Page MenuHomePhorge
Diviner Tech Docs phutil_tag

function phutil_tag($tag, $attributes, $content)
Phorge Technical Documentation (Remarkup)

Render an HTML tag in a way that treats user content as unsafe by default.

Tag rendering has some special logic which implements security features:

  • When rendering <a> tags, if the rel attribute is not specified, it is interpreted as rel="noreferrer".
  • When rendering <a> tags, the href attribute may not begin with javascript:.

These special cases can not be disabled.

IMPORTANT: The $tag attribute and the keys of the $attributes array are trusted blindly, and not escaped. You should not pass user data in these parameters.
Parameters
string$tagThe name of the tag, like `a` or `div`.
map<string,$attributesstring> A map of tag attributes.
wild$contentContent to put in the tag.
Return
PhutilSafeHTMLTag object.
Defined
src/infrastructure/markup/render.php:24
Content licensed under Creative Commons Attribution-ShareAlike 4.0 (CC-BY-SA) unless otherwise noted; code licensed under Apache 2.0 or other open source licenses. · CC BY-SA 4.0 · Apache 2.0