lib/pleroma/html.ex: Use macros for valid_schemes, change config for schemes
This commit is contained in:
parent
d7654c77de
commit
2154c5dcd8
|
@ -24,7 +24,23 @@
|
||||||
|
|
||||||
config :pleroma, :emoji, shortcode_globs: ["/emoji/custom/**/*.png"]
|
config :pleroma, :emoji, shortcode_globs: ["/emoji/custom/**/*.png"]
|
||||||
|
|
||||||
config :pleroma, :uri_schemes, additionnal_schemes: []
|
config :pleroma, :uri_schemes,
|
||||||
|
valid_schemes: [
|
||||||
|
"https",
|
||||||
|
"http",
|
||||||
|
"dat",
|
||||||
|
"dweb",
|
||||||
|
"gopher",
|
||||||
|
"ipfs",
|
||||||
|
"ipns",
|
||||||
|
"irc",
|
||||||
|
"ircs",
|
||||||
|
"magnet",
|
||||||
|
"mailto",
|
||||||
|
"mumble",
|
||||||
|
"ssb",
|
||||||
|
"xmpp"
|
||||||
|
]
|
||||||
|
|
||||||
# Configures the endpoint
|
# Configures the endpoint
|
||||||
config :pleroma, Pleroma.Web.Endpoint,
|
config :pleroma, Pleroma.Web.Endpoint,
|
||||||
|
|
|
@ -171,25 +171,8 @@ def get_custom_emoji() do
|
||||||
|
|
||||||
@link_regex ~r/[0-9a-z+\-\.]+:[0-9a-z$-_.+!*'(),]+/ui
|
@link_regex ~r/[0-9a-z+\-\.]+:[0-9a-z$-_.+!*'(),]+/ui
|
||||||
|
|
||||||
# IANA got a list https://www.iana.org/assignments/uri-schemes/ but
|
@uri_schemes Application.get_env(:pleroma, :uri_schemes, [])
|
||||||
# Stuff like ipfs isn’t in it
|
@valid_schemes Keyword.get(@uri_schemes, :valid_schemes, [])
|
||||||
# There is very niche stuff
|
|
||||||
@uri_schemes [
|
|
||||||
"https://",
|
|
||||||
"http://",
|
|
||||||
"dat://",
|
|
||||||
"dweb://",
|
|
||||||
"gopher://",
|
|
||||||
"ipfs://",
|
|
||||||
"ipns://",
|
|
||||||
"irc:",
|
|
||||||
"ircs:",
|
|
||||||
"magnet:",
|
|
||||||
"mailto:",
|
|
||||||
"mumble:",
|
|
||||||
"ssb://",
|
|
||||||
"xmpp:"
|
|
||||||
]
|
|
||||||
|
|
||||||
# TODO: make it use something other than @link_regex
|
# TODO: make it use something other than @link_regex
|
||||||
def html_escape(text, "text/html") do
|
def html_escape(text, "text/html") do
|
||||||
|
@ -207,14 +190,10 @@ def html_escape(text, "text/plain") do
|
||||||
|
|
||||||
@doc "changes scheme:... urls to html links"
|
@doc "changes scheme:... urls to html links"
|
||||||
def add_links({subs, text}) do
|
def add_links({subs, text}) do
|
||||||
additionnal_schemes =
|
|
||||||
Application.get_env(:pleroma, :uri_schemes, [])
|
|
||||||
|> Keyword.get(:additionnal_schemes, [])
|
|
||||||
|
|
||||||
links =
|
links =
|
||||||
text
|
text
|
||||||
|> String.split([" ", "\t", "<br>"])
|
|> String.split([" ", "\t", "<br>"])
|
||||||
|> Enum.filter(fn word -> String.starts_with?(word, @uri_schemes ++ additionnal_schemes) end)
|
|> Enum.filter(fn word -> String.starts_with?(word, @valid_schemes) end)
|
||||||
|> Enum.filter(fn word -> Regex.match?(@link_regex, word) end)
|
|> Enum.filter(fn word -> Regex.match?(@link_regex, word) end)
|
||||||
|> Enum.map(fn url -> {Ecto.UUID.generate(), url} end)
|
|> Enum.map(fn url -> {Ecto.UUID.generate(), url} end)
|
||||||
|> Enum.sort_by(fn {_, url} -> -String.length(url) end)
|
|> Enum.sort_by(fn {_, url} -> -String.length(url) end)
|
||||||
|
|
|
@ -3,25 +3,6 @@ defmodule Pleroma.HTML do
|
||||||
|
|
||||||
@markup Application.get_env(:pleroma, :markup)
|
@markup Application.get_env(:pleroma, :markup)
|
||||||
|
|
||||||
def valid_schemes() do
|
|
||||||
[
|
|
||||||
"https://",
|
|
||||||
"http://",
|
|
||||||
"dat://",
|
|
||||||
"dweb://",
|
|
||||||
"gopher://",
|
|
||||||
"ipfs://",
|
|
||||||
"ipns://",
|
|
||||||
"irc:",
|
|
||||||
"ircs:",
|
|
||||||
"magnet:",
|
|
||||||
"mailto:",
|
|
||||||
"mumble:",
|
|
||||||
"ssb://",
|
|
||||||
"xmpp:"
|
|
||||||
]
|
|
||||||
end
|
|
||||||
|
|
||||||
defp get_scrubbers(scrubber) when is_atom(scrubber), do: [scrubber]
|
defp get_scrubbers(scrubber) when is_atom(scrubber), do: [scrubber]
|
||||||
defp get_scrubbers(scrubbers) when is_list(scrubbers), do: scrubbers
|
defp get_scrubbers(scrubbers) when is_list(scrubbers), do: scrubbers
|
||||||
defp get_scrubbers(_), do: [Pleroma.HTML.Scrubber.Default]
|
defp get_scrubbers(_), do: [Pleroma.HTML.Scrubber.Default]
|
||||||
|
@ -55,6 +36,10 @@ defmodule Pleroma.HTML.Scrubber.TwitterText do
|
||||||
paragraphs, breaks and links are allowed through the filter.
