Startseite Erkunden Hilfe
Registrieren Anmelden
yichael
/
image-match
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Branch: master
Branches Tags
image-match
/
python
/
py
/
Lib
/
site-packages
/
markdown_it
/
common
/
normalize_url.py

normalize_url.py 2.5 KB
Permalink Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081 
  1. from __future__ import annotations
    2. 

  2. 

  3. from collections.abc import Callable
    4. 

  4. from contextlib import suppress
    5. 

  5. import re
    6. 

  6. from urllib.parse import quote, unquote, urlparse, urlunparse  # noqa: F401
    7. 

  7. 

  8. import mdurl
    9. 

  9. 

  10. from .. import _punycode
    11. 

  11. 

  12. RECODE_HOSTNAME_FOR = ("http:", "https:", "mailto:")
    13. 

  13. 

  14. 

  15. def normalizeLink(url: str) -> str:
    16. 

  16.     """Normalize destination URLs in links
    17. 

  17. 

  18.     ::
    19. 

  19. 

  20.         [label]:   destination   'title'
    21. 

  21.                 ^^^^^^^^^^^
    22. 

  22.     """
    23. 

  23.     parsed = mdurl.parse(url, slashes_denote_host=True)
    24. 

  24. 

  25.     # Encode hostnames in urls like:
    26. 

  26.     # `http://host/`, `https://host/`, `mailto:user@host`, `//host/`
    27. 

  27.     #
    28. 

  28.     # We don't encode unknown schemas, because it's likely that we encode
    29. 

  29.     # something we shouldn't (e.g. `skype:name` treated as `skype:host`)
    30. 

  30.     #
    31. 

  31.     if parsed.hostname and (
    32. 

  32.         not parsed.protocol or parsed.protocol in RECODE_HOSTNAME_FOR
    33. 

  33.     ):
    34. 

  34.         with suppress(Exception):
    35. 

  35.             parsed = parsed._replace(hostname=_punycode.to_ascii(parsed.hostname))
    36. 

  36. 

  37.     return mdurl.encode(mdurl.format(parsed))
    38. 

  38. 

  39. 

  40. def normalizeLinkText(url: str) -> str:
    41. 

  41.     """Normalize autolink content
    42. 

  42. 

  43.     ::
    44. 

  44. 

  45.         <destination>
    46. 

  46.          ~~~~~~~~~~~
    47. 

  47.     """
    48. 

  48.     parsed = mdurl.parse(url, slashes_denote_host=True)
    49. 

  49. 

  50.     # Encode hostnames in urls like:
    51. 

  51.     # `http://host/`, `https://host/`, `mailto:user@host`, `//host/`
    52. 

  52.     #
    53. 

  53.     # We don't encode unknown schemas, because it's likely that we encode
    54. 

  54.     # something we shouldn't (e.g. `skype:name` treated as `skype:host`)
    55. 

  55.     #
    56. 

  56.     if parsed.hostname and (
    57. 

  57.         not parsed.protocol or parsed.protocol in RECODE_HOSTNAME_FOR
    58. 

  58.     ):
    59. 

  59.         with suppress(Exception):
    60. 

  60.             parsed = parsed._replace(hostname=_punycode.to_unicode(parsed.hostname))
    61. 

  61. 

  62.     # add '%' to exclude list because of https://github.com/markdown-it/markdown-it/issues/720
    63. 

  63.     return mdurl.decode(mdurl.format(parsed), mdurl.DECODE_DEFAULT_CHARS + "%")
    64. 

  64. 

  65. 

  66. BAD_PROTO_RE = re.compile(r"^(vbscript|javascript|file|data):")
    67. 

  67. GOOD_DATA_RE = re.compile(r"^data:image\/(gif|png|jpeg|webp);")
    68. 

  68. 

  69. 

  70. def validateLink(url: str, validator: Callable[[str], bool] | None = None) -> bool:
    71. 

  71.     """Validate URL link is allowed in output.
    72. 

  72. 

  73.     This validator can prohibit more than really needed to prevent XSS.
    74. 

  74.     It's a tradeoff to keep code simple and to be secure by default.
    75. 

  75. 

  76.     Note: url should be normalized at this point, and existing entities decoded.
    77. 

  77.     """
    78. 

  78.     if validator is not None:
    79. 

  79.         return validator(url)
    80. 

  80.     url = url.strip().lower()
    81. 

  81.     return bool(GOOD_DATA_RE.search(url)) if BAD_PROTO_RE.search(url) else True
    82.