HTMLPurifier_URI::validate() - Code Metrics - Inspection of "#1887 common 폴더의 .html 파일에 대한 접근 제한을 추가로 적용" - xpressengine/xe-core - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — develop ( d80144...902697 )

by gyeong-won

created 2016-06-15 04:12 UTC

HTMLPurifier_URI::validate() F

↳ Parent: HTMLPurifier_URI

Complexity

Conditions	20
Paths	1512

Size

Total Lines	105
Code Lines	46

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	20
eloc	46
nc	1512
nop	2
dl	0
loc	105
rs	2
c	0
b	0
f	0

How to fix Long Method Complexity

<?php

/**
 * HTML Purifier's internal representation of a URI.
 * @note
 *      Internal data-structures are completely escaped. If the data needs
 *      to be used in a non-URI context (which is very unlikely), be sure
 *      to decode it first. The URI may not necessarily be well-formed until
 *      validate() is called.
 */
class HTMLPurifier_URI
{

    public $scheme, $userinfo, $host, $port, $path, $query, $fragment;

    /**
     * @note Automatically normalizes scheme and port
     */
    public function __construct($scheme, $userinfo, $host, $port, $path, $query, $fragment) {
        $this->scheme = is_null($scheme) || ctype_lower($scheme) ? $scheme : strtolower($scheme);
        $this->userinfo = $userinfo;
        $this->host = $host;
        $this->port = is_null($port) ? $port : (int) $port;
        $this->path = $path;
        $this->query = $query;
        $this->fragment = $fragment;
    }

    /**
     * Retrieves a scheme object corresponding to the URI's scheme/default
     * @param $config Instance of HTMLPurifier_Config
     * @param $context Instance of HTMLPurifier_Context
     * @return Scheme object appropriate for validating this URI
     */
    public function getSchemeObj($config, $context) {
        $registry = HTMLPurifier_URISchemeRegistry::instance();
        if ($this->scheme !== null) {
            $scheme_obj = $registry->getScheme($this->scheme, $config, $context);
            if (!$scheme_obj) return false; // invalid scheme, clean it out
class Author {
    private $name;

    public function __construct($name) {
        $this->name = $name;
    }

    public function getName() {
        return $this->name;
    }
}

abstract class Post {
    public function getAuthor() {
        return 'Johannes';
    }
}

class BlogPost extends Post {
    public function getAuthor() {
        return new Author('Johannes');
    }
}

class ForumPost extends Post { /* ... */ }

function my_function(Post $post) {
    echo strtoupper($post->getAuthor());
}
        } else {
            // no scheme: retrieve the default one
            $def = $config->getDefinition('URI');
            $scheme_obj = $def->getDefaultScheme($config, $context);
            if (!$scheme_obj) {
                // something funky happened to the default scheme object
                trigger_error(
                    'Default scheme object "' . $def->defaultScheme . '" was not readable',
                    E_USER_WARNING
                );
                return false;
class Author {
    private $name;

    public function __construct($name) {
        $this->name = $name;
    }

    public function getName() {
        return $this->name;
    }
}

abstract class Post {
    public function getAuthor() {
        return 'Johannes';
    }
}

class BlogPost extends Post {
    public function getAuthor() {
        return new Author('Johannes');
    }
}

class ForumPost extends Post { /* ... */ }

function my_function(Post $post) {
    echo strtoupper($post->getAuthor());
}
            }
        }
        return $scheme_obj;
    }

    /**
     * Generic validation method applicable for all schemes. May modify
     * this URI in order to get it into a compliant form.
     * @param $config Instance of HTMLPurifier_Config
     * @param $context Instance of HTMLPurifier_Context
     * @return True if validation/filtering succeeds, false if failure
     */
    public function validate($config, $context) {

        // ABNF definitions from RFC 3986
        $chars_sub_delims = '!$&\'()*+,;=';
        $chars_gen_delims = ':/?#[]@';
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
        $chars_pchar = $chars_sub_delims . ':@';

        // validate host
        if (!is_null($this->host)) {
            $host_def = new HTMLPurifier_AttrDef_URI_Host();
            $this->host = $host_def->validate($this->host, $config, $context);
            if ($this->host === false) $this->host = null;
        }

