010/05/10 12:57:42 jan Exp $

Copyright 2004-2009 The Horde Project (http://www.horde.org/)

See the enclosed file COPYING for license information (LGPL). If you did not receive this file, see http://www.fsf.org/copyleft/lgpl.html.

Located in /Text_Filter/Filter/xss.php (line 20)

Text_Filter
   |
   --Text_Filter_xss
Variable Summary
 array $_params
Method Summary
 array getPatterns ()
 string postProcess (string $text)
 string preProcess (string $text)
Variables
array $_params = array('body_only' => true,
'replace' => 'XSSCleaned',
'strip_styles' => true,
'strip_style_attributes' => true)
(line 27)

Filter parameters.


Redefinition of:
Text_Filter::$_params
Filter parameters.
Methods
getPatterns (line 37)

Returns a hash with replace patterns.

  • return: Patterns hash.
array getPatterns ()

Redefinition of:
Text_Filter::getPatterns()
Returns a hash with replace patterns.
postProcess (line 237)

Executes any code necessary after applying the filter patterns.

  • return: The modified text.
string postProcess (string $text)
  • string $text: The text after the filtering.

Redefinition of:
Text_Filter::postProcess()
Executes any code necessaray after applying the filter patterns.
preProcess (line 218)

Executes any code necessary before applying the filter patterns.

  • return: The modified text.
string preProcess (string $text)
  • string $text: The text before the filtering.

Redefinition of:
Text_Filter::preProcess()
Executes any code necessaray before applying the filter patterns.

Inherited Methods

Inherited From Text_Filter

 Text_Filter::Text_Filter()
 Text_Filter::factory()
 Text_Filter::filter()
 Text_Filter::getPatterns()
 Text_Filter::postProcess()
 Text_Filter::preProcess()

Documentation generated on Sun, 30 Jan 2011 05:23:33 +0000 by phpDocumentor 1.4.3