2017-04-13 04:52:24 +02:00
// Copyright 2017 The Gitea Authors. All rights reserved.
// Copyright 2017 The Gogs Authors. All rights reserved.
2022-11-27 13:20:29 -05:00
// SPDX-License-Identifier: MIT
2017-04-13 04:52:24 +02:00
2017-09-17 01:17:57 +08:00
package markup
2017-04-13 04:52:24 +02:00
import (
"regexp"
"sync"
"github.com/microcosm-cc/bluemonday"
)
// Sanitizer is a protection wrapper of *bluemonday.Policy which does not allow
// any modification to the underlying policies once it's been created.
type Sanitizer struct {
2023-11-23 17:34:25 +01:00
defaultPolicy * bluemonday . Policy
descriptionPolicy * bluemonday . Policy
rendererPolicies map [ string ] * bluemonday . Policy
2024-05-31 21:26:01 +08:00
allowAllRegex * regexp . Regexp
2017-04-13 04:52:24 +02:00
}
2023-05-19 18:17:07 +03:00
var (
2024-05-31 21:26:01 +08:00
defaultSanitizer * Sanitizer
defaultSanitizerOnce sync . Once
2023-05-19 18:17:07 +03:00
)
2017-04-13 04:52:24 +02:00
2024-05-31 21:26:01 +08:00
func GetDefaultSanitizer ( ) * Sanitizer {
defaultSanitizerOnce . Do ( func ( ) {
defaultSanitizer = & Sanitizer {
rendererPolicies : map [ string ] * bluemonday . Policy { } ,
allowAllRegex : regexp . MustCompile ( ".+" ) ,
2023-07-18 17:18:37 +02:00
}
2024-05-31 21:26:01 +08:00
for name , renderer := range renderers {
sanitizerRules := renderer . SanitizerRules ( )
if len ( sanitizerRules ) > 0 {
policy := defaultSanitizer . createDefaultPolicy ( )
defaultSanitizer . addSanitizerRules ( policy , sanitizerRules )
defaultSanitizer . rendererPolicies [ name ] = policy
2021-06-23 23:09:51 +02:00
}
2019-12-07 14:49:04 -05:00
}
2024-05-31 21:26:01 +08:00
defaultSanitizer . defaultPolicy = defaultSanitizer . createDefaultPolicy ( )
defaultSanitizer . descriptionPolicy = defaultSanitizer . createRepoDescriptionPolicy ( )
} )
return defaultSanitizer
2017-04-13 04:52:24 +02:00
}
2024-05-31 21:26:01 +08:00
func ResetDefaultSanitizerForTesting ( ) {
defaultSanitizer = nil
defaultSanitizerOnce = sync . Once { }
2019-12-31 01:53:28 +00:00
}