gitlab-foss/sanitize_node_link.rb at a26438c5473f93cedaf9fe7f1a3cd61dc6f9a7e6

mirror of https://gitlab.com/gitlab-org/gitlab-foss.git synced 2025-08-12 23:57:42 +00:00

Files

GitLab Bot 3f11364a27 Add latest changes from gitlab-org/gitlab@master

2024-06-11 00:24:51 +00:00

73 lines

2.0 KiB

Ruby

Raw Blame History

 # frozen_string_literal: true
 require_dependency 'gitlab/utils'
 module Gitlab
   module Utils
     module SanitizeNodeLink
       UNSAFE_PROTOCOLS  = %w[data javascript vbscript].freeze
       ATTRS_TO_SANITIZE = %w[href src data-src data-canonical-src].freeze
       # sanitize 6.0 requires only a context argument. Do not add any default
       # arguments to this method.
       def sanitize_unsafe_links(env)
         # sanitize calls this with every node, so no need to check child nodes
         remove_unsafe_links(env, sanitize_children: false)
       end
       def remove_unsafe_links(env, remove_invalid_links: true, sanitize_children: true)
         node = env[:node]
         sanitize_node(node: node, remove_invalid_links: remove_invalid_links)
         return unless sanitize_children
         # HTML entities such as <video></video> have scannable attrs in
         #   children elements, which also need to be sanitized.
         #
         node.children.each do |child_node|
           sanitize_node(node: child_node, remove_invalid_links: remove_invalid_links)
         end
       end
       # Remove all invalid scheme characters before checking against the
       # list of unsafe protocols.
       #
       # See https://www.rfc-editor.org/rfc/rfc3986#section-3.1
       #
       def safe_protocol?(scheme)
         return false unless scheme
         scheme = scheme
           .strip
           .downcase
           .gsub(/[^A-Za-z\+\.\-]+/, '')
         UNSAFE_PROTOCOLS.none?(scheme)
       end
       private
       def sanitize_node(node:, remove_invalid_links: true)
         ATTRS_TO_SANITIZE.each do |attr|
           next unless node.has_attribute?(attr)
           begin
             node[attr] = node[attr].strip
             uri = Addressable::URI.parse(node[attr])
             uri = uri.normalize
             next unless uri.scheme
             next if safe_protocol?(uri.scheme)
             node.remove_attribute(attr)
           rescue Addressable::URI::InvalidURIError
             node.remove_attribute(attr) if remove_invalid_links
           end
         end
       end
     end
   end
 end

73 lines 2.0 KiB Ruby Raw Blame History

73 lines

2.0 KiB

Ruby

Raw Blame History