diff options
Diffstat (limited to 'application/formatter/BookmarkMarkdownFormatter.php')
| -rw-r--r-- | application/formatter/BookmarkMarkdownFormatter.php | 20 |
1 files changed, 12 insertions, 8 deletions
diff --git a/application/formatter/BookmarkMarkdownFormatter.php b/application/formatter/BookmarkMarkdownFormatter.php index 5d244d4c..ee4e8dca 100644 --- a/application/formatter/BookmarkMarkdownFormatter.php +++ b/application/formatter/BookmarkMarkdownFormatter.php | |||
| @@ -16,7 +16,7 @@ class BookmarkMarkdownFormatter extends BookmarkDefaultFormatter | |||
| 16 | /** | 16 | /** |
| 17 | * When this tag is present in a bookmark, its description should not be processed with Markdown | 17 | * When this tag is present in a bookmark, its description should not be processed with Markdown |
| 18 | */ | 18 | */ |
| 19 | const NO_MD_TAG = 'nomarkdown'; | 19 | public const NO_MD_TAG = 'nomarkdown'; |
| 20 | 20 | ||
| 21 | /** @var \Parsedown instance */ | 21 | /** @var \Parsedown instance */ |
| 22 | protected $parsedown; | 22 | protected $parsedown; |
| @@ -56,7 +56,10 @@ class BookmarkMarkdownFormatter extends BookmarkDefaultFormatter | |||
| 56 | return parent::formatDescription($bookmark); | 56 | return parent::formatDescription($bookmark); |
| 57 | } | 57 | } |
| 58 | 58 | ||
| 59 | $processedDescription = $bookmark->getDescription(); | 59 | $processedDescription = $this->tokenizeSearchHighlightField( |
| 60 | $bookmark->getDescription() ?? '', | ||
| 61 | $bookmark->getAdditionalContentEntry('search_highlight')['description'] ?? [] | ||
| 62 | ); | ||
| 60 | $processedDescription = $this->filterProtocols($processedDescription); | 63 | $processedDescription = $this->filterProtocols($processedDescription); |
| 61 | $processedDescription = $this->formatHashTags($processedDescription); | 64 | $processedDescription = $this->formatHashTags($processedDescription); |
| 62 | $processedDescription = $this->reverseEscapedHtml($processedDescription); | 65 | $processedDescription = $this->reverseEscapedHtml($processedDescription); |
| @@ -65,9 +68,10 @@ class BookmarkMarkdownFormatter extends BookmarkDefaultFormatter | |||
| 65 | ->setBreaksEnabled(true) | 68 | ->setBreaksEnabled(true) |
| 66 | ->text($processedDescription); | 69 | ->text($processedDescription); |
| 67 | $processedDescription = $this->sanitizeHtml($processedDescription); | 70 | $processedDescription = $this->sanitizeHtml($processedDescription); |
| 71 | $processedDescription = $this->replaceTokens($processedDescription); | ||
| 68 | 72 | ||
| 69 | if (!empty($processedDescription)) { | 73 | if (!empty($processedDescription)) { |
| 70 | $processedDescription = '<div class="markdown">'. $processedDescription . '</div>'; | 74 | $processedDescription = '<div class="markdown">' . $processedDescription . '</div>'; |
| 71 | } | 75 | } |
| 72 | 76 | ||
| 73 | return $processedDescription; | 77 | return $processedDescription; |
| @@ -106,7 +110,7 @@ class BookmarkMarkdownFormatter extends BookmarkDefaultFormatter | |||
| 106 | function ($match) use ($allowedProtocols, $indexUrl) { | 110 | function ($match) use ($allowedProtocols, $indexUrl) { |
| 107 | $link = startsWith($match[1], '?') || startsWith($match[1], '/') ? $indexUrl : ''; | 111 | $link = startsWith($match[1], '?') || startsWith($match[1], '/') ? $indexUrl : ''; |
| 108 | $link .= whitelist_protocols($match[1], $allowedProtocols); | 112 | $link .= whitelist_protocols($match[1], $allowedProtocols); |
| 109 | return ']('. $link.')'; | 113 | return '](' . $link . ')'; |
| 110 | }, | 114 | }, |
| 111 | $description | 115 | $description |
| 112 | ); | 116 | ); |
| @@ -133,7 +137,7 @@ class BookmarkMarkdownFormatter extends BookmarkDefaultFormatter | |||
| 133 | * \p{Mn} - any non marking space (accents, umlauts, etc) | 137 | * \p{Mn} - any non marking space (accents, umlauts, etc) |
| 134 | */ | 138 | */ |
| 135 | $regex = '/(^|\s)#([\p{Pc}\p{N}\p{L}\p{Mn}]+)/mui'; | 139 | $regex = '/(^|\s)#([\p{Pc}\p{N}\p{L}\p{Mn}]+)/mui'; |
| 136 | $replacement = '$1[#$2]('. $indexUrl .'./add-tag/$2)'; | 140 | $replacement = '$1[#$2](' . $indexUrl . './add-tag/$2)'; |
| 137 | 141 | ||
| 138 | $descriptionLines = explode(PHP_EOL, $description); | 142 | $descriptionLines = explode(PHP_EOL, $description); |
| 139 | $descriptionOut = ''; | 143 | $descriptionOut = ''; |
| @@ -174,17 +178,17 @@ class BookmarkMarkdownFormatter extends BookmarkDefaultFormatter | |||
| 174 | */ | 178 | */ |
| 175 | protected function sanitizeHtml($description) | 179 | protected function sanitizeHtml($description) |
| 176 | { | 180 | { |
| 177 | $escapeTags = array( | 181 | $escapeTags = [ |
| 178 | 'script', | 182 | 'script', |
| 179 | 'style', | 183 | 'style', |
| 180 | 'link', | 184 | 'link', |
| 181 | 'iframe', | 185 | 'iframe', |
| 182 | 'frameset', | 186 | 'frameset', |
| 183 | 'frame', | 187 | 'frame', |
| 184 | ); | 188 | ]; |
| 185 | foreach ($escapeTags as $tag) { | 189 | foreach ($escapeTags as $tag) { |
| 186 | $description = preg_replace_callback( | 190 | $description = preg_replace_callback( |
| 187 | '#<\s*'. $tag .'[^>]*>(.*</\s*'. $tag .'[^>]*>)?#is', | 191 | '#<\s*' . $tag . '[^>]*>(.*</\s*' . $tag . '[^>]*>)?#is', |
| 188 | function ($match) { | 192 | function ($match) { |
| 189 | return escape($match[0]); | 193 | return escape($match[0]); |
| 190 | }, | 194 | }, |