malhuda/CodeIgniter4
1
0
Fork 0
mirror of https://github.com/codeigniter4/CodeIgniter4.git synced 2025-02-20 11:44:28 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Replace usage of FILTER_SANITIZE_STRING

Browse Source
This commit is contained in:
John Paul E. Balandan, CPA 2021-10-31 19:37:52 +08:00
parent 4034dc4122
commit ef7d23dbd3
No known key found for this signature in database
GPG Key ID: FB7B51499BC27610
3 changed files with 10 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
system/HTTP/CLIRequest.php
View File

@ -15,8 +15,6 @@ use Config\App;
use RuntimeException;
/**
* Class CLIRequest
*
* Represents a request from the command-line. Provides additional
* tools to interact with that request since CLI requests are not
* static like HTTP requests might be.
@ -172,17 +170,17 @@ class CLIRequest extends Request
if ($optionValue) {
$optionValue = false;
} else {
$this->segments[] = filter_var($arg, FILTER_SANITIZE_STRING);
$this->segments[] = esc(strip_tags($arg));
}
continue;
}
$arg = filter_var(ltrim($arg, '-'), FILTER_SANITIZE_STRING);
$arg = esc(strip_tags(ltrim($arg, '-')));
$value = null;
if (isset($args[$i + 1]) && mb_strpos($args[$i + 1], '-') !== 0) {
$value = filter_var($args[$i + 1], FILTER_SANITIZE_STRING);
$value = esc(strip_tags($args[$i + 1]));
$optionValue = true;
}

12
system/HTTP/CURLRequest.php
View File

@ -16,10 +16,7 @@ use Config\App;
use InvalidArgumentException;
/**
* Class OutgoingRequest
*
* A lightweight HTTP client for sending synchronous HTTP requests
* via cURL.
* A lightweight HTTP client for sending synchronous HTTP requests via cURL.
*/
class CURLRequest extends Request
{
@ -84,10 +81,7 @@ class CURLRequest extends Request
public function __construct(App $config, URI $uri, ?ResponseInterface $response = null, array $options = [])
{
if (! function_exists('curl_version')) {
// we won't see this during travis-CI
// @codeCoverageIgnoreStart
throw HTTPException::forMissingCurl();
// @codeCoverageIgnoreEnd
throw HTTPException::forMissingCurl(); // @codeCoverageIgnore
}
parent::__construct($config);
@ -110,7 +104,7 @@ class CURLRequest extends Request
$url = $this->prepareURL($url);
$method = filter_var($method, FILTER_SANITIZE_STRING);
$method = esc(strip_tags($method));
$this->send($method, $url);

8
system/Router/RouteCollection.php
View File

@ -19,8 +19,6 @@ use Config\Services;
use InvalidArgumentException;
/**
* Class RouteCollection
*
* @todo Implement nested resource routing (See CakePHP)
*/
class RouteCollection implements RouteCollectionInterface
@ -663,10 +661,11 @@ class RouteCollection implements RouteCollectionInterface
// resources are sent to, we need to have a new name
// to store the values in.
$newName = implode('\\', array_map('ucfirst', explode('/', $name)));
// If a new controller is specified, then we replace the
// $name value with the name of the new controller.
if (isset($options['controller'])) {
$newName = ucfirst(filter_var($options['controller'], FILTER_SANITIZE_STRING));
$newName = ucfirst(esc(strip_tags($options['controller'])));
}
// In order to allow customization of allowed id values
@ -756,10 +755,11 @@ class RouteCollection implements RouteCollectionInterface
// resources are sent to, we need to have a new name
// to store the values in.
$newName = implode('\\', array_map('ucfirst', explode('/', $name)));
// If a new controller is specified, then we replace the
// $name value with the name of the new controller.
if (isset($options['controller'])) {
$newName = ucfirst(filter_var($options['controller'], FILTER_SANITIZE_STRING));
$newName = ucfirst(esc(strip_tags($options['controller'])));
}
// In order to allow customization of allowed id values