chess-web/chessParser
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Sanitize file name

Browse Source
This commit is contained in:
DHTMLGoodies
2013-08-28 13:25:50 +02:00
parent 8f4fa18895
commit aad46951e0
1 changed files with 13 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
PgnParser.php
View File

@@ -13,13 +13,25 @@ class PgnParser
public function __construct($pgnFile = "", $fullParsing =true) public function __construct($pgnFile = "", $fullParsing =true)
{ {
if ($pgnFile) { if ($pgnFile) {
$this->pgnFile = $pgnFile; $this->pgnFile = $this->sanitize($pgnFile);
} }
$this->_fullParsing = $fullParsing; $this->_fullParsing = $fullParsing;
$this->gameParser = new GameParser(); $this->gameParser = new GameParser();
$this->pgnGameParser = new PgnGameParser(); $this->pgnGameParser = new PgnGameParser();
} }
private function sanitize($filePath){
$extension = $this->getExtension($filePath);
if($extension != 'pgn')return null;
if(substr($filePath,0,1)==="/")return null;
if(!file_exists($filePath))return null;
return preg_replace("/[^0-9\.a-z_\-]/si", "", $filePath);
}
private function getExtension($filePath){
$tokens = explode(".", $filePath);
return strtolower(array_pop($tokens));
}
public function setPgnContent($content) public function setPgnContent($content)