repo/sceditor: src/sceditor.js comparison

comparison src/sceditor.js @ 20:cf42d9b17c25

more

author	Franklin Schmidt <fschmidt@gmail.com>
date	Mon, 08 Aug 2022 18:17:55 -0600
parents	13df5ac9b34b
children	2edd68951454

comparison

equal deleted inserted replaced

-:13df5ac9b34b
+:cf42d9b17c25
 (function () {
 	'use strict';
 	let baseUrl = document.currentScript.getAttribute('src').match(/.*\//)[0];
-	//console.log(baseUrl);
 	/**
 	 * Check if the passed argument is the
 	 * the passed type.
 	 *
 		// START_COMMAND: Ltr
 		ltr: {
 			state: function (editor, parents, firstBlock) {
-				return firstBlock && firstBlock.style.direction === 'ltr';
+				//return firstBlock && firstBlock.style.direction === 'ltr';
+				return firstBlock && firstBlock.style && firstBlock.style.direction === 'ltr';
 			},
 			exec: function (editor) {
 				var	rangeHelper = editor.getRangeHelper(),
 					node = rangeHelper.getFirstBlockParent();
 		// END_COMMAND
 		// START_COMMAND: Rtl
 		rtl: {
 			state: function (editor, parents, firstBlock) {
-				return firstBlock && firstBlock.style.direction === 'rtl';
+				//return firstBlock && firstBlock.style.direction === 'rtl';
+				return firstBlock && firstBlock.style && firstBlock.style.direction === 'rtl';
 			},
 			exec: function (editor) {
 				var	rangeHelper = editor.getRangeHelper(),
 					node = rangeHelper.getFirstBlockParent();
 	  construct = function construct(Func, args) {
 		return new (Function.prototype.bind.apply(Func, [null].concat(_toConsumableArray(args))))();
 	  };
 	}
-	var arrayForEach = unapply(Array.prototype.forEach);
-	var arrayPop = unapply(Array.prototype.pop);
-	var arrayPush = unapply(Array.prototype.push);
-	var stringToLowerCase = unapply(String.prototype.toLowerCase);
-	var stringMatch = unapply(String.prototype.match);
-	var stringReplace = unapply(String.prototype.replace);
-	var stringIndexOf = unapply(String.prototype.indexOf);
-	var stringTrim = unapply(String.prototype.trim);
-	var regExpTest = unapply(RegExp.prototype.test);
 	var typeErrorCreate = unconstruct(TypeError);
 	function unapply(func) {
 	  return function (thisArg) {
 		for (var _len = arguments.length, args = Array(_len > 1 ? _len - 1 : 0), _key = 1; _key < _len; _key++) {
 	  var l = array.length;
 	  while (l--) {
 		var element = array[l];
 		if (typeof element === 'string') {
-		  var lcElement = stringToLowerCase(element);
+		  var lcElement = element.toLowerCase();
 		  if (lcElement !== element) {
 			// Config presets (e.g. tags.js, attrs.js) are immutable.
 			if (!isFrozen(array)) {
 			  array[l] = lcElement;
 			}
 		  Comment = window.Comment,
 		  DOMParser = window.DOMParser,
 		  trustedTypes = window.trustedTypes;
-	  var ElementPrototype = Element.prototype;
+		var ElementPrototype = Element.prototype;
-	  var cloneNode = lookupGetter(ElementPrototype, 'cloneNode');
+		var cloneNode = lookupGetter(ElementPrototype, 'cloneNode');
-	  var getNextSibling = lookupGetter(ElementPrototype, 'nextSibling');
+		var getNextSibling = lookupGetter(ElementPrototype, 'nextSibling');
-	  var getChildNodes = lookupGetter(ElementPrototype, 'childNodes');
+		var getChildNodes = lookupGetter(ElementPrototype, 'childNodes');
-	  var getParentNode = lookupGetter(ElementPrototype, 'parentNode');
+		var getParentNode = lookupGetter(ElementPrototype, 'parentNode');
 	  // As per issue #47, the web-components registry is inherited by a
 	  // new document created via createHTMLDocument. As per the spec
 	  // (http://w3c.github.io/webcomponents/spec/custom/#creating-and-passing-registries)
 	  // a new empty registry is used when creating a template contents owner
 	  }
 	  var trustedTypesPolicy = _createTrustedTypesPolicy(trustedTypes, originalDocument);
 	  var emptyHTML = trustedTypesPolicy && RETURN_TRUSTED_TYPE ? trustedTypesPolicy.createHTML('') : '';
-		var implementation = document.implementation,
+		var implementation = document.implementation;
 		//var importNode = originalDocument.importNode;
 	  var documentMode = {};
 	  try {
 			namespaceURI: HTML_NAMESPACE,
 			tagName: 'template'
 		  };
 		}
-		var tagName = stringToLowerCase(element.tagName);
+		var tagName = element.tagName.toLowerCase();
-		var parentTagName = stringToLowerCase(parent.tagName);
+		var parentTagName = parent.tagName.toLowerCase();
 		if (element.namespaceURI === SVG_NAMESPACE) {
 		  // The only way to switch from HTML namespace to SVG
 		  // is via <svg>. If it happens via any other tag, then
 		  // it should be killed.