        // validate scheme
        // NOTE: It's not appropriate to check whether or not this
        // scheme is in our registry, since a URIFilter may convert a
        // URI that we don't allow into one we do.  So instead, we just
        // check if the scheme can be dropped because there is no host
        // and it is our default scheme.
        if (!is_null($this->scheme) && is_null($this->host) || $this->host === '') {
            // support for relative paths is pretty abysmal when the
            // scheme is present, so axe it when possible
            $def = $config->getDefinition('URI');
            if ($def->defaultScheme === $this->scheme) {
                $this->scheme = null;
            }
        }

        // validate username
        if (!is_null($this->userinfo)) {
            $encoder = new HTMLPurifier_PercentEncoder($chars_sub_delims . ':');
function acceptsInteger($int) { }

$x = '123'; // string "123"

// Instead of
acceptsInteger($x);

// we recommend to use
acceptsInteger((integer) $x);
            $this->userinfo = $encoder->encode($this->userinfo);
        }

        // validate port
        if (!is_null($this->port)) {
            if ($this->port < 1 || $this->port > 65535) $this->port = null;
        }

        // validate path
        $path_parts = array();
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
        $segments_encoder = new HTMLPurifier_PercentEncoder($chars_pchar . '/');
function acceptsInteger($int) { }

$x = '123'; // string "123"

// Instead of
acceptsInteger($x);

// we recommend to use
acceptsInteger((integer) $x);
        if (!is_null($this->host)) { // this catches $this->host === ''
            // path-abempty (hier and relative)
            // http://www.example.com/my/path
            // //www.example.com/my/path (looks odd, but works, and
            //                            recognized by most browsers)
            // (this set is valid or invalid on a scheme by scheme
            // basis, so we'll deal with it later)
            // file:///my/path
            // ///my/path
            $this->path = $segments_encoder->encode($this->path);
        } elseif ($this->path !== '') {
            if ($this->path[0] === '/') {
                // path-absolute (hier and relative)
                // http:/my/path
                // /my/path
                if (strlen($this->path) >= 2 && $this->path[1] === '/') {
                    // This could happen if both the host gets stripped
                    // out
                    // http://my/path
                    // //my/path
                    $this->path = '';
                } else {
                    $this->path = $segments_encoder->encode($this->path);
                }
            } elseif (!is_null($this->scheme)) {
                // path-rootless (hier)
                // http:my/path
                // Short circuit evaluation means we don't need to check nz
                $this->path = $segments_encoder->encode($this->path);
            } else {
                // path-noscheme (relative)
                // my/path
                // (once again, not checking nz)
                $segment_nc_encoder = new HTMLPurifier_PercentEncoder($chars_sub_delims . '@');
function acceptsInteger($int) { }

$x = '123'; // string "123"

// Instead of
acceptsInteger($x);

// we recommend to use
acceptsInteger((integer) $x);
                $c = strpos($this->path, '/');
                if ($c !== false) {
                    $this->path =
                        $segment_nc_encoder->encode(substr($this->path, 0, $c)) .
                        $segments_encoder->encode(substr($this->path, $c));
                } else {
                    $this->path = $segment_nc_encoder->encode($this->path);
                }
            }
        } else {
            // path-empty (hier and relative)
            $this->path = ''; // just to be safe
        }

        // qf = query and fragment
        $qf_encoder = new HTMLPurifier_PercentEncoder($chars_pchar . '/?');
function acceptsInteger($int) { }

$x = '123'; // string "123"

// Instead of
acceptsInteger($x);

// we recommend to use
acceptsInteger((integer) $x);

        if (!is_null($this->query)) {
            $this->query = $qf_encoder->encode($this->query);
        }

        if (!is_null($this->fragment)) {
            $this->fragment = $qf_encoder->encode($this->fragment);
        }

        return true;

