gitlab-org--gitlab-foss/lib/gitlab/markdown.rb

require 'html/pipeline'
require 'html/pipeline/gitlab'

module Gitlab
  # Custom parser for GitLab-flavored Markdown
  #
  # It replaces references in the text with links to the appropriate items in
  # GitLab.
  #
  # Supported reference formats are:
  #   * @foo for team members
  #   * #123 for issues
  #   * JIRA-123 for Jira issues
  #   * !123 for merge requests
  #   * $123 for snippets
  #   * 1c002d for specific commit
  #   * 1c002d...35cfb2 for commit ranges (comparisons)
  #
  # It also parses Emoji codes to insert images. See
  # http://www.emoji-cheat-sheet.com/ for a list of the supported icons.
  #
  # Examples
  #
  #   >> gfm("Hey @david, can you fix this?")
  #   => "Hey <a href="/u/david">@david</a>, can you fix this?"
  #
  #   >> gfm("Commit 35d5f7c closes #1234")
  #   => "Commit <a href="/gitlab/commits/35d5f7c">35d5f7c</a> closes <a href="/gitlab/issues/1234">#1234</a>"
  #
  #   >> gfm(":trollface:")
  #   => "<img alt=\":trollface:\" class=\"emoji\" src=\"/images/trollface.png" title=\":trollface:\" />
  module Markdown
    # Public: Parse the provided text with GitLab-Flavored Markdown
    #
    # text         - the source text
    # project      - the project
    # html_options - extra options for the reference links as given to link_to
    def gfm(text, project = @project, html_options = {})
      gfm_with_options(text, {}, project, html_options)
    end

    # Public: Parse the provided text with GitLab-Flavored Markdown
    #
    # text         - the source text
    # options      - parse_tasks          - render tasks
    #              - xhtml                - output XHTML instead of HTML
    #              - reference_only_path  - Use relative path for reference links
    # project      - the project
    # html_options - extra options for the reference links as given to link_to
    def gfm_with_options(text, options = {}, project = @project, html_options = {})
      return text if text.nil?

      # Duplicate the string so we don't alter the original, then call to_str
      # to cast it back to a String instead of a SafeBuffer. This is required
      # for gsub calls to work as we need them to.
      text = text.dup.to_str

      options.reverse_merge!(
        parse_tasks:          false,
        xhtml:                false,
        reference_only_path:  true
      )

      markdown_context = {
        asset_root:      Gitlab.config.gitlab.url,
        asset_host:      Gitlab::Application.config.asset_host,
        whitelist:       sanitization_whitelist,
        reference_class: html_options[:class],
        only_path:       options[:reference_only_path],
        project:         project
      }

      markdown_pipeline = HTML::Pipeline::Gitlab.new(filters).pipeline

      result = markdown_pipeline.call(text, markdown_context)

      save_options = 0
      if options[:xhtml]
        save_options |= Nokogiri::XML::Node::SaveOptions::AS_XHTML
      end

      text = result[:output].to_html(save_with: save_options)

      if options[:parse_tasks]
        text = parse_tasks(text)
      end

      text.html_safe
    end

    private

    # Custom filters for html-pipeline:
    #
    # See https://gitlab.com/gitlab-org/html-pipeline-gitlab for more filters
    def filters
      [
        Gitlab::Markdown::UserReferenceFilter,
        Gitlab::Markdown::IssueReferenceFilter,
        Gitlab::Markdown::ExternalIssueReferenceFilter,
        Gitlab::Markdown::MergeRequestReferenceFilter,
        Gitlab::Markdown::SnippetReferenceFilter,
        Gitlab::Markdown::CommitRangeReferenceFilter,
        Gitlab::Markdown::CommitReferenceFilter,
        Gitlab::Markdown::LabelReferenceFilter,
        HTML::Pipeline::Gitlab::GitlabEmojiFilter,
        HTML::Pipeline::SanitizationFilter
      ]
    end

