[escape] html escaping shortcut

7802575d · Igor Wiedler · 29242300 · 7802575d · 7802575d
Commit 7802575d authored Apr 03, 2011 by Igor Wiedler
Hide whitespace changes
Inline Side-by-side

Showing with 32 additions and 0 deletions

src/Silex/Application.php src/Silex/Application.php +11 -0

tests/Silex/Tests/ApplicationTest.php tests/Silex/Tests/ApplicationTest.php +21 -0

No files found.
--- a/src/Silex/Application.php
+++ b/src/Silex/Application.php
@@ -250,6 +250,17 @@ class Application extends \Pimple implements HttpKernelInterface, EventSubscribe
        return new RedirectResponse($url, $status);
    }
+    /**
+     * Escapes a text for HTML.
+     *
+     * @param string $text The input text to be escaped
+     * @return string Escaped text
+     */
+    public function escape($text)
+    {
+        return htmlspecialchars($text, ENT_COMPAT, 'UTF-8');
+    }
    /**
     * Handles the request and deliver the response.
     *

--- a/tests/Silex/Tests/ApplicationTest.php
+++ b/tests/Silex/Tests/ApplicationTest.php
@@ -84,4 +84,25 @@ class ApplicationTest extends \PHPUnit_Framework_TestCase
        $app->flush();
        $this->assertEquals(2, count($routes->all()));
    }
+    /**
+    * @dataProvider escapeProvider
+    */
+    public function testEscape($expected, $text)
+    {
+        $app = new Application();
+        $this->assertEquals($expected, $app->escape($text));
+    }
+    public function escapeProvider()
+    {
+        return array(
+            array('&lt;', '<'),
+            array('&gt;', '>'),
+            array('&quot;', '"'),
+            array("'", "'"),
+            array('abc', 'abc'),
+        );
+    }
 }