A super easy PHP Framework for web development!
https://github.com/exacti/phacil-framework
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
83 lines
2.5 KiB
83 lines
2.5 KiB
7 years ago
|
<?php
|
||
|
|
|
||
|
|
/*
|
||
|
|
* This file is part of Twig.
|
||
|
|
*
|
||
|
|
* (c) Fabien Potencier
|
||
|
|
*
|
||
|
|
* For the full copyright and license information, please view the LICENSE
|
||
|
|
* file that was distributed with this source code.
|
||
|
|
*/
|
||
|
|
|
||
|
|
/**
|
||
|
|
* Twig_NodeVisitor_Sandbox implements sandboxing.
|
||
|
|
*
|
||
|
|
* @final
|
||
|
|
*
|
||
|
|
* @author Fabien Potencier <fabien@symfony.com>
|
||
|
|
*/
|
||
|
|
class Twig_NodeVisitor_Sandbox extends Twig_BaseNodeVisitor
|
||
|
|
{
|
||
|
|
protected $inAModule = false;
|
||
|
|
protected $tags;
|
||
|
|
protected $filters;
|
||
|
|
protected $functions;
|
||
|
|
|
||
|
|
protected function doEnterNode(Twig_Node $node, Twig_Environment $env)
|
||
|
|
{
|
||
|
|
if ($node instanceof Twig_Node_Module) {
|
||
|
|
$this->inAModule = true;
|
||
|
|
$this->tags = array();
|
||
|
|
$this->filters = array();
|
||
|
|
$this->functions = array();
|
||
|
|
|
||
|
|
return $node;
|
||
|
|
} elseif ($this->inAModule) {
|
||
|
|
// look for tags
|
||
|
|
if ($node->getNodeTag() && !isset($this->tags[$node->getNodeTag()])) {
|
||
|
|
$this->tags[$node->getNodeTag()] = $node;
|
||
|
|
}
|
||
|
|
|
||
|
|
// look for filters
|
||
|
|
if ($node instanceof Twig_Node_Expression_Filter && !isset($this->filters[$node->getNode('filter')->getAttribute('value')])) {
|
||
|
|
$this->filters[$node->getNode('filter')->getAttribute('value')] = $node;
|
||
|
|
}
|
||
|
|
|
||
|
|
// look for functions
|
||
|
|
if ($node instanceof Twig_Node_Expression_Function && !isset($this->functions[$node->getAttribute('name')])) {
|
||
|
|
$this->functions[$node->getAttribute('name')] = $node;
|
||
|
|
}
|
||
|
|
|
||
|
|
// the .. operator is equivalent to the range() function
|
||
|
|
if ($node instanceof Twig_Node_Expression_Binary_Range && !isset($this->functions['range'])) {
|
||
|
|
$this->functions['range'] = $node;
|
||
|
|
}
|
||
|
|
|
||
|
|
// wrap print to check __toString() calls
|
||
|
|
if ($node instanceof Twig_Node_Print) {
|
||
|
|
return new Twig_Node_SandboxedPrint($node->getNode('expr'), $node->getTemplateLine(), $node->getNodeTag());
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
return $node;
|
||
|
|
}
|
||
|
|
|
||
|
|
protected function doLeaveNode(Twig_Node $node, Twig_Environment $env)
|
||
|
|
{
|
||
|
|
if ($node instanceof Twig_Node_Module) {
|
||
|
|
$this->inAModule = false;
|
||
|
|
|
||
|
|
$node->setNode('display_start', new Twig_Node(array(new Twig_Node_CheckSecurity($this->filters, $this->tags, $this->functions), $node->getNode('display_start'))));
|
||
|
|
}
|
||
|
|
|
||
|
|
return $node;
|
||
|
|
}
|
||
|
|
|
||
|
|
public function getPriority()
|
||
|
|
{
|
||
|
|
return 0;
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
class_alias('Twig_NodeVisitor_Sandbox', 'Twig\NodeVisitor\SandboxNodeVisitor', false);
|