Class HTMLPurifier_Injector_SafeObject
Adds important param elements to inside of object in order to make things safe.
- HTMLPurifier_Injector
- HTMLPurifier_Injector_SafeObject
public
Boolean
|
|
public
|
|
public
|
allowsElement(),
backward(),
checkNeeded(),
current(),
forward(),
forwardUntilEndToken(),
getRewind(),
handleText(),
rewind()
|
public
string
|
$name | 'SafeObject' |
#
Advisory name of injector, this is for friendly error messages |
public
array
|
$needed | array('object', 'param') |
#
Array of elements and attributes this injector creates and therefore need to be allowed by the definition. Takes form of array('element' => array('attr', 'attr2'), 'element2') |
protected
array
|
$objectStack | array() |
|
protected
array
|
$paramStack | array() |
|
protected
array
|
$addParam | array(
'allowScriptAccess' => 'never',
'allowNetworking' => 'internal',
) |
|
protected
array
|
$allowedParam | array(
'wmode' => true,
'movie' => true,
'flashvars' => true,
'src' => true,
'allowFullScreen' => true, // if omitted, assume to be 'false'
) |
$currentNesting,
$htmlDefinition,
$inputIndex,
$inputTokens,
$rewind
|