Code Coverage for /Users/ericduran/Sites/drupal/drupal/core/lib/Drupal/Component/Utility/UrlHelper.php

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	0.00% covered (danger)	0.00%	0 / 1	90.91% covered (success)	90.91%	10 / 11	CRAP	98.68% covered (success)	98.68%	75 / 76
UrlHelper	0.00% covered (danger)	0.00%	0 / 1	90.91% covered (success)	90.91%	10 / 11	43	98.68% covered (success)	98.68%	75 / 76
buildQuery				100.00% covered (success)	100.00%	1 / 1	5	100.00% covered (success)	100.00%	9 / 9
filterQueryParameters				100.00% covered (success)	100.00%	1 / 1	7	100.00% covered (success)	100.00%	13 / 13
parse				100.00% covered (success)	100.00%	1 / 1	7	100.00% covered (success)	100.00%	18 / 18
encodePath				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
isExternal				100.00% covered (success)	100.00%	1 / 1	5	100.00% covered (success)	100.00%	7 / 7
externalIsLocal				100.00% covered (success)	100.00%	1 / 1	8	100.00% covered (success)	100.00%	8 / 8
filterBadProtocol				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	2 / 2
getAllowedProtocols				0.00% covered (danger)	0.00%	0 / 1	2	0.00% covered (danger)	0.00%	0 / 1
setAllowedProtocols				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	2 / 2
stripDangerousProtocols				100.00% covered (success)	100.00%	1 / 1	5	100.00% covered (success)	100.00%	11 / 11
isValid				100.00% covered (success)	100.00%	1 / 1	2	100.00% covered (success)	100.00%	4 / 4

1	<?php
2
3	/**
4	* @file
5	* Contains \Drupal\Component\Utility\UrlHelper.
6	*/
7
8	namespace Drupal\Component\Utility;
9
10	/**
11	* Helper class URL based methods.
12	*
13	* @ingroup utility
14	*/
15	class UrlHelper {
16
17	/**
18	* The list of allowed protocols.
19	*
20	* @var array
21	*/
22	protected static $allowedProtocols = array('http', 'https');
23
24	/**
25	* Parses an array into a valid, rawurlencoded query string.
26	*
27	*
28	* rawurlencode() is RFC3986 compliant, and as a consequence RFC3987
29	* compliant. The latter defines the required format of "URLs" in HTML5.
30	* urlencode() is almost the same as rawurlencode(), except that it encodes
31	* spaces as "+" instead of "%20". This makes its result non compliant to
32	* RFC3986 and as a consequence non compliant to RFC3987 and as a consequence
33	* not valid as a "URL" in HTML5.
34	*
35	* @todo Remove this function once PHP 5.4 is required as we can use just
36	* http_build_query() directly.
37	*
38	* @param array $query
39	* The query parameter array to be processed; for instance,
40	* \Drupal::request()->query->all().
41	* @param string $parent
42	* (optional) Internal use only. Used to build the $query array key for
43	* nested items. Defaults to an empty string.
44	*
45	* @return string
46	* A rawurlencoded string which can be used as or appended to the URL query
47	* string.
48	*
49	* @ingroup php_wrappers
50	*/
51	public static function buildQuery(array $query, $parent = '') {
52	$params = array();
53
54	foreach ($query as $key => $value) {
55	$key = ($parent ? $parent . '[' . rawurlencode($key) . ']' : rawurlencode($key));
56
57	// Recurse into children.
58	if (is_array($value)) {
59	$params[] = static::buildQuery($value, $key);
60	}
61	// If a query parameter value is NULL, only append its key.
62	elseif (!isset($value)) {
63	$params[] = $key;
64	}
65	else {
66	// For better readability of paths in query strings, we decode slashes.
67	$params[] = $key . '=' . str_replace('%2F', '/', rawurlencode($value));
68	}
69	}
70
71	return implode('&', $params);
72	}
73
74	/**
75	* Filters a URL query parameter array to remove unwanted elements.
76	*
77	* @param array $query
78	* An array to be processed.
79	* @param array $exclude
80	* (optional) A list of $query array keys to remove. Use "parent[child]" to
81	* exclude nested items.
82	* @param string $parent
83	* Internal use only. Used to build the $query array key for nested items.
84	*
85	* @return
86	* An array containing query parameters.
