���������C������F����������������s���W����������n������w������s������L���/���v���m���m���������.���@���������������E���"������������Q������9���g������������Q������*�������j������w���������A���O���F���`�����������������������W���a������(���?���������l���-���/���z�������������(����������������������������\���~����������������=��������������������������������X���I�������C������ ������P���������������/���N���������M���������h������3���p����������������������Q���������)���J���o�������������n���p���2���h������t���<���Z���[���r���p���D���6�������������������������O���:���k���S���i������������w����������������������������������@���������U���v���������$���8�������{���������R���K�������������!���9������1������������'��������� �������������C�������_���������w����������������������W������������������������^������e_by);
} else {
$filtered = $this->filter_plain_emails( $filtered, null, $replace_by );
}
} else {
$filtered = $this->filter_plain_emails( $filtered, null, $replace_by );
}
break;
case 'with_javascript':
$filtered = $this->filter_input_fields( $filtered, $protect_using );
$filtered = $this->filter_mailto_links( $filtered );
$filtered = $this->filter_custom_links( $filtered );
if ( $convert_plain_to_image ) {
$replace_by = 'convert_image';
} else {
$replace_by = 'use_javascript';
}
if ( $encode_mailtos ) {
if ( ! ( function_exists( 'et_fb_enabled' ) && et_fb_enabled() ) ) {
$filtered = $this->filter_plain_emails( $filtered, function ( $match ) use ( $self ) {
return $self->createProtectedMailto( $match[0], array( 'href' => 'mailto:' . $match[0] ), 'with_javascript' );
}, $replace_by);
} else {
$filtered = $this->filter_plain_emails( $filtered, null, $replace_by );
}
} else {
$filtered = $this->filter_plain_emails( $filtered, null, $replace_by );
}
break;
}
//Revalidate filtered emails that should not be encoded
$filtered = $this->tempEncodeAtSymbol( $filtered, true );
return $filtered;
}
/**
* Emails will be replaced by '*protected email*'
* @param string $content
* @param string|callable $replace_by Optional
* @param string $protection_method Optional
* @param mixed $show_encoded_check Optional
* @return string
*/
public function filter_plain_emails( $content, $replace_by = null, $protection_method = 'default', $show_encoded_check = 'default' )
{
if ( $show_encoded_check === 'default' ) {
$show_encoded_check = (bool) $this->getSetting( 'show_encoded_check', true );
}
if ( $replace_by === null ) {
$replace_by = __( $this->getSetting( 'protection_text', true ), 'email-encoder-bundle' );
}
$self = $this;
return preg_replace_callback( $this->settings()->get_email_regex(), function ( $matches ) use ( $replace_by, $protection_method, $show_encoded_check, $self ) {
// workaround to skip responsive image names containing @
$extention = strtolower( $matches[4] );
$excludedList = array(
'.jpg',
'.jpeg',
'.png',
'.gif',
'.svg',
'.webp',
'.bmp',
'.tiff',
'.avif',
);
//Added in 2.1.1
$excludedList = apply_filters( 'eeb/validate/excluded_image_urls', $excludedList );
if ( in_array( $extention, $excludedList ) ) {
return $matches[0];
}
if ( is_callable( $replace_by ) ) {
return call_user_func( $replace_by, $matches, $protection_method );
}
if ( $protection_method === 'char_encode' ) {
$protected_return = antispambot( $matches[0] );
} elseif ( $protection_method === 'convert_image' ) {
$image_link = $self->generateEmailImageUrl( $matches[0] );
if ( ! empty( $image_link ) ) {
$protected_return = '
';
} else {
$protected_return = antispambot( $matches[0] );
}
} elseif ( $protection_method === 'use_javascript' ) {
$protection_text = __( $this->getSetting( 'protection_text', true ), 'email-encoder-bundle' );
