PageRenderTime 63ms CodeModel.GetById 29ms RepoModel.GetById 1ms app.codeStats 0ms

/cake/libs/view/helper.php

https://github.com/hardsshah/bookmarks
PHP | 753 lines | 413 code | 37 blank | 303 comment | 110 complexity | ac9f7c0147ff8d5d19d95a1741da8fcf MD5 | raw file
    

  1. <?php
    2. 

  2. /* SVN FILE: $Id$ */
    3. 

  3. /**
    4. 

  4.  * Backend for helpers.
    5. 

  5.  *
    6. 

  6.  * Internal methods for the Helpers.
    7. 

  7.  *
    8. 

  8.  * PHP versions 4 and 5
    9. 

  9.  *
    10. 

  10.  * CakePHP(tm) :  Rapid Development Framework (http://www.cakephp.org)
    11. 

  11.  * Copyright 2005-2008, Cake Software Foundation, Inc. (http://www.cakefoundation.org)
    12. 

  12.  *
    13. 

  13.  * Licensed under The MIT License
    14. 

  14.  * Redistributions of files must retain the above copyright notice.
    15. 

  15.  *
    16. 

  16.  * @filesource
    17. 

  17.  * @copyright     Copyright 2005-2008, Cake Software Foundation, Inc. (http://www.cakefoundation.org)
    18. 

  18.  * @link          http://www.cakefoundation.org/projects/info/cakephp CakePHP(tm) Project
    19. 

  19.  * @package       cake
    20. 

  20.  * @subpackage    cake.cake.libs.view
    21. 

  21.  * @since         CakePHP(tm) v 0.2.9
    22. 

  22.  * @version       $Revision$
    23. 

  23.  * @modifiedby    $LastChangedBy$
    24. 

  24.  * @lastmodified  $Date$
    25. 

  25.  * @license       http://www.opensource.org/licenses/mit-license.php The MIT License
    26. 

  26.  */
    27. 

  27. /**
    28. 

  28.  * Included libs
    29. 

  29.  */
    30. 

  30. App::import('Core', 'Overloadable');
    31. 

  31. 

  32. /**
    33. 

  33.  * Backend for helpers.
    34. 

  34.  *
    35. 

  35.  * Long description for class
    36. 

  36.  *
    37. 

  37.  * @package       cake
    38. 

  38.  * @subpackage    cake.cake.libs.view
    39. 

  39.  */
    40. 

  40. class Helper extends Overloadable {
    41. 

  41. /**
    42. 

  42.  * List of helpers used by this helper
    43. 

  43.  *
    44. 

  44.  * @var array
    45. 

  45.  */
    46. 

  46. 	var $helpers = null;
    47. 

  47. /**
    48. 

  48.  * Base URL
    49. 

  49.  *
    50. 

  50.  * @var string
    51. 

  51.  */
    52. 

  52. 	var $base = null;
    53. 

  53. /**
    54. 

  54.  * Webroot path
    55. 

  55.  *
    56. 

  56.  * @var string
    57. 

  57.  */
    58. 

  58. 	var $webroot = null;
    59. 

  59. /**
    60. 

  60.  * Theme name
    61. 

  61.  *
    62. 

  62.  * @var string
    63. 

  63.  */
    64. 

  64. 	var $themeWeb = null;
    65. 

  65. /**
    66. 

  66.  * URL to current action.
    67. 

  67.  *
    68. 

  68.  * @var string
    69. 

  69.  */
    70. 

  70. 	var $here = null;
    71. 

  71. /**
    72. 

  72.  * Parameter array.
    73. 

  73.  *
    74. 

  74.  * @var array
    75. 

  75.  */
    76. 

  76. 	var $params = array();
    77. 

  77. /**
    78. 

  78.  * Current action.
    79. 

  79.  *
    80. 

  80.  * @var string
    81. 

  81.  */
    82. 

  82. 	var $action = null;
    83. 

  83. /**
    84. 

  84.  * Plugin path
    85. 

  85.  *
    86. 

  86.  * @var string
    87. 

  87.  */
    88. 

  88. 	var $plugin = null;
    89. 

  89. /**
    90. 

  90.  * POST data for models
    91. 

  91.  *
    92. 

  92.  * @var array
    93. 

  93.  */
    94. 

  94. 	var $data = null;
    95. 