    }

    /**
     * Convert URI back to string
     * @return String URI appropriate for output
     */
    public function toString() {
        // reconstruct authority
        $authority = null;
        // there is a rendering difference between a null authority
        // (http:foo-bar) and an empty string authority
        // (http:///foo-bar).
        if (!is_null($this->host)) {
            $authority = '';
            if(!is_null($this->userinfo)) $authority .= $this->userinfo . '@';
            $authority .= $this->host;
            if(!is_null($this->port))     $authority .= ':' . $this->port;
        }

        // Reconstruct the result
        // One might wonder about parsing quirks from browsers after
        // this reconstruction.  Unfortunately, parsing behavior depends
        // on what *scheme* was employed (file:///foo is handled *very*
        // differently than http:///foo), so unfortunately we have to
        // defer to the schemes to do the right thing.
        $result = '';
        if (!is_null($this->scheme))    $result .= $this->scheme . ':';
        if (!is_null($authority))       $result .=  '//' . $authority;
        $result .= $this->path;
        if (!is_null($this->query))     $result .= '?' . $this->query;
        if (!is_null($this->fragment))  $result .= '#' . $this->fragment;

        return $result;
    }

    /**
     * Returns true if this URL might be considered a 'local' URL given
     * the current context.  This is true when the host is null, or
     * when it matches the host supplied to the configuration.
     *
     * Note that this does not do any scheme checking, so it is mostly
     * only appropriate for metadata that doesn't care about protocol
     * security.  isBenign is probably what you actually want.
     */
    public function isLocal($config, $context) {

        if ($this->host === null) return true;
        $uri_def = $config->getDefinition('URI');
        if ($uri_def->host === $this->host) return true;
        return false;
    }

    /**
     * Returns true if this URL should be considered a 'benign' URL,
     * that is:
     *
     *      - It is a local URL (isLocal), and
     *      - It has a equal or better level of security
     */
    public function isBenign($config, $context) {
        if (!$this->isLocal($config, $context)) return false;

        $scheme_obj = $this->getSchemeObj($config, $context);
        if (!$scheme_obj) return false; // conservative approach

        $current_scheme_obj = $config->getDefinition('URI')->getDefaultScheme($config, $context);
        if ($current_scheme_obj->secure) {
            if (!$scheme_obj->secure) {
                return false;
            }
        }
        return true;
    }