87	*/
88	public static function filterQueryParameters(array $query, array $exclude = array(), $parent = '') {
89	// If $exclude is empty, there is nothing to filter.
90	if (empty($exclude)) {
91	return $query;
92	}
93	elseif (!$parent) {
94	$exclude = array_flip($exclude);
95	}
96
97	$params = array();
98	foreach ($query as $key => $value) {
99	$string_key = ($parent ? $parent . '[' . $key . ']' : $key);
100	if (isset($exclude[$string_key])) {
101	continue;
102	}
103
104	if (is_array($value)) {
105	$params[$key] = static::filterQueryParameters($value, $exclude, $string_key);
106	}
107	else {
108	$params[$key] = $value;
109	}
110	}
111
112	return $params;
113	}
114
115	/**
116	* Parses a URL string into its path, query, and fragment components.
117	*
118	* This function splits both internal paths like @code node?b=c#d @endcode and
119	* external URLs like @code https://example.com/a?b=c#d @endcode into their
120	* component parts. See
121	* @link http://tools.ietf.org/html/rfc3986#section-3 RFC 3986 @endlink for an
122	* explanation of what the component parts are.
123	*
124	* Note that, unlike the RFC, when passed an external URL, this function
125	* groups the scheme, authority, and path together into the path component.
126	*
127	* @param string $url
128	* The internal path or external URL string to parse.
129	*
130	* @return array
131	* An associative array containing:
132	* - path: The path component of $url. If $url is an external URL, this
133	* includes the scheme, authority, and path.
134	* - query: An array of query parameters from $url, if they exist.
135	* - fragment: The fragment component from $url, if it exists.
136	*
137	* @see \Drupal\Core\Utility\LinkGenerator
138	* @see http://tools.ietf.org/html/rfc3986
139	*
140	* @ingroup php_wrappers
141	*/
142	public static function parse($url) {
143	$options = array(
144	'path' => NULL,
145	'query' => array(),
146	'fragment' => '',
147	);
148
149	// External URLs: not using parse_url() here, so we do not have to rebuild
150	// the scheme, host, and path without having any use for it.
151	if (strpos($url, '://') !== FALSE) {
152	// Split off everything before the query string into 'path'.
153	$parts = explode('?', $url);
154
155	// Don't support URLs without a path, like 'http://'.
156	list(, $path) = explode('://', $parts[0], 2);
157	if ($path != '') {
158	$options['path'] = $parts[0];
159	}
160	// If there is a query string, transform it into keyed query parameters.
161	if (isset($parts[1])) {
162	$query_parts = explode('#', $parts[1]);
163	parse_str($query_parts[0], $options['query']);
164	// Take over the fragment, if there is any.
165	if (isset($query_parts[1])) {
166	$options['fragment'] = $query_parts[1];
167	}
168	}
169	}
170	// Internal URLs.
171	else {
172	// parse_url() does not support relative URLs, so make it absolute. For
173	// instance, the relative URL "foo/bar:1" isn't properly parsed.
174	$parts = parse_url('http://example.com/' . $url);
175	// Strip the leading slash that was just added.
176	$options['path'] = substr($parts['path'], 1);
177	if (isset($parts['query'])) {
178	parse_str($parts['query'], $options['query']);
179	}
180	if (isset($parts['fragment'])) {
181	$options['fragment'] = $parts['fragment'];
182	}
183	}
184
185	return $options;
186	}
187
188	/**
189	* Encodes a Drupal path for use in a URL.
190	*
191	* For aesthetic reasons slashes are not escaped.
192	*
193	* @param string $path
194	* The Drupal path to encode.
195	*
196	* @return string
197	* The encoded path.
198	*/
199	public static function encodePath($path) {
200	return str_replace('%2F', '/', rawurlencode($path));
201	}
202
203	/**
204	* Determines whether a path is external to Drupal.
205	*
206	* An example of an external path is http://example.com. If a path cannot be
207	* assessed by Drupal's menu handler, then we must treat it as potentially
208	* insecure.
209	*
210	* @param string $path
211	* The internal path or external URL being linked to, such as "node/34" or
212	* "http://example.com/foo".
213	*
214	* @return bool
215	* TRUE or FALSE, where TRUE indicates an external path.