  95. /**
    96. 

  96.  * List of named arguments
    97. 

  97.  *
    98. 

  98.  * @var array
    99. 

  99.  */
    100. 

  100. 	var $namedArgs = null;
    101. 

  101. /**
    102. 

  102.  * URL argument separator character
    103. 

  103.  *
    104. 

  104.  * @var string
    105. 

  105.  */
    106. 

  106. 	var $argSeparator = null;
    107. 

  107. /**
    108. 

  108.  * Contains model validation errors of form post-backs
    109. 

  109.  *
    110. 

  110.  * @access public
    111. 

  111.  * @var array
    112. 

  112.  */
    113. 

  113. 	var $validationErrors = null;
    114. 

  114. /**
    115. 

  115.  * Holds tag templates.
    116. 

  116.  *
    117. 

  117.  * @access public
    118. 

  118.  * @var array
    119. 

  119.  */
    120. 

  120. 	var $tags = array();
    121. 

  121. /**
    122. 

  122.  * Holds the content to be cleaned.
    123. 

  123.  *
    124. 

  124.  * @access private
    125. 

  125.  * @var mixed
    126. 

  126.  */
    127. 

  127. 	var $__tainted = null;
    128. 

  128. /**
    129. 

  129.  * Holds the cleaned content.
    130. 

  130.  *
    131. 

  131.  * @access private
    132. 

  132.  * @var mixed
    133. 

  133.  */
    134. 

  134. 	var $__cleaned = null;
    135. 

  135. /**
    136. 

  136.  * Default overload methods
    137. 

  137.  *
    138. 

  138.  * @access protected
    139. 

  139.  */
    140. 

  140. 	function get__($name) {}
    141. 

  141. 	function set__($name, $value) {}
    142. 

  142. 	function call__($method, $params) {
    143. 

  143. 		trigger_error(sprintf(__('Method %1$s::%2$s does not exist', true), get_class($this), $method), E_USER_WARNING);
    144. 

  144. 	}
    145. 

  145. 

  146. /**
    147. 

  147.  * Parses tag templates into $this->tags.
    148. 

  148.  *
    149. 

  149.  * @param $name file name
    150. 

  150.  * @return array merged tags from config/$name.php
    151. 

  151.  */
    152. 

  152. 	function loadConfig($name = 'tags') {
    153. 

  153. 		if (file_exists(CONFIGS . $name .'.php')) {
    154. 

  154. 			require(CONFIGS . $name .'.php');
    155. 

  155. 			if (isset($tags)) {
    156. 

  156. 				$this->tags = array_merge($this->tags, $tags);
    157. 

  157. 			}
    158. 

  158. 		}
    159. 

  159. 		return $this->tags;
    160. 

  160. 	}
    161. 

  161. /**
    162. 

  162.  * Finds URL for specified action.
    163. 

  163.  *
    164. 

  164.  * Returns an URL pointing to a combination of controller and action. Param
    165. 

  165.  * $url can be:
    166. 

  166.  *	+ Empty - the method will find adress to actuall controller/action.
    167. 

  167.  *	+ '/' - the method will find base URL of application.
    168. 

  168.  *	+ A combination of controller/action - the method will find url for it.
    169. 

  169.  *
    170. 

  170.  * @param  mixed  $url    Cake-relative URL, like "/products/edit/92" or "/presidents/elect/4"
    171. 

  171.  *                        or an array specifying any of the following: 'controller', 'action',
    172. 

  172.  *                        and/or 'plugin', in addition to named arguments (keyed array elements),
    173. 

  173.  *                        and standard URL arguments (indexed array elements)
    174. 

  174.  * @param boolean $full   If true, the full base URL will be prepended to the result
    175. 

  175.  * @return string  Full translated URL with base path.
    176. 

  176.  */
    177. 

  177. 	function url($url = null, $full = false) {
    178. 

  178. 		return h(Router::url($url, $full));
    179. 

  179. 	}
    180. 

  180. /**
    181. 

  181.  * Checks if a file exists when theme is used, if no file is found default location is returned
    182. 

  182.  *
    183. 

  183.  * @param  string  $file
    184. 

  184.  * @return string  $webPath web path to file.
    185. 

  185.  */
    186. 

  186. 	function webroot($file) {
    187. 

  187. 		$webPath = "{$this->webroot}" . $file;
    188. 