}

// vim: et sw=4 sts=4


1			<?php
2
3			/**
4			* HTML Purifier's internal representation of a URI.
5			* @note
6			* Internal data-structures are completely escaped. If the data needs
7			* to be used in a non-URI context (which is very unlikely), be sure
8			* to decode it first. The URI may not necessarily be well-formed until
9			* validate() is called.
10			*/
11			class HTMLPurifier_URI
12			{
13
14			public $scheme, $userinfo, $host, $port, $path, $query, $fragment;
15
16			/**
17			* @note Automatically normalizes scheme and port
18			*/
19			public function __construct($scheme, $userinfo, $host, $port, $path, $query, $fragment) {
20			$this->scheme = is_null($scheme) \|\| ctype_lower($scheme) ? $scheme : strtolower($scheme);
21			$this->userinfo = $userinfo;
22			$this->host = $host;
23			$this->port = is_null($port) ? $port : (int) $port;
24			$this->path = $path;
25			$this->query = $query;
26			$this->fragment = $fragment;
27			}
28
29			/**
30			* Retrieves a scheme object corresponding to the URI's scheme/default
31			* @param $config Instance of HTMLPurifier_Config
32			* @param $context Instance of HTMLPurifier_Context
33			* @return Scheme object appropriate for validating this URI
34			*/
35			public function getSchemeObj($config, $context) {
36			$registry = HTMLPurifier_URISchemeRegistry::instance();
37			if ($this->scheme !== null) {
38			$scheme_obj = $registry->getScheme($this->scheme, $config, $context);
39			if (!$scheme_obj) return false; // invalid scheme, clean it out
			0 ignored issues – show Bug Best Practice introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report The return type of `return false;` (`false`) is incompatible with the return type documented by `HTMLPurifier_URI::getSchemeObj` of type `Scheme`. If you return a value from a function or method, it should be a sub-type of the type that is given by the parent type f.e. an interface, or abstract method. This is more formally defined by the Lizkov substitution principle, and guarantees that classes that depend on the parent type can use any instance of a child type interchangably. This principle also belongs to the SOLID principles for object oriented design. Let’s take a look at an example: class Author { private $name; public function __construct($name) { $this->name = $name; } public function getName() { return $this->name; } } abstract class Post { public function getAuthor() { return 'Johannes'; } } class BlogPost extends Post { public function getAuthor() { return new Author('Johannes'); } } class ForumPost extends Post { /* ... */ } function my_function(Post $post) { echo strtoupper($post->getAuthor()); } Our function `my_function` expects a `Post` object, and outputs the author of the post. The base class `Post` returns a simple string and outputting a simple string will work just fine. However, the child class `BlogPost` which is a sub-type of `Post` instead decided to return an `object`, and is therefore violating the SOLID principles. If a `BlogPost` were passed to `my_function`, PHP would not complain, but ultimately fail when executing the `strtoupper` call in its body. Loading history...
40			} else {
41			// no scheme: retrieve the default one
42			$def = $config->getDefinition('URI');
43			$scheme_obj = $def->getDefaultScheme($config, $context);
44			if (!$scheme_obj) {
45			// something funky happened to the default scheme object
46			trigger_error(
47			'Default scheme object "' . $def->defaultScheme . '" was not readable',
48			E_USER_WARNING
49			);
50			return false;
			0 ignored issues – show Bug Best Practice introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report The return type of `return false;` (`false`) is incompatible with the return type documented by `HTMLPurifier_URI::getSchemeObj` of type `Scheme`. If you return a value from a function or method, it should be a sub-type of the type that is given by the parent type f.e. an interface, or abstract method. This is more formally defined by the Lizkov substitution principle, and guarantees that classes that depend on the parent type can use any instance of a child type interchangably. This principle also belongs to the SOLID principles for object oriented design. Let’s take a look at an example: class Author { private $name; public function __construct($name) { $this->name = $name; } public function getName() { return $this->name; } } abstract class Post { public function getAuthor() { return 'Johannes'; } } class BlogPost extends Post { public function getAuthor() { return new Author('Johannes'); } } class ForumPost extends Post { /* ... */ } function my_function(Post $post) { echo strtoupper($post->getAuthor()); } Our function `my_function` expects a `Post` object, and outputs the author of the post. The base class `Post` returns a simple string and outputting a simple string will work just fine. However, the child class `BlogPost` which is a sub-type of `Post` instead decided to return an `object`, and is therefore violating the SOLID principles. If a `BlogPost` were passed to `my_function`, PHP would not complain, but ultimately fail when executing the `strtoupper` call in its body. Loading history...