    # Customize the SanitizationFilter whitelist
    #
    # - Allow `class` and `id` attributes on all elements
    # - Allow `span` elements
    # - Remove `rel` attributes from `a` elements
    # - Remove `a` nodes with `javascript:` in the `href` attribute
    def sanitization_whitelist
      whitelist = HTML::Pipeline::SanitizationFilter::WHITELIST
      whitelist[:attributes][:all].push('class', 'id')
      whitelist[:elements].push('span')

      fix_anchors = lambda do |env|
        name, node = env[:node_name], env[:node]
        if name == 'a'
          node.remove_attribute('rel')
          if node['href'] && node['href'].match('javascript:')
            node.remove_attribute('href')
          end
        end
      end

      whitelist[:transformers].push(fix_anchors)

      whitelist
    end

    # Turn list items that start with "[ ]" into HTML checkbox inputs.
    def parse_tasks(text)
      li_tag = '<li class="task-list-item">'
      unchecked_box = '<input type="checkbox" value="on" disabled />'
      checked_box = unchecked_box.sub(/\/>$/, 'checked="checked" />')

      # Regexp captures don't seem to work when +text+ is an
      # ActiveSupport::SafeBuffer, hence the `String.new`
      String.new(text).gsub(Taskable::TASK_PATTERN_HTML) do
        checked = $LAST_MATCH_INFO[:checked].downcase == 'x'
        p_tag = $LAST_MATCH_INFO[:p_tag]

        if checked
          "#{li_tag}#{p_tag}#{checked_box}"
        else
          "#{li_tag}#{p_tag}#{unchecked_box}"
        end
      end
    end
  end
end
Factor out Emoji parsing using html-pipeline-gitlab 2014-09-01 15:47:28 +00:00			`require 'html/pipeline'`
			`require 'html/pipeline/gitlab'`

GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`module Gitlab`
Capitlization of /gitlab/i normalized. #1367 2012-09-06 07:50:47 +00:00			`# Custom parser for GitLab-flavored Markdown`
Improve GFM code documentation 2012-08-23 18:10:06 +00:00			`#`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`# It replaces references in the text with links to the appropriate items in`
Merge branch 'master' into emoji 2012-09-06 19:23:42 +00:00			`# GitLab.`
Improve GFM code documentation 2012-08-23 18:10:06 +00:00			`#`
			`# Supported reference formats are:`
			`# * @foo for team members`
			`# * #123 for issues`
Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`# * JIRA-123 for Jira issues`
Improve GFM code documentation 2012-08-23 18:10:06 +00:00			`# * !123 for merge requests`
			`# * $123 for snippets`
Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`# * 1c002d for specific commit`
			`# * 1c002d...35cfb2 for commit ranges (comparisons)`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`#`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`# It also parses Emoji codes to insert images. See`
			`# http://www.emoji-cheat-sheet.com/ for a list of the supported icons.`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`#`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`# Examples`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`#`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`# >> gfm("Hey @david, can you fix this?")`
Fix user path in markdown 2013-03-20 00:29:59 +00:00			`# => "Hey <a href="/u/david">@david</a>, can you fix this?"`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`#`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`# >> gfm("Commit 35d5f7c closes #1234")`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`# => "Commit <a href="/gitlab/commits/35d5f7c">35d5f7c</a> closes <a href="/gitlab/issues/1234">#1234</a>"`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`#`
			`# >> gfm(":trollface:")`
			`# => "<img alt=\":trollface:\" class=\"emoji\" src=\"/images/trollface.png" title=\":trollface:\" />`
			`module Markdown`
Fix invalid Atom feeds when using emoji, horizontal rules, or images. Fixes issues #880, #723, #1113: Markdown must be rendered to XHTML, not HTML, when generating summary content for Atom feeds. Otherwise, content-less tags like <img> and <hr>, generated when issue descriptions, merge request descriptions, comments, or commit messages use emoji, horizontal rules, or images, are not terminated and make the Atom XML invalid. 2015-02-21 21:12:13 +00:00			`# Public: Parse the provided text with GitLab-Flavored Markdown`
			`#`
			`# text - the source text`
Use relative URL for Markdown references, except in mails. 2015-03-25 09:03:55 +00:00			`# project - the project`
Fix invalid Atom feeds when using emoji, horizontal rules, or images. Fixes issues #880, #723, #1113: Markdown must be rendered to XHTML, not HTML, when generating summary content for Atom feeds. Otherwise, content-less tags like <img> and <hr>, generated when issue descriptions, merge request descriptions, comments, or commit messages use emoji, horizontal rules, or images, are not terminated and make the Atom XML invalid. 2015-02-21 21:12:13 +00:00			`# html_options - extra options for the reference links as given to link_to`
			`def gfm(text, project = @project, html_options = {})`
			`gfm_with_options(text, {}, project, html_options)`
Add task lists to issues and merge requests Make the Markdown parser recognize "[x]" or "[ ]" at the beginning of a list item and turn it into a checkbox input. Users who can modify the issue or MR can toggle the checkboxes directly or edit the Markdown to manage the tasks. Task status is also displayed in the MR and issue lists. 2014-10-05 05:53:44 +00:00			`end`

Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`# Public: Parse the provided text with GitLab-Flavored Markdown`
			`#`
			`# text - the source text`
Use relative URL for Markdown references, except in mails. 2015-03-25 09:03:55 +00:00			`# options - parse_tasks - render tasks`
			`# - xhtml - output XHTML instead of HTML`
			`# - reference_only_path - Use relative path for reference links`
			`# project - the project`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`# html_options - extra options for the reference links as given to link_to`
Fix invalid Atom feeds when using emoji, horizontal rules, or images. Fixes issues #880, #723, #1113: Markdown must be rendered to XHTML, not HTML, when generating summary content for Atom feeds. Otherwise, content-less tags like <img> and <hr>, generated when issue descriptions, merge request descriptions, comments, or commit messages use emoji, horizontal rules, or images, are not terminated and make the Atom XML invalid. 2015-02-21 21:12:13 +00:00			`def gfm_with_options(text, options = {}, project = @project, html_options = {})`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`return text if text.nil?`

Update gfm so escaped text is still parsed for references 2012-09-20 00:21:35 +00:00			`# Duplicate the string so we don't alter the original, then call to_str`
			`# to cast it back to a String instead of a SafeBuffer. This is required`
			`# for gsub calls to work as we need them to.`
			`text = text.dup.to_str`
Prevent gfm() to leak changes to the string supplied through the _text_ argument 2012-09-07 23:58:12 +00:00
Use relative URL for Markdown references, except in mails. 2015-03-25 09:03:55 +00:00			`options.reverse_merge!(`
			`parse_tasks: false,`
			`xhtml: false,`
			`reference_only_path: true`
			`)`

Factor out Emoji parsing using html-pipeline-gitlab 2014-09-01 15:47:28 +00:00			`markdown_context = {`
Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`asset_root: Gitlab.config.gitlab.url,`
			`asset_host: Gitlab::Application.config.asset_host,`
			`whitelist: sanitization_whitelist,`
			`reference_class: html_options[:class],`
			`only_path: options[:reference_only_path],`
			`project: project`
Factor out Emoji parsing using html-pipeline-gitlab 2014-09-01 15:47:28 +00:00			`}`

Enable markdown pipeline filters from inside gitlab. 2014-10-09 11:33:38 +00:00			`markdown_pipeline = HTML::Pipeline::Gitlab.new(filters).pipeline`

