Merge pull request #1212 from ArthurHoaro/hotfix/hashtag-md-escape

Fix hashtags with markdown escape enabled
author: ArthurHoaro <arthur@hoa.ro> 2018-10-06 13:28:51 +0200
committer: GitHub <noreply@github.com> 2018-10-06 13:28:51 +0200
commit: fa8100c088ac990fde08a872816ea7dcfbf54202 (patch)
tree: e905192000d9f2d840a3151d6cb8331148f55506
parent: 86e1bc713fd7fa74d6a17a7687428fa1c6d3c5f2 (diff)
parent: cb7940e2deacba66f2510816732be654b255cc70 (diff)
download: Shaarli-fa8100c088ac990fde08a872816ea7dcfbf54202.tar.gz
Shaarli-fa8100c088ac990fde08a872816ea7dcfbf54202.tar.zst
Shaarli-fa8100c088ac990fde08a872816ea7dcfbf54202.zip
6 files changed, 47 insertions, 6 deletions
diff --git a/plugins/markdown/markdown.php b/plugins/markdown/markdown.php
index 821bb125..21972814 100644
--- a/plugins/markdown/markdown.php
+++ b/plugins/markdown/markdown.php
@@ -215,6 +215,15 @@ function reverse_text2clickable($description)
            $descriptionLine
        );
+        // Make hashtag links markdown ready, otherwise the links will be ignored with escape set to true
+        if (!$codeBlockOn && !$codeLineOn) {
+            $descriptionLine = preg_replace(
+                '#<a href="([^ ]*)"'. $hashtagTitle .'>([^<]+)</a>#m',
+                '[$2]($1)',
+                $descriptionLine
+            );
+        }
        $descriptionOut .= $descriptionLine;
        if ($lineCount++ < count($descriptionLines) - 1) {
            $descriptionOut .= PHP_EOL;
diff --git a/tests/plugins/PluginMarkdownTest.php b/tests/plugins/PluginMarkdownTest.php
index b31e817f..319a94ba 100644
--- a/tests/plugins/PluginMarkdownTest.php
+++ b/tests/plugins/PluginMarkdownTest.php
@@ -107,6 +107,18 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
    }
    /**
+     * Test reverse_text2clickable().
+     */
+    public function testReverseText2clickableHashtags()
+    {
+        $text = file_get_contents('tests/plugins/resources/hashtags.raw');
+        $md = file_get_contents('tests/plugins/resources/hashtags.md');
+        $clickableText = hashtag_autolink($text);
+        $reversedText = reverse_text2clickable($clickableText);
+        $this->assertEquals($md, $reversedText);
+    }
+    /**
     * Test reverse_nl2br().
     */
    public function testReverseNl2br()
@@ -246,7 +258,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
            $this->conf->get('security.markdown_escape', true),
            $this->conf->get('security.allowed_protocols')
        );
-        $this->assertEquals($html, $data);
+        $this->assertEquals($html, $data . PHP_EOL);
    }
    /**
diff --git a/tests/plugins/resources/hashtags.md b/tests/plugins/resources/hashtags.md
new file mode 100644
index 00000000..46326de3
--- /dev/null
+++ b/tests/plugins/resources/hashtags.md
@@ -0,0 +1,10 @@
+[#lol](?addtag=lol)
+    #test
+`#test2`
+```
+bla #bli blo
+#bla
+```
diff --git a/tests/plugins/resources/hashtags.raw b/tests/plugins/resources/hashtags.raw
new file mode 100644
index 00000000..9d2dc98a
--- /dev/null
+++ b/tests/plugins/resources/hashtags.raw
@@ -0,0 +1,10 @@
+#lol
+    #test
+`#test2`
+```
+bla #bli blo
+#bla
+```
diff --git a/tests/plugins/resources/markdown.html b/tests/plugins/resources/markdown.html
index f1df4e7e..c3460bf7 100644
--- a/tests/plugins/resources/markdown.html
+++ b/tests/plugins/resources/markdown.html
@@ -12,11 +12,11 @@
 <li><a href="http://link.tld">two</a></li>
 <li><a href="http://link.tld">three</a></li>
 <li><a href="http://link.tld">four</a></li>
-<li>foo &lt;a href=&quot;?addtag=foobar&quot; title=&quot;Hashtag foobar&quot;&gt;#foobar&lt;/a&gt;</li>
+<li>foo <a href="?addtag=foobar">#foobar</a></li>
 </ol></li>
 </ol>
-<p>&lt;a href=&quot;?addtag=foobar&quot; title=&quot;Hashtag foobar&quot;&gt;#foobar&lt;/a&gt; foo <code>lol #foo</code> &lt;a href=&quot;?addtag=bar&quot; title=&quot;Hashtag bar&quot;&gt;#bar&lt;/a&gt;</p>
+<p><a href="?addtag=foobar">#foobar</a> foo <code>lol #foo</code> <a href="?addtag=bar">#bar</a></p>
-<p>fsdfs <a href="http://link.tld">http://link.tld</a> &lt;a href=&quot;?addtag=foobar&quot; title=&quot;Hashtag foobar&quot;&gt;#foobar&lt;/a&gt; <code>http://link.tld</code></p>
+<p>fsdfs <a href="http://link.tld">http://link.tld</a> <a href="?addtag=foobar">#foobar</a> <code>http://link.tld</code></p>
 <pre><code>http://link.tld #foobar
 next #foo</code></pre>
 <p>Block:</p>
@@ -30,4 +30,4 @@ next #foo</code></pre>
 <a href="ftp://test.tld/path/?query=value#hash">link</a><br />
 <a href="magnet:test.tld/path/?query=value#hash">link</a><br />
 <a href="http://alert(&#039;xss&#039;)">link</a><br />
-<a href="http://test.tld/path/?query=value#hash">link</a></p></div>
-\ No newline at end of file
+<a href="http://test.tld/path/?query=value#hash">link</a></p></div>
diff --git a/tests/plugins/resources/markdown.md b/tests/plugins/resources/markdown.md
index b8ebd934..9350a8c7 100644
--- a/tests/plugins/resources/markdown.md
+++ b/tests/plugins/resources/markdown.md
@@ -31,4 +31,4 @@ lorem ipsum #foobar http://link.tld
 [link](ftp://test.tld/path/?query=value#hash)
 [link](magnet:test.tld/path/?query=value#hash)
 [link](javascript:alert('xss'))
-[link](other://test.tld/path/?query=value#hash)
-\ No newline at end of file
+[link](other://test.tld/path/?query=value#hash)
author	ArthurHoaro <arthur@hoa.ro>	2018-10-06 13:28:51 +0200
committer	GitHub <noreply@github.com>	2018-10-06 13:28:51 +0200
commit	fa8100c088ac990fde08a872816ea7dcfbf54202 (patch)
tree	e905192000d9f2d840a3151d6cb8331148f55506
parent	86e1bc713fd7fa74d6a17a7687428fa1c6d3c5f2 (diff)
parent	cb7940e2deacba66f2510816732be654b255cc70 (diff)
download	Shaarli-fa8100c088ac990fde08a872816ea7dcfbf54202.tar.gz Shaarli-fa8100c088ac990fde08a872816ea7dcfbf54202.tar.zst Shaarli-fa8100c088ac990fde08a872816ea7dcfbf54202.zip

