Out: Fix some special characters not being escaped

SMillerDev · SMillerDev · commit 936fb2b42c9c · 2017-08-10T10:39:17.000+02:00
diff --git a/src/PHPDraft/Model/HTTPRequest.php b/src/PHPDraft/Model/HTTPRequest.php
@@ -83,7 +83,7 @@ public function parse($object)
                     $this->parse_structure($value);
                     continue;
                 } elseif ($value->element === 'copy'){
-                    $this->description = MarkdownExtra::defaultTransform($value->content);
+                    $this->description = MarkdownExtra::defaultTransform(htmlentities($value->content));
                 }elseif ($value->element === 'asset') {
                     if (in_array('messageBody', $value->meta->classes)) {
                         $this->body[]                  = (isset($value->content)) ? $value->content : null;
diff --git a/src/PHPDraft/Model/HTTPResponse.php b/src/PHPDraft/Model/HTTPResponse.php
@@ -112,7 +112,7 @@ protected function parse_content($object)
                 $this->parse_structure($value->content);
                 continue;
             }else if ($value->element === 'copy'){
-                $this->description = MarkdownExtra::defaultTransform($value->content);
+                $this->description = MarkdownExtra::defaultTransform(htmlentities($value->content));
                 continue;
             }
 
diff --git a/src/PHPDraft/Model/HierarchyElement.php b/src/PHPDraft/Model/HierarchyElement.php
@@ -66,7 +66,7 @@ public function parse($object)
         {
             if ($item->element === 'copy')
             {
-                $this->description = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform($item->content), 2);
+                $this->description = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform(htmlentities($item->content)), 2);
                 unset($object->content[$key]);
                 continue;
             }
diff --git a/src/PHPDraft/Out/HTML/default.phtml b/src/PHPDraft/Out/HTML/default.phtml
@@ -216,7 +216,9 @@ use Enjoy\HttpStatusCode\Statuscodes;
 
                                                 <?php if ($transition->data_variables !== null): ?>
                                                     <h5>Request object</h5>
-                                                    <?= $transition->data_variables ?>
+                                                    <div class="row">
+                                                        <?= $transition->data_variables ?>
+                                                    </div>
                                                 <?php endif; ?>
                                             </div>
                                         </div>
diff --git a/src/PHPDraft/Out/TemplateGenerator.php b/src/PHPDraft/Out/TemplateGenerator.php
@@ -108,7 +108,7 @@ public function get($object)
             foreach ($object->content[0]->content as $value) {
                 if ($value->element === 'copy')
                 {
-                    $this->base_data['DESC'] = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform($value->content), 2);
+                    $this->base_data['DESC'] = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform(htmlentities($value->content)), 2);
                     continue;
                 }
 

Original file line number	Diff line number	Diff line change
`@@ -112,7 +112,7 @@ protected function parse_content($object)`
`112`	`112`	`$this->parse_structure($value->content);`
`113`	`113`	`continue;`
`114`	`114`	`}else if ($value->element === 'copy'){`
`115`		`- $this->description = MarkdownExtra::defaultTransform($value->content);`
	`115`	`+ $this->description = MarkdownExtra::defaultTransform(htmlentities($value->content));`
`116`	`116`	`continue;`
`117`	`117`	`}`
`118`	`118`
Original file line number	Diff line number	Diff line change
`@@ -66,7 +66,7 @@ public function parse($object)`
`66`	`66`	`{`
`67`	`67`	`if ($item->element === 'copy')`
`68`	`68`	`{`
`69`		`- $this->description = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform($item->content), 2);`
	`69`	`+ $this->description = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform(htmlentities($item->content)), 2);`
`70`	`70`	`unset($object->content[$key]);`
`71`	`71`	`continue;`
`72`	`72`	`}`
Original file line number	Diff line number	Diff line change
`@@ -108,7 +108,7 @@ public function get($object)`
`108`	`108`	`foreach ($object->content[0]->content as $value) {`
`109`	`109`	`if ($value->element === 'copy')`
`110`	`110`	`{`
`111`		`- $this->base_data['DESC'] = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform($value->content), 2);`
	`111`	`+ $this->base_data['DESC'] = preg_replace('/(<\/?p>)/', '', MarkdownExtra::defaultTransform(htmlentities($value->content)), 2);`
`112`	`112`	`continue;`
`113`	`113`	`}`
`114`	`114`