  188. 		if (!empty($this->themeWeb)) {
    189. 

  189. 			$os = env('OS');
    190. 

  190. 			if (!empty($os) && strpos($os, 'Windows') !== false) {
    191. 

  191. 				if (strpos(WWW_ROOT . $this->themeWeb  . $file, '\\') !== false) {
    192. 

  192. 					$path = str_replace('/', '\\', WWW_ROOT . $this->themeWeb  . $file);
    193. 

  193. 				}
    194. 

  194. 			} else {
    195. 

  195. 				$path = WWW_ROOT . $this->themeWeb  . $file;
    196. 

  196. 			}
    197. 

  197. 			if (file_exists($path)) {
    198. 

  198. 				$webPath = "{$this->webroot}" . $this->themeWeb . $file;
    199. 

  199. 			}
    200. 

  200. 		}
    201. 

  201. 		if (strpos($webPath, '//') !== false) {
    202. 

  202. 			return str_replace('//', '/', $webPath);
    203. 

  203. 		}
    204. 

  204. 		return $webPath;
    205. 

  205. 	}
    206. 

  206. 

  207. /**
    208. 

  208.  * Used to remove harmful tags from content
    209. 

  209.  *
    210. 

  210.  * @param mixed $output
    211. 

  211.  * @return cleaned content for output
    212. 

  212.  * @access public
    213. 

  213.  */
    214. 

  214. 	function clean($output) {
    215. 

  215. 		$this->__reset();
    216. 

  216. 		if (empty($output)) {
    217. 

  217. 			return null;
    218. 

  218. 		}
    219. 

  219. 		if (is_array($output)) {
    220. 

  220. 			foreach ($output as $key => $value) {
    221. 

  221. 				$return[$key] = $this->clean($value);
    222. 

  222. 			}
    223. 

  223. 			return $return;
    224. 

  224. 		}
    225. 

  225. 		$this->__tainted = $output;
    226. 

  226. 		$this->__clean();
    227. 

  227. 		return $this->__cleaned;
    228. 

  228. 	}
    229. 

  229. /**
    230. 

  230.  * Returns a space-delimited string with items of the $options array. If a
    231. 

  231.  * key of $options array happens to be one of:
    232. 

  232.  *	+ 'compact'
    233. 

  233.  *	+ 'checked'
    234. 

  234.  *	+ 'declare'
    235. 

  235.  *	+ 'readonly'
    236. 

  236.  *	+ 'disabled'
    237. 

  237.  *	+ 'selected'
    238. 

  238.  *	+ 'defer'
    239. 

  239.  *	+ 'ismap'
    240. 

  240.  *	+ 'nohref'
    241. 

  241.  *	+ 'noshade'
    242. 

  242.  *	+ 'nowrap'
    243. 

  243.  *	+ 'multiple'
    244. 

  244.  *	+ 'noresize'
    245. 

  245.  *
    246. 

  246.  * And its value is one of:
    247. 

  247.  *	+ 1
    248. 

  248.  *	+ true
    249. 

  249.  *	+ 'true'
    250. 

  250.  *
    251. 

  251.  * Then the value will be reset to be identical with key's name.
    252. 

  252.  * If the value is not one of these 3, the parameter is not output.
    253. 

  253.  *
    254. 

  254.  * @param  array  $options Array of options.
    255. 

  255.  * @param  array  $exclude Array of options to be excluded.
    256. 

  256.  * @param  string $insertBefore String to be inserted before options.
    257. 

  257.  * @param  string $insertAfter  String to be inserted ater options.
    258. 

  258.  * @return string
    259. 

  259.  */
    260. 

  260. 	function _parseAttributes($options, $exclude = null, $insertBefore = ' ', $insertAfter = null) {
    261. 

  261. 		if (is_array($options)) {
    262. 

  262. 			$options = array_merge(array('escape' => true), $options);
    263. 

  263. 

  264. 			if (!is_array($exclude)) {
    265. 

  265. 				$exclude = array();
    266. 

  266. 			}
    267. 

  267. 			$keys = array_diff(array_keys($options), array_merge((array)$exclude, array('escape')));
    268. 

  268. 			$values = array_intersect_key(array_values($options), $keys);
    269. 

  269. 			$escape = $options['escape'];
    270. 

