/** * Once we have a folder with some template files, we make sure that what's * inside is fine (no forbidden files, etc) * * @param templateName * @param templateFolder * @return */ function checkTemplateFolder($templateName, $templateFolder) { if ($templateFolder[strlen($templateFolder) - 1] != '/') { $templateFolder .= '/'; } $tv = new TemplateValidator($templateName, $templateFolder); if (($errorCode = $tv->validate()) < 0) { return $errorCode; } // check if there isn't any file with a forbidden extension if (!$this->checkForbiddenFiles($templateFolder . $templateName)) { return TEMPLATE_SANDBOX_ERROR_FORBIDDEN_EXTENSIONS; } return true; }