Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Sanitize invalid JSON script #893

Merged
merged 14 commits into from
Jan 24, 2018
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
221 changes: 0 additions & 221 deletions bin/amphtml-fix.diff

This file was deleted.

15 changes: 12 additions & 3 deletions bin/amphtml-update.py
Original file line number Diff line number Diff line change
Expand Up @@ -99,7 +99,7 @@ def GenValidatorProtoascii(out_dir):


def GeneratePHP(out_dir):
"""Calls validator_gen_md to generate validator-generated.md.
"""Generates PHP for WordPress AMP plugin to consume.

Args:
out_dir: directory name of the output directory. Must not have slashes,
Expand Down Expand Up @@ -354,7 +354,6 @@ def ParseRules(out_dir):
# are checked by CheckPrereqs.
from google.protobuf import text_format
from amp_wp import validator_pb2
import validator_gen_md

allowed_tags = {}
attr_lists = {}
Expand Down Expand Up @@ -417,7 +416,14 @@ def ParseRules(out_dir):
else:
tag_list = allowed_tags[UnicodeEscape(tag_spec.tag_name)]
# AddTag(allowed_tags, tag_spec, attr_lists)
tag_list.append(GetTagSpec(tag_spec, attr_lists))

gotten_tag_spec = GetTagSpec(tag_spec, attr_lists)

# Temporarily skip extension SCRIPT elemeents which appear in the HEAD.
if 'SCRIPT' == tag_spec.tag_name and gotten_tag_spec['tag_spec'].get( '_is_extension_spec', False ):
continue

tag_list.append(gotten_tag_spec)
allowed_tags[UnicodeEscape(tag_spec.tag_name)] = tag_list

logging.info('... done')
Expand Down Expand Up @@ -479,6 +485,9 @@ def GetTagRules(tag_spec):
html_format_list.append('amp4ads')
tag_rules['html_format'] = {'html_format': html_format_list}

if tag_spec.HasField('extension_spec'):
tag_rules['_is_extension_spec'] = True;

if tag_spec.HasField('mandatory'):
tag_rules['mandatory'] = tag_spec.mandatory

Expand Down
9 changes: 3 additions & 6 deletions bin/amphtml-update.sh
Original file line number Diff line number Diff line change
Expand Up @@ -27,18 +27,15 @@ if [[ ! -e $VENDOR_PATH/amphtml ]]; then
git clone https://github.com/ampproject/amphtml amphtml
else
cd $VENDOR_PATH/amphtml/validator
git pull
if [ 'master' == $( git rev-parse --abbrev-ref HEAD ) ]; then
git pull origin master
fi
fi

# Copy script to location and go there.
cp $BIN_PATH/amphtml-update.py $VENDOR_PATH/amphtml/validator
cd $VENDOR_PATH/amphtml/validator

# Temporary fix until https://github.com/ampproject/amphtml/issues/12371 is addressed.
if [ ! -f $VENDOR_PATH/amphtml/validator/validator_gen_md.py ]; then
git apply $BIN_PATH/amphtml-fix.diff
fi

# Run script.
python amphtml-update.py
mv amp_wp/class-amp-allowed-tags-generated.php ../../../includes/sanitizers/
Expand Down
5 changes: 3 additions & 2 deletions bin/create-embed-test-post.php
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,7 @@
* @return array Data entries.
*/
function amp_get_test_data_entries() {
list( $img_src ) = wp_get_attachment_image_src( amp_get_media_items_ids( 'image', 1 ) );
return array(
array(
'heading' => 'Media Gallery',
Expand All @@ -28,7 +29,7 @@ function amp_get_test_data_entries() {
),
array(
'heading' => 'Media Video',
'content' => '[video src=https://videos.files.wordpress.com/DK5mLrbr/video-ca6dc0ab4a_hd.mp4]',
'content' => sprintf( '[video poster="%s" src=https://videos.files.wordpress.com/DK5mLrbr/video-ca6dc0ab4a_hd.mp4]', $img_src ),
),
array(
'heading' => 'Media Audio',
Expand Down Expand Up @@ -295,7 +296,7 @@ function amp_create_embed_test_post( $data_entries ) {
if ( defined( 'WP_CLI' ) ) {
try {
$post_id = amp_create_embed_test_post( amp_get_test_data_entries() );
WP_CLI::success( sprintf( 'Please take a look at: %s', amp_get_permalink( $post_id ) ) );
WP_CLI::success( sprintf( 'Please take a look at: %s', amp_get_permalink( $post_id ) . '#development=1' ) );
} catch ( Exception $e ) {
WP_CLI::error( $e->getMessage() );
}
Expand Down
Loading