diff --git a/plugins/markdown/markdown.php b/plugins/markdown/markdown.php index 821bb125..21972814 100644 --- a/plugins/markdown/markdown.php +++ b/plugins/markdown/markdown.php
@@ -215,6 +215,15 @@ function reverse_text2clickable($description)
215	$descriptionLine	215	$descriptionLine
216	);	216	);
217		217
		218	// Make hashtag links markdown ready, otherwise the links will be ignored with escape set to true
		219	if (!$codeBlockOn && !$codeLineOn) {
		220	$descriptionLine = preg_replace(
		221	'#<a href="([^ ]*)"'. $hashtagTitle .'>([^<]+)</a>#m',
		222	'[$2]($1)',
		223	$descriptionLine
		224	);
		225	}
		226
218	$descriptionOut .= $descriptionLine;	227	$descriptionOut .= $descriptionLine;
219	if ($lineCount++ < count($descriptionLines) - 1) {	228	if ($lineCount++ < count($descriptionLines) - 1) {
220	$descriptionOut .= PHP_EOL;	229	$descriptionOut .= PHP_EOL;


diff --git a/tests/plugins/PluginMarkdownTest.php b/tests/plugins/PluginMarkdownTest.php index b31e817f..319a94ba 100644 --- a/tests/plugins/PluginMarkdownTest.php +++ b/tests/plugins/PluginMarkdownTest.php
@@ -107,6 +107,18 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
107	}	107	}
108		108
109	/**	109	/**
		110	* Test reverse_text2clickable().
		111	*/
		112	public function testReverseText2clickableHashtags()
		113	{
		114	$text = file_get_contents('tests/plugins/resources/hashtags.raw');
		115	$md = file_get_contents('tests/plugins/resources/hashtags.md');
		116	$clickableText = hashtag_autolink($text);
		117	$reversedText = reverse_text2clickable($clickableText);
		118	$this->assertEquals($md, $reversedText);
		119	}
		120
		121	/**
110	* Test reverse_nl2br().	122	* Test reverse_nl2br().
111	*/	123	*/
112	public function testReverseNl2br()	124	public function testReverseNl2br()
@@ -246,7 +258,7 @@ class PluginMarkdownTest extends PHPUnit_Framework_TestCase
246	$this->conf->get('security.markdown_escape', true),	258	$this->conf->get('security.markdown_escape', true),
247	$this->conf->get('security.allowed_protocols')	259	$this->conf->get('security.allowed_protocols')
248	);	260	);
249	$this->assertEquals($html, $data);	261	$this->assertEquals($html, $data . PHP_EOL);
250	}	262	}
251		263
252	/**	264	/**