$protected_return = $this->dynamicJsEmailEncoding( $matches[0], $protection_text );
} elseif ( $protection_method === 'use_css' ) {
$protection_text = __( $this->getSetting( 'protection_text', true ), 'email-encoder-bundle' );
// $protected_return = $this->validate()->encoding->encode_email_css( $matches[0], $protection_text );
$protected_return = $this->validate()->encoding->encode_email_css( $matches[0] );
} elseif ( $protection_method === 'no_encoding' ) {
$protected_return = $matches[0];
} else {
$protected_return = $replace_by;
}
// mark link as successfully encoded (for admin users)
if ( current_user_can( $this->getAdminCap( 'frontend-display-security-check' ) ) && $show_encoded_check ) {
$protected_return .= $this->getEncodedEmailIcon();
}
return $protected_return;
}, $content ) ?? '';
}
/**
* Filter passed input fields
*
* @param string $content
* @return string
*/
public function filter_input_fields( string $content, string $encoding_method = 'default' )
{
$strong_encoding = (bool) $this->getSetting( 'input_strong_protection', true, 'filter_body' );
$callback_encode_input_fields = function ( $match ) use ( $encoding_method, $strong_encoding ) {
$input = $match[0];
$email = $match[2];
//Only allow strong encoding if javascript is supported
if ( $encoding_method === 'without_javascript' ) {
$strong_encoding = false;
}
return $this->validate()->encoding->encode_input_field( $input, $email, $strong_encoding );
};
$regexpInputField = '/]*)value=["\'][\s+]*' . $this->settings()->get_email_regex( true ) . '[\s+]*["\']([^>]*)>/is';
return preg_replace_callback( $regexpInputField, $callback_encode_input_fields, $content ) ?? '';
}
/**
* @param string $content
* @param string $protection_method
* @return string
*/
public function filter_mailto_links( string $content, ?string $protection_method = null )
{
$self = $this;
$callbackEncodeMailtoLinks = function ( $match ) use ( $self, $protection_method ) {
$attrs = $this->helper()->parse_html_attributes( $match[1] );
return $self->createProtectedMailto( $match[4], $attrs, $protection_method );
};
$regexpMailtoLink = '/]*)href=["\']mailto\:([^>]*)["\' ])>(.*?)<\/a[\s+]*>/is';
return preg_replace_callback( $regexpMailtoLink, $callbackEncodeMailtoLinks, $content ) ?? '';
}
/**
* @param string $content
* @param string $protection_method
* @return string
*/
public function filter_custom_links( string $content, ?string $protection_method = null )
{
$self = $this;
$custom_href_attr = (string) $this->getSetting( 'custom_href_attr', true );
if ( ! empty( $custom_href_attr ) ) {
$custom_attr_list = explode( ',', $custom_href_attr );
foreach ( $custom_attr_list as $s_attr ) {
$attr_name = trim( $s_attr );
$callbackEncodeCustomLinks = function ( $match ) use ( $self, $protection_method ) {
$attrs = shortcode_parse_atts( $match[1] );
return $self->createProtectedHrefAtt( $match[4], $attrs, $protection_method );
};
$regexpMailtoLink = '/]*)href=["\']' . addslashes( $attr_name ) . '\:([^>]*)["\' ])>(.*?)<\/a[\s+]*>/is';
$content = preg_replace_callback( $regexpMailtoLink, $callbackEncodeCustomLinks, $content ) ?? '';
}
}
return $content;
}
/**
* Emails will be replaced by '*protected email*'
*
* @param string $content
* @param string $protection_type
* @return string
*/
public function filter_rss( string $content, ?string $protection_type )
{
if ( $protection_type === 'strong_method' ) {
$filtered = $this->filter_plain_emails( $content );
} else {
$filtered = $this->filter_plain_emails( $content, null, 'char_encode' );
}
return $filtered;
}
/**
* Filter plain emails using soft attributes
*
* @param string $content - the content that should be soft filtered