216	*/
217	public static function isExternal($path) {
218	$colonpos = strpos($path, ':');
219	// Some browsers treat \ as / so normalize to forward slashes.
220	$path = str_replace('\\', '/', $path);
221	// If the path starts with 2 slashes then it is always considered an
222	// external URL without an explicit protocol part.
223	return (strpos($path, '//') === 0)
224	// Leading control characters may be ignored or mishandled by browsers,
225	// so assume such a path may lead to an external location. The \p{C}
226	// character class matches all UTF-8 control, unassigned, and private
227	// characters.
228	\|\| (preg_match('/^\p{C}/u', $path) !== 0)
229	// Avoid calling static::stripDangerousProtocols() if there is any slash
230	// (/), hash (#) or question_mark (?) before the colon (:) occurrence -
231	// if any - as this would clearly mean it is not a URL.
232	\|\| ($colonpos !== FALSE
233	&& !preg_match('![/?#]!', substr($path, 0, $colonpos))
234	&& static::stripDangerousProtocols($path) == $path);
235	}
236
237	/**
238	* Determines if an external URL points to this installation.
239	*
240	* @param string $url
241	* A string containing an external URL, such as "http://example.com/foo".
242	* @param string $base_url
243	* The base URL string to check against, such as "http://example.com/"
244	*
245	* @return bool
246	* TRUE if the URL has the same domain and base path.
247	*
248	* @throws \InvalidArgumentException
249	* Exception thrown when a either $url or $bath_url are not fully qualified.
250	*/
251	public static function externalIsLocal($url, $base_url) {
252	$url_parts = parse_url($url);
253	$base_parts = parse_url($base_url);
254
255	if (empty($base_parts['host']) \|\| empty($url_parts['host'])) {
256	throw new \InvalidArgumentException('A path was passed when a fully qualified domain was expected.');
257	}
258
259	if (!isset($url_parts['path']) \|\| !isset($base_parts['path'])) {
260	return (!isset($base_parts['path']) \|\| $base_parts['path'] == '/')
261	&& ($url_parts['host'] == $base_parts['host']);
262	}
263	else {
264	// When comparing base paths, we need a trailing slash to make sure a
265	// partial URL match isn't occurring. Since base_path() always returns
266	// with a trailing slash, we don't need to add the trailing slash here.
267	return ($url_parts['host'] == $base_parts['host'] && stripos($url_parts['path'], $base_parts['path']) === 0);
268	}
269	}
270
271	/**
272	* Processes an HTML attribute value and strips dangerous protocols from URLs.
273	*
274	* @param string $string
275	* The string with the attribute value.
276	*
277	* @return string
278	* Cleaned up and HTML-escaped version of $string.
279	*/
280	public static function filterBadProtocol($string) {
281	// Get the plain text representation of the attribute value (i.e. its
282	// meaning).
283	$string = Html::decodeEntities($string);
284	return Html::escape(static::stripDangerousProtocols($string));
285	}
286
287	/**
288	* Gets the allowed protocols.
289	*
290	* @return array
291	* An array of protocols, for example http, https and irc.
292	*/
293	public static function getAllowedProtocols() {
294	return static::$allowedProtocols;
295	}
296
297	/**
298	* Sets the allowed protocols.
299	*
300	* @param array $protocols
301	* An array of protocols, for example http, https and irc.
302	*/
303	public static function setAllowedProtocols(array $protocols = array()) {
304	static::$allowedProtocols = $protocols;
305	}
306
307	/**
308	* Strips dangerous protocols (for example, 'javascript:') from a URI.
309	*
310	* This function must be called for all URIs within user-entered input prior
311	* to being output to an HTML attribute value. It is often called as part of
312	* \Drupal\Component\Utility\UrlHelper::filterBadProtocol() or
313	* \Drupal\Component\Utility\Xss::filter(), but those functions return an
314	* HTML-encoded string, so this function can be called independently when the
315	* output needs to be a plain-text string for passing to functions that will
316	* call Html::escape() separately. The exact behavior depends on the value:
317	* - If the value is a well-formed (per RFC 3986) relative URL or
318	* absolute URL that does not use a dangerous protocol (like
319	* "javascript:"), then the URL remains unchanged. This includes all
320	* URLs generated via Url::toString() and UrlGeneratorTrait::url().