|
paragraphs, breaks and links are allowed through the filter.
|
||||||
"""
|
"""
|
||||||
|
|
||||||
|
@markup Application.get_env(:pleroma, :markup)
|
||||||
|
@uri_schemes Application.get_env(:pleroma, :uri_schemes, [])
|
||||||
|
@valid_schemes Keyword.get(@uri_schemes, :valid_schemes, [])
|
||||||
|
|
||||||
require HtmlSanitizeEx.Scrubber.Meta
|
require HtmlSanitizeEx.Scrubber.Meta
|
||||||
alias HtmlSanitizeEx.Scrubber.Meta
|
alias HtmlSanitizeEx.Scrubber.Meta
|
||||||
|
|
||||||
|
@ -64,7 +49,7 @@ defmodule Pleroma.HTML.Scrubber.TwitterText do
|
||||||
Meta.strip_comments()
|
Meta.strip_comments()
|
||||||
|
|
||||||
# links
|
# links
|
||||||
Meta.allow_tag_with_uri_attributes("a", ["href"], HTML.valid_schemes())
|
Meta.allow_tag_with_uri_attributes("a", ["href"], @valid_schemes)
|
||||||
Meta.allow_tag_with_these_attributes("a", ["name", "title"])
|
Meta.allow_tag_with_these_attributes("a", ["name", "title"])
|
||||||
|
|
||||||
# paragraphs and linebreaks
|
# paragraphs and linebreaks
|
||||||
|
@ -75,11 +60,10 @@ defmodule Pleroma.HTML.Scrubber.TwitterText do
|
||||||
Meta.allow_tag_with_these_attributes("span", [])
|
Meta.allow_tag_with_these_attributes("span", [])
|
||||||
|
|
||||||
# allow inline images for custom emoji
|
# allow inline images for custom emoji
|
||||||
@markup Application.get_env(:pleroma, :markup)
|
|
||||||
@allow_inline_images Keyword.get(@markup, :allow_inline_images)
|
@allow_inline_images Keyword.get(@markup, :allow_inline_images)
|
||||||
|
|
||||||
if @allow_inline_images do
|
if @allow_inline_images do
|
||||||
Meta.allow_tag_with_uri_attributes("img", ["src"], HTML.valid_schemes())
|
Meta.allow_tag_with_uri_attributes("img", ["src"], @valid_schemes)
|
||||||
|
|
||||||
Meta.allow_tag_with_these_attributes("img", [
|
Meta.allow_tag_with_these_attributes("img", [
|
||||||
"width",
|
"width",
|
||||||
|
@ -100,10 +84,14 @@ defmodule Pleroma.HTML.Scrubber.Default do
|
||||||
|
|
||||||
alias Pleroma.HTML
|
alias Pleroma.HTML
|
||||||
|
|
||||||
|
@markup Application.get_env(:pleroma, :markup)
|
||||||
|
@uri_schemes Application.get_env(:pleroma, :uri_schemes, [])
|
||||||
|
@valid_schemes Keyword.get(@uri_schemes, :valid_schemes, [])
|
||||||
|
|
||||||
Meta.remove_cdata_sections_before_scrub()
|
Meta.remove_cdata_sections_before_scrub()
|
||||||
Meta.strip_comments()
|
Meta.strip_comments()
|
||||||
|
|
||||||
Meta.allow_tag_with_uri_attributes("a", ["href"], HTML.valid_schemes())
|
Meta.allow_tag_with_uri_attributes("a", ["href"], @valid_schemes)
|
||||||
Meta.allow_tag_with_these_attributes("a", ["name", "title"])
|
Meta.allow_tag_with_these_attributes("a", ["name", "title"])
|
||||||
|
|
||||||
Meta.allow_tag_with_these_attributes("b", [])
|
Meta.allow_tag_with_these_attributes("b", [])
|
||||||
|
@ -122,11 +110,10 @@ defmodule Pleroma.HTML.Scrubber.Default do
|
||||||
Meta.allow_tag_with_these_attributes("u", [])
|
Meta.allow_tag_with_these_attributes("u", [])
|
||||||
Meta.allow_tag_with_these_attributes("ul", [])
|
Meta.allow_tag_with_these_attributes("ul", [])
|
||||||
|
|
||||||
@markup Application.get_env(:pleroma, :markup)
|
|
||||||
@allow_inline_images Keyword.get(@markup, :allow_inline_images)
|
@allow_inline_images Keyword.get(@markup, :allow_inline_images)
|
||||||
|
|
||||||
if @allow_inline_images do
|
if @allow_inline_images do
|
||||||
Meta.allow_tag_with_uri_attributes("img", ["src"], HTML.valid_schemes())
|
Meta.allow_tag_with_uri_attributes("img", ["src"], @valid_schemes)
|
||||||
|
|
||||||
Meta.allow_tag_with_these_attributes("img", [
|
Meta.allow_tag_with_these_attributes("img", [
|
||||||
"width",
|
"width",
|
||||||
|
|
Loading…
Reference in a new issue