Ausstehende Aufgaben

Klasse HTMLPurifier

We need an easier way to inject strategies using the configuration object.

Global HTMLPurifier_AttrDef_CSS_Composite::$defs

Make protected

Klasse HTMLPurifier_AttrDef_CSS_FontFamily

whitelisting allowed fonts would be nice

Global HTMLPurifier_AttrDef_CSS_Multiple::$max

Make protected

Global HTMLPurifier_AttrDef_CSS_Multiple::$single

Make protected

Global HTMLPurifier_AttrDef_Enum::$valid_values

Make protected

Klasse HTMLPurifier_Config

Reconsider some of the public member variables

Klasse HTMLPurifier_ContentSets

Unit test

Global HTMLPurifier_CSSDefinition::setupConfigStuff ($config)

Refactor duplicate elements into common class (probably using composition, not inheritance).

Klasse HTMLPurifier_DefinitionCache

Create a separate maintenance file advanced users can use to cache their custom HTMLDefinition, which can be loaded via a configuration directive

Implement memcached

Global HTMLPurifier_DefinitionCache_Serializer::generateBaseDirectoryPath ($config)

Make protected

Global HTMLPurifier_DefinitionCache_Serializer::generateDirectoryPath ($config)

Make protected

Global HTMLPurifier_DefinitionCache_Serializer::generateFilePath ($config)

Make protected

Global HTMLPurifier_Filter_ExtractStyleBlocks::preFilter ($html, $config, $context)

Extend to indicate non-text/css style blocks

Klasse HTMLPurifier_Generator

Refactor interface so that configuration/context is determined upon instantiation, no need for messy generateFromTokens() calls

Make some of the more internal functions protected, and have unit tests work around that

Global HTMLPurifier_Generator::escape ($string, $quote=ENT_COMPAT)

This really ought to be protected, but until we have a facility for properly generating HTML here w/o using tokens, it stays public.

Global HTMLPurifier_HTMLDefinition::parseTinyMCEAllowedList ($list)

Give this its own class, probably static interface

Klasse HTMLPurifier_HTMLModule

Consider making some member functions protected

Klasse HTMLPurifier_HTMLModule_Tidy

Figure out how to protect some of these methods/properties

Global HTMLPurifier_HTMLModule_Tidy::setup ($config)

Wildcard matching and error reporting when an added or subtracted fix has no effect.

Klasse HTMLPurifier_Injector

Allow injectors to request a re-run on their output. This would help if an operation is recursive.

Klasse HTMLPurifier_Injector_AutoParagraph

Ensure all states are unit tested, including variations as well.

Make a graph of the flow control for this Injector.

Global HTMLPurifier_Language::$_loaded

Make it private, fix usage in HTMLPurifier_LanguageTest

Global HTMLPurifier_Language::formatMessage ($key, $args=array())

Implement conditionals? Right now, some messages make reference to line numbers, but those aren't always available

Klasse HTMLPurifier_LanguageFactory

Serialized cache for languages

Global HTMLPurifier_Lexer::extractBody ($html)

Consider making protected

Global HTMLPurifier_Lexer::normalize ($html, $config, $context)

Consider making protected

Klasse HTMLPurifier_Lexer_DirectLex

Reread XML spec and document differences.

Klasse HTMLPurifier_Lexer_PEARSax3

Generalize so that XML_HTMLSax is also supported.

Klasse HTMLPurifier_Printer_ConfigForm

Rewrite to use Interchange objects

Global HTMLPurifier_Printer_HTMLDefinition::listifyObjectList ($array)

Also add information about internal state

Klasse HTMLPurifier_Strategy_FixNesting

Enable nodes to be bubbled out of the structure.

Klasse HTMLPurifier_TokenFactory

Port DirectLex to use this

Klasse HTMLPurifier_URIScheme_mailto

Validate the email address

Filter allowed query parameters