321	* - If the value is a well-formed absolute URL with a dangerous protocol,
322	* the protocol is stripped. This process is repeated on the remaining URL
323	* until it is stripped down to a safe protocol.
324	* - If the value is not a well-formed URL, the same sanitization behavior as
325	* for well-formed URLs will be invoked, which strips most substrings that
326	* precede a ":". The result can be used in URL attributes such as "href"
327	* or "src" (only after calling Html::escape() separately), but this may not
328	* produce valid HTML (for example, malformed URLs within "href" attributes
329	* fail HTML validation). This can be avoided by using
330	* Url::fromUri($possibly_not_a_url)->toString(), which either throws an
331	* exception or returns a well-formed URL.
332	*
333	* @param string $uri
334	* A plain-text URI that might contain dangerous protocols.
335	*
336	* @return string
337	* A plain-text URI stripped of dangerous protocols. As with all plain-text
338	* strings, this return value must not be output to an HTML page without
339	* being sanitized first. However, it can be passed to functions
340	* expecting plain-text strings.
341	*
342	* @see \Drupal\Component\Utility\Html::escape()
343	* @see \Drupal\Core\Url::toString()
344	* @see \Drupal\Core\Routing\UrlGeneratorTrait::url()
345	* @see \Drupal\Core\Url::fromUri()
346	*/
347	public static function stripDangerousProtocols($uri) {
348	$allowed_protocols = array_flip(static::$allowedProtocols);
349
350	// Iteratively remove any invalid protocol found.
351	do {
352	$before = $uri;
353	$colonpos = strpos($uri, ':');
354	if ($colonpos > 0) {
355	// We found a colon, possibly a protocol. Verify.
356	$protocol = substr($uri, 0, $colonpos);
357	// If a colon is preceded by a slash, question mark or hash, it cannot
358	// possibly be part of the URL scheme. This must be a relative URL, which
359	// inherits the (safe) protocol of the base document.
360	if (preg_match('![/?#]!', $protocol)) {
361	break;
362	}
363	// Check if this is a disallowed protocol. Per RFC2616, section 3.2.3
364	// (URI Comparison) scheme comparison must be case-insensitive.
365	if (!isset($allowed_protocols[strtolower($protocol)])) {
366	$uri = substr($uri, $colonpos + 1);
367	}
368	}
369	} while ($before != $uri);
370
371	return $uri;
372	}
373
374	/**
375	* Verifies the syntax of the given URL.
376	*
377	* This function should only be used on actual URLs. It should not be used for
378	* Drupal menu paths, which can contain arbitrary characters.
379	* Valid values per RFC 3986.
380	*
381	* @param string $url
382	* The URL to verify.
383	* @param bool $absolute
384	* Whether the URL is absolute (beginning with a scheme such as "http:").
385	*
386	* @return bool
387	* TRUE if the URL is in a valid format, FALSE otherwise.
388	*/
389	public static function isValid($url, $absolute = FALSE) {
390	if ($absolute) {
391	return (bool) preg_match("
392	/^ # Start at the beginning of the text
393	(?:ftp\|https?\|feed):\/\/ # Look for ftp, http, https or feed schemes
394	(?: # Userinfo (optional) which is typically
395	(?:(?:[\w\.\-\+!$&'\+,;=]\|%[0-9a-f]{2})+:) # a username or a username and password
396	(?:[\w\.\-\+%!$&'*\+,;=]\|%[0-9a-f]{2})+@ # combination
397	)?
398	(?:
399	(?:[a-z0-9\-\.]\|%[0-9a-f]{2})+ # A domain name or a IPv4 address
400	\|(?:\[(?:[0-9a-f]{0,4}:)*(?:[0-9a-f]{0,4})\]) # or a well formed IPv6 address
401	)
402	(?::[0-9]+)? # Server port number (optional)
403	(?:[\/\|\?]
404	(?:[\w#!:\.\?\+=&@$'~*,;\/\[\]\-]\|%[0-9a-f]{2}) # The path and query (optional)
405	*)?
406	$/xi", $url);
407	}
408	else {
409	return (bool) preg_match("/^(?:[\w#!:\.\?\+=&@$'~*,;\/\[\]\-]\|%[0-9a-f]{2})+$/i", $url);
410	}
411	}
412
413	}