X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=lib%2Fattachmentlistitem.php;h=6ee3c7087b43d5d573489974693ed89c8bfcf9fb;hb=9b613029e65f97b41f9b2708bf7f5dfaee03beb1;hp=28ce9900b88392a8c0c74228ed27a52ebf337853;hpb=34093388a7838238bb2cbbafd60856fff5fa1e7e;p=quix0rs-gnu-social.git diff --git a/lib/attachmentlistitem.php b/lib/attachmentlistitem.php index 28ce9900b8..6ee3c7087b 100644 --- a/lib/attachmentlistitem.php +++ b/lib/attachmentlistitem.php @@ -171,6 +171,7 @@ class AttachmentListItem extends Widget switch ($this->attachment->mimetype) { case 'text/plain': $this->element('div', ['class'=>'e-content plaintext'], file_get_contents($this->attachment->getPath())); + break; case 'text/html': if (!empty($this->attachment->filename) && (GNUsocial::isAjax() || common_config('attachments', 'show_html'))) { @@ -203,11 +204,7 @@ class AttachmentListItem extends Widget */ protected function scrubHtmlFile(File $attachment) { - $path = File::path($attachment->filename); - if (!file_exists($path) || !is_readable($path)) { - common_log(LOG_ERR, "Missing local HTML attachment $path"); - return false; - } + $path = $attachment->getPath(); $raw = file_get_contents($path); // Normalize... @@ -234,13 +231,9 @@ class AttachmentListItem extends Widget $body = preg_replace('/^.*]*>/is', '', $body); $body = preg_replace('/<\/body[^>]*>.*$/is', '', $body); - require_once INSTALLDIR.'/extlib/htmLawed/htmLawed.php'; - $config = array('safe' => 1, - 'deny_attribute' => 'id,style,on*', - 'comment' => 1); // remove comments - $scrubbed = htmLawed($body, $config); - - return $scrubbed; + require_once INSTALLDIR.'/extlib/HTMLPurifier/HTMLPurifier.auto.php'; + $purifier = new HTMLPurifier(); + return $purifier->purify($body); } /**