public static function ContentLinksForm::validateUriElement in General Data Protection Regulation 8
Same name and namespace in other branches
- 8.2 src/Form/ContentLinksForm.php \Drupal\gdpr\Form\ContentLinksForm::validateUriElement()
- 3.0.x src/Form/ContentLinksForm.php \Drupal\gdpr\Form\ContentLinksForm::validateUriElement()
Form element validation handler for the 'uri' element.
Disallows saving inaccessible or untrusted URLs.
File
- src/
Form/ ContentLinksForm.php, line 210
Class
- ContentLinksForm
- Class ContentLinksForm.
Namespace
Drupal\gdpr\FormCode
public static function validateUriElement($element, FormStateInterface $form_state, $form) {
$uri = static::getUserEnteredStringAsUri($element['#value']);
$form_state
->setValueForElement($element, $uri);
// If getUserEnteredStringAsUri() mapped the entered value to a 'internal:'
// URI , ensure the raw value begins with '/', '?' or '#'.
// @todo '<front>' is valid input for BC reasons, may be removed by
// https://www.drupal.org/node/2421941
if (\parse_url($uri, PHP_URL_SCHEME) === 'internal' && 0 !== strpos($element['#value'], '<front>') && !\in_array($element['#value'][0], [
'/',
'?',
'#',
], TRUE)) {
$form_state
->setError($element, t('Manually entered paths should start with /, ? or #.'));
return;
}
}