 	   * _forceRemove
 	   *
 	   * @param  {Node} node a DOM node
 	   */
 	  var _forceRemove = function _forceRemove(node) {
-		arrayPush(DOMPurify.removed, { element: node });
+		DOMPurify.removed.push({ element: node });
 		try {
 		  node.parentNode.removeChild(node);
 		} catch (_) {
 		  try {
 			node.outerHTML = emptyHTML;
 	   * @param  {String} name an Attribute name
 	   * @param  {Node} node a DOM node
 	   */
 	  var _removeAttribute = function _removeAttribute(name, node) {
 		try {
-		  arrayPush(DOMPurify.removed, {
+		  DOMPurify.removed.push({
 			attribute: node.getAttributeNode(name),
 			from: node
 		  });
 		} catch (_) {
-		  arrayPush(DOMPurify.removed, {
+		  DOMPurify.removed.push({
 			attribute: null,
 			from: node
 		  });
 		}
 		if (FORCE_BODY) {
 		  dirty = '<remove></remove>' + dirty;
 		} else {
 		  /* If FORCE_BODY isn't used, leading whitespace needs to be preserved manually */
-		  var matches = stringMatch(dirty, /^[\r\n\t ]+/);
+		  var matches = dirty.match(/^[\r\n\t ]+/);
 		  leadingWhitespace = matches && matches[0];
 		}
 		var dirtyPayload = trustedTypesPolicy ? trustedTypesPolicy.createHTML(dirty) : dirty;
 		/* Use the DOMParser API by default, fallback later if needs be */
 	  var _executeHook = function _executeHook(entryPoint, currentNode, data) {
 		if (!hooks[entryPoint]) {
 		  return;
 		}
-		arrayForEach(hooks[entryPoint], function (hook) {
+		hooks[entryPoint].forEach(function (hook) {
-		  hook.call(DOMPurify, currentNode, data, CONFIG);
+			hook.call(DOMPurify, currentNode, data, CONFIG);
 		});
 	  };
 	  /**
 	   * _sanitizeElements
 		  _forceRemove(currentNode);
 		  return true;
 		}
 		/* Check if tagname contains Unicode */
-		if (stringMatch(currentNode.nodeName, /[\u0080-\uFFFF]/)) {
+		if (currentNode.nodeName.match(/[\u0080-\uFFFF]/)) {
 		  _forceRemove(currentNode);
 		  return true;
 		}
 		/* Now let's check the element's type and name */
-		var tagName = stringToLowerCase(currentNode.nodeName);
+		var tagName = currentNode.nodeName.toLowerCase();
 		/* Execute a hook if present */
 		_executeHook('uponSanitizeElement', currentNode, {
 		  tagName: tagName,
 		  allowedTags: ALLOWED_TAGS
 		});
 		/* Detect mXSS attempts abusing namespace confusion */
-		if (!_isNode(currentNode.firstElementChild) && (!_isNode(currentNode.content) || !_isNode(currentNode.content.firstElementChild)) && regExpTest(/<[/\w]/g, currentNode.innerHTML) && regExpTest(/<[/\w]/g, currentNode.textContent)) {
+		if (!_isNode(currentNode.firstElementChild) && (!_isNode(currentNode.content) || !_isNode(currentNode.content.firstElementChild)) && /<[/\w]/g.test(currentNode.innerHTML) && /<[/\w]/g.text(currentNode.textContent)) {
 		  _forceRemove(currentNode);
 		  return true;
 		}
 		/* Remove element if anything forbids its presence */
 		  if (KEEP_CONTENT && !FORBID_CONTENTS[tagName]) {
 			var parentNode = getParentNode(currentNode);
 			var childNodes = getChildNodes(currentNode);
 			var childCount = childNodes.length;
 			for (var i = childCount - 1; i >= 0; --i) {
