<?php

/**
 * Validates the attributes of a token. Doesn't manage required attributes
 * very well. The only reason we factored this out was because RemoveForeignElements
 * also needed it besides ValidateAttributes.
 */
class HTMLPurifier_AttrValidator
{

    /**
     * Validates the attributes of a token, mutating it as necessary.
     * that has valid tokens
     * @param HTMLPurifier_Token $token Token to validate.
     * @param HTMLPurifier_Config $config Instance of HTMLPurifier_Config
     * @param HTMLPurifier_Context $context Instance of HTMLPurifier_Context
     */
    public function validateToken($token, $config, $context)
    {
        $definition = $config->getHTMLDefinition();
        $e =& $context->get('ErrorCollector', true);

        // initialize IDAccumulator if necessary
        $ok =& $context->get('IDAccumulator', true);
        if (!$ok) {
            $id_accumulator = HTMLPurifier_IDAccumulator::build($config, $context);
            $context->register('IDAccumulator', $id_accumulator);
        }

        // initialize CurrentToken if necessary
        $current_token =& $context->get('CurrentToken', true);
        if (!$current_token) {
            $context->register('CurrentToken', $token);
        }

        if (!$token instanceof HTMLPurifier_Token_Start &&
            !$token instanceof HTMLPurifier_Token_Empty
        ) {
            return;
        }

        // create alias to global definition array, see also $defs
        // DEFINITION CALL
        $d_defs = $definition->info_global_attr;

        // don't update token until the very end, to ensure an atomic update
        $attr = $token->attr;

        // do global transformations (pre)
        // nothing currently utilizes this
        foreach ($definition->info_attr_transform_pre as $transform) {
            $attr = $transform->transform($o = $attr, $config, $context);
            if ($e) {
                if ($attr != $o) {
                    $e->send(E_NOTICE, 'AttrValidator: Attributes transformed', $o, $attr);
                }
            }
        }

        // do local transformations only applicable to this element (pre)
        // ex. <p align="right"> to <p style="text-align:right;">
        foreach ($definition->info[$token->name]->attr_transform_pre as $transform) {
            $attr = $transform->transform($o = $attr, $config, $context);
            if ($e) {
                if ($attr != $o) {
                    $e->send(E_NOTICE, 'AttrValidator: Attributes transformed', $o, $attr);
                }
            }
        }

        // create alias to this element's attribute definition array, see
        // also $d_defs (global attribute definition array)
        // DEFINITION CALL
        $defs = $definition->info[$token->name]->attr;

        $attr_key = false;
        $context->register('CurrentAttr', $attr_key);

        // iterate through all the attribute keypairs
        // Watch out for name collisions: $key has previously been used
        foreach ($attr as $attr_key => $value) {

            // call the definition
            if (isset($defs[$attr_key])) {
                // there is a local definition defined
                if ($defs[$attr_key] === false) {
                    // We've explicitly been told not to allow this element.
                    // This is usually when there's a global definition
                    // that must be overridden.
                    // Theoretically speaking, we could have a
                    // AttrDef_DenyAll, but this is faster!
                    $result = false;
                } else {
                    // validate according to the element's definition
                    $result = $defs[$attr_key]->validate(
                        $value,
                        $config,
                        $context
                    );
                }
            } elseif (isset($d_defs[$attr_key])) {
                // there is a global definition defined, validate according
                // to the global definition
                $result = $d_defs[$attr_key]->validate(
                    $value,
                    $config,
                    $context
                );
            } else {
                // system never heard of the attribute? DELETE!
                $result = false;
            }

            // put the results into effect
            if ($result === false || $result === null) {
                // this is a generic error message that should replaced
                // with more specific ones when possible
                if ($e) {
                    $e->send(E_ERROR, 'AttrValidator: Attribute removed');
                }

                // remove the attribute
                unset($attr[$attr_key]);
            } elseif (is_string($result)) {
                // generally, if a substitution is happening, there
                // was some sort of implicit correction going on. We'll
                // delegate it to the attribute classes to say exactly what.