  270. 			$attributes = array();
    271. 

  271. 

  272. 			foreach ($keys as $index => $key) {
    273. 

  273. 				$attributes[] = $this->__formatAttribute($key, $values[$index], $escape);
    274. 

  274. 			}
    275. 

  275. 			$out = implode(' ', $attributes);
    276. 

  276. 		} else {
    277. 

  277. 			$out = $options;
    278. 

  278. 		}
    279. 

  279. 		return $out ? $insertBefore . $out . $insertAfter : '';
    280. 

  280. 	}
    281. 

  281. /**
    282. 

  282.  * @param  string $key
    283. 

  283.  * @param  string $value
    284. 

  284.  * @return string
    285. 

  285.  * @access private
    286. 

  286.  */
    287. 

  287. 	function __formatAttribute($key, $value, $escape = true) {
    288. 

  288. 		$attribute = '';
    289. 

  289. 		$attributeFormat = '%s="%s"';
    290. 

  290. 		$minimizedAttributes = array('compact', 'checked', 'declare', 'readonly', 'disabled', 'selected', 'defer', 'ismap', 'nohref', 'noshade', 'nowrap', 'multiple', 'noresize');
    291. 

  291. 		if (is_array($value)) {
    292. 

  292. 			$value = '';
    293. 

  293. 		}
    294. 

  294. 

  295. 		if (in_array($key, $minimizedAttributes)) {
    296. 

  296. 			if ($value === 1 || $value === true || $value === 'true' || $value == $key) {
    297. 

  297. 				$attribute = sprintf($attributeFormat, $key, $key);
    298. 

  298. 			}
    299. 

  299. 		} else {
    300. 

  300. 			$attribute = sprintf($attributeFormat, $key, ($escape ? h($value) : $value));
    301. 

  301. 		}
    302. 

  302. 		return $attribute;
    303. 

  303. 	}
    304. 

  304. /**
    305. 

  305.  * Sets this helper's model and field properties to the dot-separated value-pair in $entity.
    306. 

  306.  *
    307. 

  307.  * @param mixed $entity A field name, like "ModelName.fieldName" or "ModelName.ID.fieldName"
    308. 

  308.  * @param boolean $setScope Sets the view scope to the model specified in $tagValue
    309. 

  309.  * @return void
    310. 

  310.  */
    311. 

  311. 	function setEntity($entity, $setScope = false) {
    312. 

  312. 		$view =& ClassRegistry::getObject('view');
    313. 

  313. 

  314. 		if ($setScope) {
    315. 

  315. 			$view->modelScope = false;
    316. 

  316. 		} elseif (join('.', $view->entity()) == $entity) {
    317. 

  317. 			return;
    318. 

  318. 		}
    319. 

  319. 

  320. 		if ($entity === null) {
    321. 

  321. 			$view->model = null;
    322. 

  322. 			$view->association = null;
    323. 

  323. 			$view->modelId = null;
    324. 

  324. 			$view->modelScope = false;
    325. 

  325. 			return;
    326. 

  326. 		}
    327. 

  327. 

  328. 		$model = $view->model;
    329. 

  329. 		$sameScope = $hasField = false;
    330. 

  330. 		$parts = array_values(Set::filter(explode('.', $entity), true));
    331. 

  331. 

  332. 		if (empty($parts)) {
    333. 

  333. 			return;
    334. 

  334. 		}
    335. 

  335. 

  336. 		if (count($parts) === 1 || is_numeric($parts[0])) {
    337. 

  337. 			$sameScope = true;
    338. 

  338. 		} else {
    339. 

  339. 			if (ClassRegistry::isKeySet($parts[0])) {
    340. 

  340. 				$model = $parts[0];
    341. 

  341. 			}
    342. 

  342. 		}
    343. 

  343. 

  344. 		if (ClassRegistry::isKeySet($model)) {
    345. 

  345. 			$ModelObj =& ClassRegistry::getObject($model);
    346. 

  346. 			for ($i = 0; $i < count($parts); $i++) {
    347. 

  347. 				if ($ModelObj->hasField($parts[$i]) || array_key_exists($parts[$i], $ModelObj->validate)) {
    348. 

  348. 					$hasField = $i;
    349. 

  349. 					if ($hasField === 0 || ($hasField === 1 && is_numeric($parts[0]))) {
    350. 

