ꦫꦣꦺꦤ꧀ꦄꦤ꧀ꦠꦱꦺꦤ

PATH: home / lab2454c / costbloc.com / app / Http / Middleware

<?php

namespace App\Http\Middleware;

use Illuminate\Foundation\Http\Middleware\TrimStrings as Middleware;
use Illuminate\Http\Request;

class TrimStrings extends Middleware
{
    /**
     * The names of the attributes that should not be trimmed.
     *
     * @var array
     */
    protected $except = [
        'password',
        'password_confirmation',
        'body',
        'category',
        'html',
        'css',
    ];

/**
     * The names of the attributes that should not be striped.
     *
     * @var array
     */
    protected $exceptAllowHTMLTags = [
        'password',
        'password_confirmation',
        'body',
        'description',
        'html',
        'css',
        'message',
        'data',
        'title_text',
        'sub_title_text',
        'description_title_text'
    ];

/**
     * Transform the given value into striped value.
     *
     * @param  Request  $request
     * @return striped request input
     */
    public function __construct(Request $request)
    {
        $urlSegments = $request->segments();

foreach ($urlSegments as $key => $value) {
            if ($value != strip_tags($value)) {
                if (in_array('api', array_values($urlSegments))) {
                    $data['status']  = ['code' => 400, 'text' => __('Bad Request')];
                    $data['message'] = __('Invalid characters are present in your api URL.');
                    /** Please don't remove the dd() method below. It is necessary to send error
                    messsage on invalid URL segments. */
                    dd(json_encode($data));
                }
                return redirect('dashboard');
            }
        }

if ($request->isMethod('post') || $request->isMethod('put')) {
            $requestAll = $request->all();
            $data = [];
            foreach ($requestAll as $key => $value) {
                if (is_array($value)) {
                    foreach ($value as $secondKey => $secondValue) {
                        if (is_array($secondValue)) {
                            foreach ($secondValue as $thirdKey => $thirdValue) {
                                if (is_array($thirdValue)) {
                                    foreach ($thirdValue as $fourthKey => $fourthValue) {
                                        $data[$key][$secondKey][$thirdKey][$fourthKey] = $this->iterateInputValue($fourthKey, $fourthValue);
                                    }
                                } else {
                                    $data[$key][$secondKey][$thirdKey] = $this->iterateInputValue($thirdKey, $thirdValue);
                                }
                            }
                        } else {
                            $data[$key][$secondKey] = $this->iterateInputValue($secondKey, $secondValue);
                        }
                    }
                } else {
                    $data[$key] = $this->iterateInputValue($key, $value);
                }
            }
            $request->replace($data);
        }
    }

/**
     * iterateInputValue method
     * @param string $key
     * @param  array $value
     * @return array
     */
    private function iterateInputValue($key, $value)
    {
        if (!in_array($key, $this->except, true)) {
            $value = trim(xss_clean($value));
        }
        if (!empty($value) && !in_array($key, $this->exceptAllowHTMLTags, true)) {
            return stripBeforeSave($value);
        }
        return $value;
    }
}

[-] TrustProxies.php [edit]
[-] CheckForMaintenanceMode.php [edit]
[-] IsLoggedIn.php [edit]
[-] TrimStrings.php [edit]
[+] ..
[-] Permission.php [edit]
[+] Api
[-] RedirectIfNotCustomer.php [edit]
[-] RedirectIfAuthenticated.php [edit]
[-] Authenticate.php [edit]
[-] CheckGuest.php [edit]
[-] UserAuthenticate.php [edit]
[-] EncryptCookies.php [edit]
[-] PreventRequestsDuringMaintenance.php [edit]
[-] Locale.php [edit]
[-] CheckForDemoMode.php [edit]
[-] VerifyCsrfToken.php [edit]
[-] TrustHosts.php [edit]