Contao\Input::stripTags PHP Method

Input Class Documentation Show file Open project: contao/core-bundle

stripTags() public static method

Strip HTML and PHP tags preserving HTML comments
public static stripTags ( mixed $varValue, string $strAllowedTags = '' ) : mixed
$varValue mixed A string or array
$strAllowedTags string A string of tags to preserve
return mixed The cleaned string or array 
    public static function stripTags($varValue, $strAllowedTags = '')
    {
        if ($varValue === null || $varValue == '') {
            return $varValue;
        }
        // Recursively clean arrays
        if (is_array($varValue)) {
            foreach ($varValue as $k => $v) {
                $varValue[$k] = static::stripTags($v, $strAllowedTags);
            }
            return $varValue;
        }
        // Encode opening arrow brackets (see #3998)
        $varValue = preg_replace_callback('@</?([^\\s<>/]*)@', function ($matches) use($strAllowedTags) {
            if ($matches[1] == '' || strpos(strtolower($strAllowedTags), '<' . strtolower($matches[1]) . '>') === false) {
                $matches[0] = str_replace('<', '&lt;', $matches[0]);
            }
            return $matches[0];
        }, $varValue);
        // Strip the tags and restore HTML comments
        $varValue = strip_tags($varValue, $strAllowedTags);
        $varValue = str_replace(array('&lt;!--', '&lt;!['), array('<!--', '<!['), $varValue);
        // Recheck for encoded null bytes
        while (strpos($varValue, '\\0') !== false) {
            $varValue = str_replace('\\0', '', $varValue);
        }
        return $varValue;
    }
Input
__clone
__construct
cleanKey
cookie
decodeEntities
encodeInsertTags
encodeSpecialChars
findPost
get
getInstance
getUnusedGet
hasUnusedGet
initialize
post
postHtml
postRaw
postUnsafeRaw
preserveBasicEntities
resetCache
setCookie
setGet
setPost
setUnusedGet
stripSlashes
stripTags
xssClean