                // simple substitution
                $attr[$attr_key] = $result;
            } else {
                // nothing happens
            }

            // we'd also want slightly more complicated substitution
            // involving an array as the return value,
            // although we're not sure how colliding attributes would
            // resolve (certain ones would be completely overriden,
            // others would prepend themselves).
        }

        $context->destroy('CurrentAttr');

        // post transforms

        // global (error reporting untested)
        foreach ($definition->info_attr_transform_post as $transform) {
            $attr = $transform->transform($o = $attr, $config, $context);
            if ($e) {
                if ($attr != $o) {
                    $e->send(E_NOTICE, 'AttrValidator: Attributes transformed', $o, $attr);
                }
            }
        }

        // local (error reporting untested)
        foreach ($definition->info[$token->name]->attr_transform_post as $transform) {
            $attr = $transform->transform($o = $attr, $config, $context);
            if ($e) {
                if ($attr != $o) {
                    $e->send(E_NOTICE, 'AttrValidator: Attributes transformed', $o, $attr);
                }
            }
        }

        $token->attr = $attr;

        // destroy CurrentToken if we made it ourselves
        if (!$current_token) {
            $context->destroy('CurrentToken');
        }

    }


}

// vim: et sw=4 sts=4

• [D] AttrDef
• [D] AttrTransform
• [D] ChildDef
• [D] ConfigSchema
• [D] DefinitionCache
• [D] EntityLookup
• [D] Filter
• [D] HTMLModule
• [D] Injector
• [D] Language
• [D] Lexer
• [D] Node
• [D] Printer
• [D] Strategy
• [D] TagTransform
• [D] Token
• [D] URIFilter
• [D] URIScheme
• [D] VarParser
• [F] Arborize.php
  Delete
• [F] AttrCollections.php
  Delete
• [F] AttrDef.php
  Delete
• [F] AttrTransform.php
  Delete
• [F] AttrTypes.php
  Delete
• [F] AttrValidator.php
  Delete
• [F] Bootstrap.php
  Delete
• [F] ChildDef.php
  Delete
• [F] Config.php
  Delete
• [F] ConfigSchema.php
  Delete
• [F] ContentSets.php
  Delete
• [F] Context.php
  Delete
• [F] CSSDefinition.php
  Delete
• [F] Definition.php
  Delete
• [F] DefinitionCache.php
  Delete
• [F] DefinitionCacheFactory.php
  Delete
• [F] Doctype.php
  Delete
• [F] DoctypeRegistry.php
  Delete
• [F] ElementDef.php
  Delete
• [F] Encoder.php
  Delete
• [F] EntityLookup.php
  Delete
• [F] EntityParser.php
  Delete
• [F] ErrorCollector.php
  Delete
• [F] ErrorStruct.php
  Delete
• [F] Exception.php
  Delete
• [F] Filter.php
  Delete
• [F] Generator.php
  Delete
• [F] HTMLDefinition.php
  Delete
• [F] HTMLModule.php
  Delete
• [F] HTMLModuleManager.php
  Delete
• [F] IDAccumulator.php
  Delete
• [F] Injector.php
  Delete
• [F] Language.php
  Delete
• [F] LanguageFactory.php
  Delete
• [F] Length.php
  Delete
• [F] Lexer.php
  Delete
• [F] Node.php
  Delete
• [F] PercentEncoder.php
  Delete
• [F] Printer.php
  Delete
• [F] PropertyList.php
  Delete
• [F] PropertyListIterator.php
  Delete
• [F] Queue.php
  Delete
• [F] Strategy.php
  Delete
• [F] StringHash.php
  Delete
• [F] StringHashParser.php
  Delete
• [F] TagTransform.php
  Delete
• [F] Token.php
  Delete
• [F] TokenFactory.php
  Delete
• [F] UnitConverter.php
  Delete
• [F] URI.php
  Delete
• [F] URIDefinition.php
  Delete
• [F] URIFilter.php
  Delete
• [F] URIParser.php
  Delete
• [F] URIScheme.php
  Delete
• [F] URISchemeRegistry.php
  Delete
• [F] VarParser.php
  Delete
• [F] VarParserException.php
  Delete
• [F] Zipper.php
  Delete

Service Section

Our Services: Streamlining Your Payment Experience with Excellence

Discover how our services are designed to enhance your NFC Pay experience with convenience, security, and innovative solutions. From managing transactions to secure payments, we are dedicated to providing seamless support every step of the way.

Secure Card Storage

Easily save your credit and debit card details within our app for quick and secure transactions. This feature ensures that your payment information is protected with advanced encryption and can be used for future purchases with just a tap.

Effortless Money Transfers

Transfer funds quickly and securely between users with our streamlined money transfer service. Simply select the recipient, enter the amount, and authorize the transaction for instant, hassle-free transfers.

Merchant Account Setup

Activate your merchant account effortlessly to start receiving payments. Our intuitive setup process ensures that you can begin accepting transactions smoothly, helping your business thrive with minimal setup time.

Real-Time Transaction Tracking

Keep track of all your transactions in real time through our app. Monitor payment statuses, view transaction history, and manage your account efficiently, ensuring complete control over your financial activities.

Customer Support

Our dedicated support team is available to assist you with any queries or issues. Whether you need help with setting up your account or resolving transaction-related questions, we’re here to provide prompt and reliable assistance.