| Server IP : 104.21.14.103 / Your IP : 3.147.195.146 Web Server : LiteSpeed System : Linux business53.web-hosting.com 4.18.0-553.lve.el8.x86_64 #1 SMP Mon May 27 15:27:34 UTC 2024 x86_64 User : giankuin ( 1871) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /proc/self/root/home/giankuin/thietke365.net/wp-content/plugins/mailpoet/lib/Newsletter/ |
Upload File : |
<?php // phpcs:ignore SlevomatCodingStandard.TypeHints.DeclareStrictTypes.DeclareStrictTypesMissing
namespace MailPoet\Newsletter;
if (!defined('ABSPATH')) exit;
class ApiDataSanitizer {
/** @var NewsletterHtmlSanitizer */
private $htmlSanitizer;
/**
* Configuration specifies which block types and properties within newsletters content blocks are sanitized
*/
private const SANITIZATION_CONFIG = [
'header' => ['text'],
'footer' => ['text'],
'text' => ['text'],
];
public function __construct(
NewsletterHtmlSanitizer $htmlSanitizer
) {
$this->htmlSanitizer = $htmlSanitizer;
}
public function sanitizeBody(array $body): array {
if (isset($body['content']) && isset($body['content']['blocks']) && is_array($body['content']['blocks'])) {
$body['content']['blocks'] = $this->sanitizeBlocks($body['content']['blocks']);
}
return $body;
}
private function sanitizeBlocks(array $blocks): array {
foreach ($blocks as $key => $block) {
if (!is_array($block) || !isset($block['type'])) {
continue;
}
if (isset($block['blocks']) && is_array($block['blocks'])) {
$blocks[$key]['blocks'] = $this->sanitizeBlocks($block['blocks']);
} else {
$blocks[$key] = $this->sanitizeBlock($block);
}
};
return $blocks;
}
private function sanitizeBlock(array $block): array {
if (!isset(self::SANITIZATION_CONFIG[$block['type']])) {
return $block;
}
foreach (self::SANITIZATION_CONFIG[$block['type']] as $property) {
if (!isset($block[$property])) {
continue;
}
$block[$property] = $this->htmlSanitizer->sanitize($block[$property]);
}
return $block;
}
}