private static function _purify($value, $xss_check)
{
self::$config = HTMLPurifier_Config::createDefault();
self::$config->set('HTML.Allowed', '');
self::$config->set('Cache.SerializerPath', ABS_PATH . 'oc-content/uploads');
if (!$xss_check) {
return $value;
}
if (!isset(self::$purifier)) {
self::$purifier = new HTMLPurifier(self::$config);
}
if (is_array($value)) {
foreach ($value as $k => &$v) {
$v = self::_purify($v, $xss_check);
}
} else {
$value = self::$purifier->purify($value);
}
return $value;
}
private static function _purify($value, $xss_check)
{
self::$config = HTMLPurifier_Config::createDefault();
$allowed = 'b,strong,i,em,u,a[href|title],ul,ol,li,p[style],br,span[style],img[width|height|alt|src]';
self::$config->set('HTML.Allowed', $allowed);
self::$config->set("HTML.SafeEmbed", true);
self::$config->set("HTML.SafeObject", true);
self::$config->set('CSS.AllowedProperties', 'font,font-size,font-weight,font-style,font-family,text-decoration,padding-left,color,background-color,text-align');
self::$config->set('Cache.SerializerPath', ABS_PATH . 'oc-content/uploads');
if (!$xss_check) {
return $value;
}
if (!isset(self::$purifier)) {
self::$purifier = new HTMLPurifier(self::$config);
}
if (is_array($value)) {
foreach ($value as $k => &$v) {
$v = self::_purify($v, $xss_check);
}
} else {
$value = self::$purifier->purify($value);
}
return $value;
}