51			}
52			}
53			return $scheme_obj;
54			}
55
56			/**
57			* Generic validation method applicable for all schemes. May modify
58			* this URI in order to get it into a compliant form.
59			* @param $config Instance of HTMLPurifier_Config
60			* @param $context Instance of HTMLPurifier_Context
61			* @return True if validation/filtering succeeds, false if failure
62			*/
63			public function validate($config, $context) {
64
65			// ABNF definitions from RFC 3986
66			$chars_sub_delims = '!$&\'()*+,;=';
67			$chars_gen_delims = ':/?#[]@';
			0 ignored issues – show Unused Code introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report `$chars_gen_delims` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
68			$chars_pchar = $chars_sub_delims . ':@';
69
70			// validate host
71			if (!is_null($this->host)) {
72			$host_def = new HTMLPurifier_AttrDef_URI_Host();
73			$this->host = $host_def->validate($this->host, $config, $context);
74			if ($this->host === false) $this->host = null;
75			}
76
77			// validate scheme
78			// NOTE: It's not appropriate to check whether or not this
79			// scheme is in our registry, since a URIFilter may convert a
80			// URI that we don't allow into one we do. So instead, we just
81			// check if the scheme can be dropped because there is no host
82			// and it is our default scheme.
83			if (!is_null($this->scheme) && is_null($this->host) \|\| $this->host === '') {
84			// support for relative paths is pretty abysmal when the
85			// scheme is present, so axe it when possible
86			$def = $config->getDefinition('URI');
87			if ($def->defaultScheme === $this->scheme) {
88			$this->scheme = null;
89			}
90			}
91
92			// validate username
93			if (!is_null($this->userinfo)) {
94			$encoder = new HTMLPurifier_PercentEncoder($chars_sub_delims . ':');
			0 ignored issues – show Documentation introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report `$chars_sub_delims . ':'` is of type `string`, but the function expects a `boolean`. It seems like the type of the argument is not accepted by the function/method which you are calling. In some cases, in particular if PHP’s automatic type-juggling kicks in this might be fine. In other cases, however this might be a bug. We suggest to add an explicit type cast like in the following example: function acceptsInteger($int) { } $x = '123'; // string "123" // Instead of acceptsInteger($x); // we recommend to use acceptsInteger((integer) $x); Loading history...
95			$this->userinfo = $encoder->encode($this->userinfo);
96			}
97
98			// validate port
99			if (!is_null($this->port)) {
100			if ($this->port < 1 \|\| $this->port > 65535) $this->port = null;
101			}
102
103			// validate path
104			$path_parts = array();
			0 ignored issues – show Unused Code introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report `$path_parts` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
105			$segments_encoder = new HTMLPurifier_PercentEncoder($chars_pchar . '/');
			0 ignored issues – show Documentation introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report `$chars_pchar . '/'` is of type `string`, but the function expects a `boolean`. It seems like the type of the argument is not accepted by the function/method which you are calling. In some cases, in particular if PHP’s automatic type-juggling kicks in this might be fine. In other cases, however this might be a bug. We suggest to add an explicit type cast like in the following example: function acceptsInteger($int) { } $x = '123'; // string "123" // Instead of acceptsInteger($x); // we recommend to use acceptsInteger((integer) $x); Loading history...
106			if (!is_null($this->host)) { // this catches $this->host === ''
107			// path-abempty (hier and relative)
108			// http://www.example.com/my/path
109			// //www.example.com/my/path (looks odd, but works, and
110			// recognized by most browsers)
111			// (this set is valid or invalid on a scheme by scheme
112			// basis, so we'll deal with it later)
113			// file:///my/path
114			// ///my/path
115			$this->path = $segments_encoder->encode($this->path);
116			} elseif ($this->path !== '') {
117			if ($this->path[0] === '/') {
118			// path-absolute (hier and relative)
119			// http:/my/path
120			// /my/path
121			if (strlen($this->path) >= 2 && $this->path[1] === '/') {
122			// This could happen if both the host gets stripped
123			// out
124			// http://my/path
125			// //my/path
126			$this->path = '';
127			} else {
128			$this->path = $segments_encoder->encode($this->path);
129			}
130			} elseif (!is_null($this->scheme)) {
131			// path-rootless (hier)
132			// http:my/path
133			// Short circuit evaluation means we don't need to check nz
134			$this->path = $segments_encoder->encode($this->path);
135			} else {
136			// path-noscheme (relative)
137			// my/path
138			// (once again, not checking nz)
139			$segment_nc_encoder = new HTMLPurifier_PercentEncoder($chars_sub_delims . '@');