  350. 						$sameScope = true;
    351. 

  351. 					}
    352. 

  352. 					break;
    353. 

  353. 				}
    354. 

  354. 			}
    355. 

  355. 

  356. 			if ($sameScope === true && in_array($parts[0], array_keys($ModelObj->hasAndBelongsToMany))) {
    357. 

  357. 				$sameScope = false;
    358. 

  358. 			}
    359. 

  359. 		}
    360. 

  360. 

  361. 		if (!$view->association && $parts[0] == $view->field && $view->field != $view->model) {
    362. 

  362. 			array_unshift($parts, $model);
    363. 

  363. 			$hasField = true;
    364. 

  364. 		}
    365. 

  365. 		$view->field = $view->modelId = $view->fieldSuffix = $view->association = null;
    366. 

  366. 

  367. 		switch (count($parts)) {
    368. 

  368. 			case 1:
    369. 

  369. 				if ($view->modelScope === false) {
    370. 

  370. 					$view->model = $parts[0];
    371. 

  371. 				} else {
    372. 

  372. 					$view->field = $parts[0];
    373. 

  373. 					if ($sameScope === false) {
    374. 

  374. 						$view->association = $parts[0];
    375. 

  375. 					}
    376. 

  376. 				}
    377. 

  377. 			break;
    378. 

  378. 			case 2:
    379. 

  379. 				if ($view->modelScope === false) {
    380. 

  380. 					list($view->model, $view->field) = $parts;
    381. 

  381. 				} elseif ($sameScope === true && $hasField === 0) {
    382. 

  382. 					list($view->field, $view->fieldSuffix) = $parts;
    383. 

  383. 				} elseif ($sameScope === true && $hasField === 1) {
    384. 

  384. 					list($view->modelId, $view->field) = $parts;
    385. 

  385. 				} else {
    386. 

  386. 					list($view->association, $view->field) = $parts;
    387. 

  387. 				}
    388. 

  388. 			break;
    389. 

  389. 			case 3:
    390. 

  390. 				if ($sameScope === true && $hasField === 1) {
    391. 

  391. 					list($view->modelId, $view->field, $view->fieldSuffix) = $parts;
    392. 

  392. 				} elseif ($hasField === 2) {
    393. 

  393. 					list($view->association, $view->modelId, $view->field) = $parts;
    394. 

  394. 				} else {
    395. 

  395. 					list($view->association, $view->field, $view->fieldSuffix) = $parts;
    396. 

  396. 				}
    397. 

  397. 			break;
    398. 

  398. 			case 4:
    399. 

  399. 				if ($parts[0] === $view->model) {
    400. 

  400. 					list($view->model, $view->modelId, $view->field, $view->fieldSuffix) = $parts;
    401. 

  401. 				} else {
    402. 

  402. 					list($view->association, $view->modelId, $view->field, $view->fieldSuffix) = $parts;
    403. 

  403. 				}
    404. 

  404. 			break;
    405. 

  405. 		}
    406. 

  406. 

  407. 		if (!isset($view->model) || empty($view->model)) {
    408. 

  408. 			$view->model = $view->association;
    409. 

  409. 			$view->association = null;
    410. 

  410. 		} elseif ($view->model === $view->association) {
    411. 

  411. 			$view->association = null;
    412. 

  412. 		}
    413. 

  413. 

  414. 		if ($setScope) {
    415. 

  415. 			$view->modelScope = true;
    416. 

  416. 		}
    417. 

  417. 	}
    418. 

  418. /**
    419. 

  419.  * Gets the currently-used model of the rendering context.
    420. 

  420.  *
    421. 

  421.  * @return string
    422. 

  422.  */
    423. 

  423. 	function model() {
    424. 

  424. 		$view =& ClassRegistry::getObject('view');
    425. 

  425. 		if (!empty($view->association)) {
    426. 

  426. 			return $view->association;
    427. 

  427. 		} else {
    428. 

  428. 			return $view->model;
    429. 

  429. 		}
    430. 

  430. 	}
    431. 

  431. /**
    432. 

  432.  * Gets the ID of the currently-used model of the rendering context.
    433. 

  433.  *
    434. 

  434.  * @return mixed
    435. 

  435.  */
    436. 

  436. 	function modelID() {
    437. 

  437. 		$view =& ClassRegistry::getObject('view');
    438. 