-			  parentNode.insertBefore(cloneNode(childNodes[i], true), getNextSibling(currentNode));
+				parentNode.insertBefore(cloneNode(childNodes[i], true), getNextSibling(currentNode));
 			}
 		  }
 		  _forceRemove(currentNode);
 		  return true;
 		if (currentNode instanceof Element && !_checkValidNamespace(currentNode)) {
 		  _forceRemove(currentNode);
 		  return true;
 		}
-		if ((tagName === 'noscript' || tagName === 'noembed') && regExpTest(/<\/no(script|embed)/i, currentNode.innerHTML)) {
+		if ((tagName === 'noscript' || tagName === 'noembed') && /<\/no(script|embed)/i.test(currentNode.innerHTML)) {
 		  _forceRemove(currentNode);
 		  return true;
 		}
 		/* Sanitize element content to be template-safe */
 		if (SAFE_FOR_TEMPLATES && currentNode.nodeType === 3) {
 		  /* Get the element's text content */
 		  content = currentNode.textContent;
-		  content = stringReplace(content, MUSTACHE_EXPR$$1, ' ');
+		  content = content.replace(MUSTACHE_EXPR$$1, ' ');
-		  content = stringReplace(content, ERB_EXPR$$1, ' ');
+		  content = content.replace(ERB_EXPR$$1, ' ');
 		  if (currentNode.textContent !== content) {
-			arrayPush(DOMPurify.removed, { element: currentNode.cloneNode() });
+			DOMPurify.removed.push({ element: currentNode.cloneNode() });
 			currentNode.textContent = content;
 		  }
 		}
 		/* Execute a hook if present */
 		/* Allow valid data-* attributes: At least one character after "-"
 			(https://html.spec.whatwg.org/multipage/dom.html#embedding-custom-non-visible-data-with-the-data-*-attributes)
 			XML-compatible (https://html.spec.whatwg.org/multipage/infrastructure.html#xml-compatible and http://www.w3.org/TR/xml/#d0e804)
 			We don't need to check the value; it's always URI safe. */
-		if (ALLOW_DATA_ATTR && regExpTest(DATA_ATTR$$1, lcName)) ; else if (ALLOW_ARIA_ATTR && regExpTest(ARIA_ATTR$$1, lcName)) ; else if (!ALLOWED_ATTR[lcName] || FORBID_ATTR[lcName]) {
+		if (ALLOW_DATA_ATTR && DATA_ATTR$$1.test(lcName)) ; else if (ALLOW_ARIA_ATTR && ARIA_ATTR$$1.test(lcName)) ; else if (!ALLOWED_ATTR[lcName] || FORBID_ATTR[lcName]) {
 		  return false;
 		  /* Check value is safe. First, is attr inert? If so, is safe */
-		} else if (URI_SAFE_ATTRIBUTES[lcName]) ; else if (regExpTest(IS_ALLOWED_URI$$1, stringReplace(value, ATTR_WHITESPACE$$1, ''))) ; else if ((lcName === 'src' || lcName === 'xlink:href' || lcName === 'href') && lcTag !== 'script' && stringIndexOf(value, 'data:') === 0 && DATA_URI_TAGS[lcTag]) ; else if (ALLOW_UNKNOWN_PROTOCOLS && !regExpTest(IS_SCRIPT_OR_DATA$$1, stringReplace(value, ATTR_WHITESPACE$$1, ''))) ; else if (!value) ; else {
+		} else if (URI_SAFE_ATTRIBUTES[lcName]) ; else if (IS_ALLOWED_URI$$1.test(value.replace(ATTR_WHITESPACE$$1, ''))) ; else if ((lcName === 'src' || lcName === 'xlink:href' || lcName === 'href') && lcTag !== 'script' && value.indexOf('data:') === 0 && DATA_URI_TAGS[lcTag]) ; else if (ALLOW_UNKNOWN_PROTOCOLS && !IS_SCRIPT_OR_DATA$$1.test(value.replace(ATTR_WHITESPACE$$1, ''))) ; else if (!value) ; else {
 		  return false;
 		}
 		return true;
 	  };
 		  attr = attributes[l];
 		  var _attr = attr,
 			  name = _attr.name,