Make sure relative url and asset_host are honored, specs. 2014-10-10 15:31:47 +00:00			`result = markdown_pipeline.call(text, markdown_context)`
Merge branch 'master' of gitlab.com:gitlab-org/gitlab-ce Conflicts: lib/gitlab/markdown.rb 2015-04-01 02:03:54 +00:00
Use relative URL for Markdown references, except in mails. 2015-03-25 09:03:55 +00:00			`save_options = 0`
Fix invalid Atom feeds when using emoji, horizontal rules, or images. Fixes issues #880, #723, #1113: Markdown must be rendered to XHTML, not HTML, when generating summary content for Atom feeds. Otherwise, content-less tags like <img> and <hr>, generated when issue descriptions, merge request descriptions, comments, or commit messages use emoji, horizontal rules, or images, are not terminated and make the Atom XML invalid. 2015-02-21 21:12:13 +00:00			`if options[:xhtml]`
Use relative URL for Markdown references, except in mails. 2015-03-25 09:03:55 +00:00			`save_options \|= Nokogiri::XML::Node::SaveOptions::AS_XHTML`
Fix invalid Atom feeds when using emoji, horizontal rules, or images. Fixes issues #880, #723, #1113: Markdown must be rendered to XHTML, not HTML, when generating summary content for Atom feeds. Otherwise, content-less tags like <img> and <hr>, generated when issue descriptions, merge request descriptions, comments, or commit messages use emoji, horizontal rules, or images, are not terminated and make the Atom XML invalid. 2015-02-21 21:12:13 +00:00			`end`
Factor out Emoji parsing using html-pipeline-gitlab 2014-09-01 15:47:28 +00:00
Use relative URL for Markdown references, except in mails. 2015-03-25 09:03:55 +00:00			`text = result[:output].to_html(save_with: save_options)`
links to issues on main dashboard 2014-05-26 12:40:10 +00:00
Fix invalid Atom feeds when using emoji, horizontal rules, or images. Fixes issues #880, #723, #1113: Markdown must be rendered to XHTML, not HTML, when generating summary content for Atom feeds. Otherwise, content-less tags like <img> and <hr>, generated when issue descriptions, merge request descriptions, comments, or commit messages use emoji, horizontal rules, or images, are not terminated and make the Atom XML invalid. 2015-02-21 21:12:13 +00:00			`if options[:parse_tasks]`
			`text = parse_tasks(text)`
			`end`
Change HTML sanitization Use the `SanitizationFilter` class from the html-pipeline gem for inline HTML instead of calling the Rails `sanitize` method. 2015-03-18 03:17:00 +00:00
Fix SanitizationFilter bugs Return a `SafeBuffer` instead of a `String` from the `#gfm_with_options` method so that Rails doesn't escape our markup. Also add `<span>` to the sanitization whitelist to avoid breaking syntax highlighting in code blocks. 2015-03-22 15:02:32 +00:00			`text.html_safe`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`end`

Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`private`

Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`# Custom filters for html-pipeline:`
Change Gitlab::Markdown to a module; add emoji parsing 2012-09-05 20:07:39 +00:00			`#`
Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`# See https://gitlab.com/gitlab-org/html-pipeline-gitlab for more filters`
			`def filters`
			`[`
			`Gitlab::Markdown::UserReferenceFilter,`
			`Gitlab::Markdown::IssueReferenceFilter,`
			`Gitlab::Markdown::ExternalIssueReferenceFilter,`
			`Gitlab::Markdown::MergeRequestReferenceFilter,`
			`Gitlab::Markdown::SnippetReferenceFilter,`
			`Gitlab::Markdown::CommitRangeReferenceFilter,`
			`Gitlab::Markdown::CommitReferenceFilter,`
			`Gitlab::Markdown::LabelReferenceFilter,`
			`HTML::Pipeline::Gitlab::GitlabEmojiFilter,`
			`HTML::Pipeline::SanitizationFilter`
			`]`
Implement cross-project Markdown references Enable linking to commits, merge requests, and issues in other projects by prepending a namespaced project path to the reference. 2014-10-01 15:31:13 +00:00			`end`

Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`# Customize the SanitizationFilter whitelist`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`#`
Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			# - Allow `class` and `id` attributes on all elements
			# - Allow `span` elements
			# - Remove `rel` attributes from `a` elements
			# - Remove `a` nodes with `javascript:` in the `href` attribute
			`def sanitization_whitelist`
			`whitelist = HTML::Pipeline::SanitizationFilter::WHITELIST`
			`whitelist[:attributes][:all].push('class', 'id')`
			`whitelist[:elements].push('span')`
Move checking of recepients to a service. 2014-06-23 13:44:49 +00:00
Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`fix_anchors = lambda do \|env\|`
			`name, node = env[:node_name], env[:node]`
			`if name == 'a'`
			`node.remove_attribute('rel')`
			`if node['href'] && node['href'].match('javascript:')`
			`node.remove_attribute('href')`
Allow groups to be mentioned. Resolves #1673. 2015-02-04 16:10:39 +00:00			`end`
Add support for Jira ticket mentions in format JIRA-123. Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> Conflicts: CHANGELOG-EE 2014-05-06 17:51:56 +00:00			`end`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`end`

Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`whitelist[:transformers].push(fix_anchors)`
Add support for Jira ticket mentions in format JIRA-123. Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> Conflicts: CHANGELOG-EE 2014-05-06 17:51:56 +00:00
Reference filters :sparkles: Commit ranges, commits, external issues, issues, labels, merge requests, snippets, users. 2015-04-03 00:46:43 +00:00			`whitelist`
Add support for Jira ticket mentions in format JIRA-123. Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> Conflicts: CHANGELOG-EE 2014-05-06 17:51:56 +00:00			`end`
Add task lists to issues and merge requests Make the Markdown parser recognize "[x]" or "[ ]" at the beginning of a list item and turn it into a checkbox input. Users who can modify the issue or MR can toggle the checkboxes directly or edit the Markdown to manage the tasks. Task status is also displayed in the MR and issue lists. 2014-10-05 05:53:44 +00:00
			`# Turn list items that start with "[ ]" into HTML checkbox inputs.`
			`def parse_tasks(text)`
			`li_tag = '<li class="task-list-item">'`
			`unchecked_box = '<input type="checkbox" value="on" disabled />'`
			`checked_box = unchecked_box.sub(/\/>$/, 'checked="checked" />')`

			`# Regexp captures don't seem to work when +text+ is an`
			# ActiveSupport::SafeBuffer, hence the `String.new`
			`String.new(text).gsub(Taskable::TASK_PATTERN_HTML) do`
			`checked = $LAST_MATCH_INFO[:checked].downcase == 'x'`
Fix nested task lists When nesting task list items, the parent item is wrapped in a `<p>` tag. Update the task list parser to handle these paragraph wrappers. 2015-03-21 14:45:28 +00:00			`p_tag = $LAST_MATCH_INFO[:p_tag]`
Add task lists to issues and merge requests Make the Markdown parser recognize "[x]" or "[ ]" at the beginning of a list item and turn it into a checkbox input. Users who can modify the issue or MR can toggle the checkboxes directly or edit the Markdown to manage the tasks. Task status is also displayed in the MR and issue lists. 2014-10-05 05:53:44 +00:00
			`if checked`
Fix nested task lists When nesting task list items, the parent item is wrapped in a `<p>` tag. Update the task list parser to handle these paragraph wrappers. 2015-03-21 14:45:28 +00:00			`"#{li_tag}#{p_tag}#{checked_box}"`
Add task lists to issues and merge requests Make the Markdown parser recognize "[x]" or "[ ]" at the beginning of a list item and turn it into a checkbox input. Users who can modify the issue or MR can toggle the checkboxes directly or edit the Markdown to manage the tasks. Task status is also displayed in the MR and issue lists. 2014-10-05 05:53:44 +00:00			`else`
Fix nested task lists When nesting task list items, the parent item is wrapped in a `<p>` tag. Update the task list parser to handle these paragraph wrappers. 2015-03-21 14:45:28 +00:00			`"#{li_tag}#{p_tag}#{unchecked_box}"`
Add task lists to issues and merge requests Make the Markdown parser recognize "[x]" or "[ ]" at the beginning of a list item and turn it into a checkbox input. Users who can modify the issue or MR can toggle the checkboxes directly or edit the Markdown to manage the tasks. Task status is also displayed in the MR and issue lists. 2014-10-05 05:53:44 +00:00			`end`
			`end`
			`end`
GFM refactor: Move the actual parsing to a class under the Gitlab module 2012-08-14 08:32:19 +00:00			`end`
			`end`