			0 ignored issues – show Documentation introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report `$chars_sub_delims . '@'` is of type `string`, but the function expects a `boolean`. It seems like the type of the argument is not accepted by the function/method which you are calling. In some cases, in particular if PHP’s automatic type-juggling kicks in this might be fine. In other cases, however this might be a bug. We suggest to add an explicit type cast like in the following example: function acceptsInteger($int) { } $x = '123'; // string "123" // Instead of acceptsInteger($x); // we recommend to use acceptsInteger((integer) $x); Loading history...
140			$c = strpos($this->path, '/');
141			if ($c !== false) {
142			$this->path =
143			$segment_nc_encoder->encode(substr($this->path, 0, $c)) .
144			$segments_encoder->encode(substr($this->path, $c));
145			} else {
146			$this->path = $segment_nc_encoder->encode($this->path);
147			}
148			}
149			} else {
150			// path-empty (hier and relative)
151			$this->path = ''; // just to be safe
152			}
153
154			// qf = query and fragment
155			$qf_encoder = new HTMLPurifier_PercentEncoder($chars_pchar . '/?');
			0 ignored issues – show Documentation introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report `$chars_pchar . '/?'` is of type `string`, but the function expects a `boolean`. It seems like the type of the argument is not accepted by the function/method which you are calling. In some cases, in particular if PHP’s automatic type-juggling kicks in this might be fine. In other cases, however this might be a bug. We suggest to add an explicit type cast like in the following example: function acceptsInteger($int) { } $x = '123'; // string "123" // Instead of acceptsInteger($x); // we recommend to use acceptsInteger((integer) $x); Loading history...
156
157			if (!is_null($this->query)) {
158			$this->query = $qf_encoder->encode($this->query);
159			}
160
161			if (!is_null($this->fragment)) {
162			$this->fragment = $qf_encoder->encode($this->fragment);
163			}
164
165			return true;
166
167			}
168
169			/**
170			* Convert URI back to string
171			* @return String URI appropriate for output
172			*/
173			public function toString() {
174			// reconstruct authority
175			$authority = null;
176			// there is a rendering difference between a null authority
177			// (http:foo-bar) and an empty string authority
178			// (http:///foo-bar).
179			if (!is_null($this->host)) {
180			$authority = '';
181			if(!is_null($this->userinfo)) $authority .= $this->userinfo . '@';
182			$authority .= $this->host;
183			if(!is_null($this->port)) $authority .= ':' . $this->port;
184			}
185
186			// Reconstruct the result
187			// One might wonder about parsing quirks from browsers after
188			// this reconstruction. Unfortunately, parsing behavior depends
189			// on what scheme was employed (file:///foo is handled very
190			// differently than http:///foo), so unfortunately we have to
191			// defer to the schemes to do the right thing.
192			$result = '';
193			if (!is_null($this->scheme)) $result .= $this->scheme . ':';
194			if (!is_null($authority)) $result .= '//' . $authority;
195			$result .= $this->path;
196			if (!is_null($this->query)) $result .= '?' . $this->query;
197			if (!is_null($this->fragment)) $result .= '#' . $this->fragment;
198
199			return $result;
200			}
201
202			/**
203			* Returns true if this URL might be considered a 'local' URL given
204			* the current context. This is true when the host is null, or
205			* when it matches the host supplied to the configuration.
206			*
207			* Note that this does not do any scheme checking, so it is mostly
208			* only appropriate for metadata that doesn't care about protocol
209			* security. isBenign is probably what you actually want.
210			*/
211			public function isLocal($config, $context) {
			0 ignored issues – show Unused Code introduced 2015-11-22 14:33 UTC by Report Bug Copy Issue Report The parameter `$context` is not used and could be removed. This check looks from parameters that have been defined for a function or method, but which are not used in the method body. Loading history...
212			if ($this->host === null) return true;
213			$uri_def = $config->getDefinition('URI');
214			if ($uri_def->host === $this->host) return true;
215			return false;
216			}
217
218			/**
219			* Returns true if this URL should be considered a 'benign' URL,
220			* that is:
221			*
222			* - It is a local URL (isLocal), and
223			* - It has a equal or better level of security
224			*/
225			public function isBenign($config, $context) {
226			if (!$this->isLocal($config, $context)) return false;
227
228			$scheme_obj = $this->getSchemeObj($config, $context);
229			if (!$scheme_obj) return false; // conservative approach
230
231			$current_scheme_obj = $config->getDefinition('URI')->getDefaultScheme($config, $context);
232			if ($current_scheme_obj->secure) {
233			if (!$scheme_obj->secure) {
234			return false;
235			}
236			}
237			return true;
238			}
239
240			}
241
242			// vim: et sw=4 sts=4
243

xpressengine / xe-core

GitHub Access Token became invalid

Push — develop ( d80144...902697 )

HTMLPurifier_URI::validate() F

Complexity

Size

Duplication

Importance

How to fix Long Method Complexity

Long Method

Duplication Side-by-Side

Filter issues like