Details | Last modification | View Log | RSS feed
| Rev | Author | Line No. | Line |
|---|---|---|---|
| 868 | daniel-mar | 1 | <?php |
| 2 | |||
| 3 | namespace RobRichards\XMLSecLibs\Utils; |
||
| 4 | |||
| 5 | class XPath |
||
| 6 | { |
||
| 7 | const ALPHANUMERIC = '\w\d'; |
||
| 8 | const NUMERIC = '\d'; |
||
| 9 | const LETTERS = '\w'; |
||
| 10 | const EXTENDED_ALPHANUMERIC = '\w\d\s\-_:\.'; |
||
| 11 | |||
| 12 | const SINGLE_QUOTE = '\''; |
||
| 13 | const DOUBLE_QUOTE = '"'; |
||
| 14 | const ALL_QUOTES = '[\'"]'; |
||
| 15 | |||
| 16 | |||
| 17 | /** |
||
| 18 | * Filter an attribute value for save inclusion in an XPath query. |
||
| 19 | * |
||
| 20 | * @param string $value The value to filter. |
||
| 21 | * @param string $quotes The quotes used to delimit the value in the XPath query. |
||
| 22 | * |
||
| 23 | * @return string The filtered attribute value. |
||
| 24 | */ |
||
| 25 | public static function filterAttrValue($value, $quotes = self::ALL_QUOTES) |
||
| 26 | { |
||
| 27 | return preg_replace('#'.$quotes.'#', '', $value); |
||
| 28 | } |
||
| 29 | |||
| 30 | |||
| 31 | /** |
||
| 32 | * Filter an attribute name for save inclusion in an XPath query. |
||
| 33 | * |
||
| 34 | * @param string $name The attribute name to filter. |
||
| 35 | * @param mixed $allow The set of characters to allow. Can be one of the constants provided by this class, or a |
||
| 36 | * custom regex excluding the '#' character (used as delimiter). |
||
| 37 | * |
||
| 38 | * @return string The filtered attribute name. |
||
| 39 | */ |
||
| 40 | public static function filterAttrName($name, $allow = self::EXTENDED_ALPHANUMERIC) |
||
| 41 | { |
||
| 42 | return preg_replace('#[^'.$allow.']#', '', $name); |
||
| 43 | } |
||
| 44 | } |