diff --git a/tests/plugins/resources/hashtags.md b/tests/plugins/resources/hashtags.md new file mode 100644 index 00000000..46326de3 --- /dev/null +++ b/tests/plugins/resources/hashtags.md
@@ -0,0 +1,10 @@
		1	[#lol](?addtag=lol)
		2
		3	#test
		4
		5	`#test2`
		6
		7	```
		8	bla #bli blo
		9	#bla
		10	```


diff --git a/tests/plugins/resources/hashtags.raw b/tests/plugins/resources/hashtags.raw new file mode 100644 index 00000000..9d2dc98a --- /dev/null +++ b/tests/plugins/resources/hashtags.raw
@@ -0,0 +1,10 @@
		1	#lol
		2
		3	#test
		4
		5	`#test2`
		6
		7	```
		8	bla #bli blo
		9	#bla
		10	```


diff --git a/tests/plugins/resources/markdown.html b/tests/plugins/resources/markdown.html index f1df4e7e..c3460bf7 100644 --- a/tests/plugins/resources/markdown.html +++ b/tests/plugins/resources/markdown.html
@@ -12,11 +12,11 @@
12	<li><a href="http://link.tld">two</a></li>	12	<li><a href="http://link.tld">two</a></li>
13	<li><a href="http://link.tld">three</a></li>	13	<li><a href="http://link.tld">three</a></li>
14	<li><a href="http://link.tld">four</a></li>	14	<li><a href="http://link.tld">four</a></li>
15	<li>foo <a href="?addtag=foobar" title="Hashtag foobar">#foobar</a></li>	15	<li>foo <a href="?addtag=foobar">#foobar</a></li>
16	</ol></li>	16	</ol></li>
17	</ol>	17	</ol>
18	<p><a href="?addtag=foobar" title="Hashtag foobar">#foobar</a> foo <code>lol #foo</code> <a href="?addtag=bar" title="Hashtag bar">#bar</a></p>	18	<p><a href="?addtag=foobar">#foobar</a> foo <code>lol #foo</code> <a href="?addtag=bar">#bar</a></p>
19	<p>fsdfs <a href="http://link.tld">http://link.tld</a> <a href="?addtag=foobar" title="Hashtag foobar">#foobar</a> <code>http://link.tld</code></p>	19	<p>fsdfs <a href="http://link.tld">http://link.tld</a> <a href="?addtag=foobar">#foobar</a> <code>http://link.tld</code></p>
20	<pre><code>http://link.tld #foobar	20	<pre><code>http://link.tld #foobar
21	next #foo</code></pre>	21	next #foo</code></pre>
22	<p>Block:</p>	22	<p>Block:</p>
@@ -30,4 +30,4 @@ next #foo</code></pre>
30	<a href="ftp://test.tld/path/?query=value#hash">link</a><br />	30	<a href="ftp://test.tld/path/?query=value#hash">link</a><br />
31	<a href="magnet:test.tld/path/?query=value#hash">link</a><br />	31	<a href="magnet:test.tld/path/?query=value#hash">link</a><br />
32	<a href="http://alert('xss')">link</a><br />	32	<a href="http://alert('xss')">link</a><br />
33	<a href="http://test.tld/path/?query=value#hash">link</a></p></div> \ No newline at end of file	33	<a href="http://test.tld/path/?query=value#hash">link</a></p></div>


diff --git a/tests/plugins/resources/markdown.md b/tests/plugins/resources/markdown.md index b8ebd934..9350a8c7 100644 --- a/tests/plugins/resources/markdown.md +++ b/tests/plugins/resources/markdown.md
@@ -31,4 +31,4 @@ lorem ipsum #foobar http://link.tld
31	[link](ftp://test.tld/path/?query=value#hash)	31	[link](ftp://test.tld/path/?query=value#hash)
32	[link](magnet:test.tld/path/?query=value#hash)	32	[link](magnet:test.tld/path/?query=value#hash)
33	[link](javascript:alert('xss'))	33	[link](javascript:alert('xss'))
34	[link](other://test.tld/path/?query=value#hash) \ No newline at end of file	34	[link](other://test.tld/path/?query=value#hash)