* @param string $protection_method - The method (E.g. char_encode)
* @return string
*/
public function filter_soft_attributes( string $content, string $protection_method )
{
$soft_attributes = (array) $this->settings()->get_soft_attribute_regex();
foreach ( $soft_attributes as $ident => $regex ) {
// $attributes = array();
preg_match_all( $regex, $content, $attributes );
// if ( is_array( $attributes ) && isset( $attributes[0] ) ) {
foreach ( $attributes[0] as $single ) {
if ( empty( $single ) ) {
continue;
}
$content = str_replace( $single, $this->filter_plain_emails( $single, null, $protection_method, false ), $content );
}
// }
}
return $content;
}
/**
* Filter plain emails using soft dom attributes
*
* @param string $content - the content that should be soft filtered
* @param string $protection_method - The method (E.g. char_encode)
* @return string
*/
public function filter_soft_dom_attributes( $content, $protection_method )
{
$content = (string) $content;
$no_script_tags = (bool) $this->getSetting( 'no_script_tags', true, 'filter_body' );
$no_attribute_validation = (bool) $this->getSetting( 'no_attribute_validation', true, 'filter_body' );
if ( $content !== '' ) {
if ( class_exists( 'DOMDocument' ) ) {
$dom = new DOMDocument();
@$dom->loadHTML($content);
//Filter html attributes
if ( ! $no_attribute_validation ) {
$allNodes = $dom->getElementsByTagName('*');
foreach ( $allNodes as $snote ) {
if ( $snote->hasAttributes() ) {
foreach ( $snote->attributes as $attr ) {
if ( $attr->nodeName == 'href' || $attr->nodeName == 'src' ) {
continue;
}
if ( $attr->nodeValue !== null && strpos( $attr->nodeValue, '@' ) !== false ) {
// $single_tags = array();
preg_match_all( '/' . $attr->nodeName . '=["\']([^"]*)["\']/i', $content, $single_tags );
// if ( is_array( $single_tags ) && isset( $single_tags[0] ) ) {
foreach ( $single_tags[0] as $single ) {
if ( empty( $single ) ) {
continue;
}
$content = str_replace( $single, $this->filter_plain_emails( $single, null, $protection_method, false ), $content );
}
// }
}
}
}
}
}
//Keep for now
//Soft-encode scripts
// $script = $dom->getElementsByTagName('script');
// if ( ! empty( $script ) ) {
// $scripts_encoded = true;
// if ( ! $no_script_tags ) {
// foreach( $script as $item ) {
// $content = str_replace( $item->nodeValue, $this->filter_plain_emails( $item->nodeValue, null, $protection_method, false ), $content );
// }
// } else {
// foreach( $script as $item ) {
// $content = str_replace( $item->nodeValue, $this->temp_encode_at_symbol( $item->nodeValue ), $content );
// }
// }
// }
}
//Validate script tags for better encoding
$pattern = '/]*>(.*?)<\/script>/is';
preg_match_all($pattern, $content, $matches);
if ( ! empty( $matches[1] ) ) {
if ( ! $no_script_tags ) {
foreach ( $matches[1] as $key => $item ) {
//Don't do anything if something doesn't add up
if ( ! isset( $matches[0][ $key ] ) ) {
continue;
}
$org_script = $matches[0][ $key ];
//Only encode emails when a CDATA is given to not cause any break within the scripts
if ( strpos( $item, 'filter_plain_emails( $item, null, $protection_method, false ), $org_script );
} else {
$validated_script = str_replace( $item, $this->tempEncodeAtSymbol( $item ), $org_script );
}
$content = str_replace( $org_script, $validated_script, $content );
}
} else {
foreach ( $matches[1] as $key => $item ) {
//Don't do anything if something doesn't add up
if ( ! isset( $matches[0][ $key ] ) ) {
continue;
}
$org_script = $matches[0][ $key ];
$validated_script = str_replace( $item, $this->tempEncodeAtSymbol( $item ), $org_script );
$content = str_replace( $org_script, $validated_script, $content );
}
}
}
}
return $content;
}
}