 			  namespaceURI = _attr.namespaceURI;
-		  value = stringTrim(attr.value);
+		  value = attr.value.trim();
-		  lcName = stringToLowerCase(name);
+		  lcName = name.toLowerCase(name);
 		  /* Execute a hook if present */
 		  hookEvent.attrName = lcName;
 		  hookEvent.attrValue = value;
 		  hookEvent.keepAttr = true;
 		  if (!hookEvent.keepAttr) {
 			continue;
 		  }
 		  /* Work around a security issue in jQuery 3.0 */
-		  if (regExpTest(/\/>/i, value)) {
+		  if (/\/>/i.test(value)) {
 			_removeAttribute(name, currentNode);
 			continue;
 		  }
 		  /* Sanitize attribute content to be template-safe */
 		  if (SAFE_FOR_TEMPLATES) {
-			value = stringReplace(value, MUSTACHE_EXPR$$1, ' ');
+			value = value.replace(MUSTACHE_EXPR$$1, ' ');
-			value = stringReplace(value, ERB_EXPR$$1, ' ');
+			value = value.replace(ERB_EXPR$$1, ' ');
 		  }
 		  /* Is `value` valid for this attribute? */
 		  var lcTag = currentNode.nodeName.toLowerCase();
 		  if (!_isValidAttribute(lcTag, lcName, value)) {
 			} else {
 			  /* Fallback to setAttribute() for browser-unrecognized namespaces e.g. "x-schema". */
 			  currentNode.setAttribute(name, value);
 			}
-			arrayPop(DOMPurify.removed);
+			DOMPurify.removed.pop();
 		  } catch (_) {}
 		}
 		/* Execute a hook if present */
 		_executeHook('afterSanitizeAttributes', currentNode, null);
 		var serializedHTML = WHOLE_DOCUMENT ? body.outerHTML : body.innerHTML;
 		/* Sanitize final string template-safe */
 		if (SAFE_FOR_TEMPLATES) {
-		  serializedHTML = stringReplace(serializedHTML, MUSTACHE_EXPR$$1, ' ');
+		  serializedHTML = serializedHTML.replace(MUSTACHE_EXPR$$1, ' ');
-		  serializedHTML = stringReplace(serializedHTML, ERB_EXPR$$1, ' ');
+		  serializedHTML = serializedHTML.replace(ERB_EXPR$$1, ' ');
 		}
 		return trustedTypesPolicy && RETURN_TRUSTED_TYPE ? trustedTypesPolicy.createHTML(serializedHTML) : serializedHTML;
 	  };
 		/* Initialize shared config vars if necessary. */
 		if (!CONFIG) {
 		  _parseConfig({});
 		}
-		var lcTag = stringToLowerCase(tag);
+		var lcTag = tag.toLowerCase();
-		var lcName = stringToLowerCase(attr);
+		var lcName = attr.toLowerCase();
 		return _isValidAttribute(lcTag, lcName, value);
 	  };
 	  /**
 	   * AddHook
 		if (typeof hookFunction !== 'function') {
 		  return;
 		}
 		hooks[entryPoint] = hooks[entryPoint] || [];
-		arrayPush(hooks[entryPoint], hookFunction);
+		hooks[entryPoint].push(hookFunction);
 	  };
 	  /**
 	   * RemoveHook
 	   * Public method to remove a DOMPurify hook at a given entryPoint
 	   *
 	   * @param {String} entryPoint entry point for the hook to remove
 	   */
 	  DOMPurify.removeHook = function (entryPoint) {
 		if (hooks[entryPoint]) {
-		  arrayPop(hooks[entryPoint]);
+		  hooks[entryPoint].pop();
 		}
 	  };
 	  /**
 	   * RemoveHooks
 			// convert the event into a custom event to send
 			var name = (e.target === sourceEditor ? 'scesrc' : 'scewys') + e.type;
 			if (eventHandlers[name]) {
 				eventHandlers[name].forEach(function (fn) {
-					fn.call(base, e);
+					fn(base, e);  // removed call, untested
 				});
 			}
 		};
 		/**