  438. 		return $view->modelId;
    439. 

  439. 	}
    440. 

  440. /**
    441. 

  441.  * Gets the currently-used model field of the rendering context.
    442. 

  442.  *
    443. 

  443.  * @return string
    444. 

  444.  */
    445. 

  445. 	function field() {
    446. 

  446. 		$view =& ClassRegistry::getObject('view');
    447. 

  447. 		return $view->field;
    448. 

  448. 	}
    449. 

  449. /**
    450. 

  450.  * Returns false if given FORM field has no errors. Otherwise it returns the constant set in the array Model->validationErrors.
    451. 

  451.  *
    452. 

  452.  * @param string $model		Model name as string
    453. 

  453.  * @param string $field		Fieldname as string
    454. 

  454.  * @param integer $modelID	Unique index identifying this record within the form
    455. 

  455.  * @return boolean True on errors.
    456. 

  456.  */
    457. 

  457. 	function tagIsInvalid($model = null, $field = null, $modelID = null) {
    458. 

  458. 		foreach (array('model', 'field', 'modelID') as $key) {
    459. 

  459. 			if (empty(${$key})) {
    460. 

  460. 				${$key} = $this->{$key}();
    461. 

  461. 			}
    462. 

  462. 		}
    463. 

  463. 		$view =& ClassRegistry::getObject('view');
    464. 

  464. 		$errors = $this->validationErrors;
    465. 

  465. 

  466. 		if ($view->model !== $model && isset($errors[$view->model][$model])) {
    467. 

  467. 			$errors = $errors[$view->model];
    468. 

  468. 		}
    469. 

  469. 

  470. 		if (!isset($modelID)) {
    471. 

  471. 			return empty($errors[$model][$field]) ? 0 : $errors[$model][$field];
    472. 

  472. 		} else {
    473. 

  473. 			return empty($errors[$model][$modelID][$field]) ? 0 : $errors[$model][$modelID][$field];
    474. 

  474. 		}
    475. 

  475. 	}
    476. 

  476. /**
    477. 

  477.  * Generates a DOM ID for the selected element, if one is not set.
    478. 

  478.  *
    479. 

  479.  * @param mixed $options
    480. 

  480.  * @param string $id
    481. 

  481.  * @return mixed
    482. 

  482.  */
    483. 

  483. 	function domId($options = null, $id = 'id') {
    484. 

  484. 		$view =& ClassRegistry::getObject('view');
    485. 

  485. 

  486. 		if (is_array($options) && array_key_exists($id, $options) && $options[$id] === null) {
    487. 

  487. 			unset($options[$id]);
    488. 

  488. 			return $options;
    489. 

  489. 		} elseif (!is_array($options) && $options !== null) {
    490. 

  490. 			$this->setEntity($options);
    491. 

  491. 			return $this->domId();
    492. 

  492. 		}
    493. 

  493. 

  494. 		$dom = $this->model() . $this->modelID() . Inflector::camelize($view->field) . Inflector::camelize($view->fieldSuffix);
    495. 

  495. 

  496. 		if (is_array($options) && !array_key_exists($id, $options)) {
    497. 

  497. 			$options[$id] = $dom;
    498. 

  498. 		} elseif ($options === null) {
    499. 

  499. 			return $dom;
    500. 

  500. 		}
    501. 

  501. 		return $options;
    502. 

  502. 	}
    503. 

  503. /**
    504. 

  504.  * Gets the input field name for the current tag
    505. 

  505.  *
    506. 

  506.  * @param array $options
    507. 

  507.  * @param string $key
    508. 

  508.  * @return array
    509. 

  509.  */
    510. 

  510. 	function __name($options = array(), $field = null, $key = 'name') {
    511. 

  511. 		$view =& ClassRegistry::getObject('view');
    512. 

  512. 

  513. 		if ($options === null) {
    514. 

  514. 			$options = array();
    515. 

  515. 		} elseif (is_string($options)) {
    516. 

  516. 			$field = $options;
    517. 

  517. 			$options = 0;
    518. 

  518. 		}
    519. 

  519. 

  520. 		if (!empty($field)) {
    521. 

  521. 			$this->setEntity($field);
    522. 

  522. 		}
    523. 

  523. 

  524. 		if (is_array($options) && array_key_exists($key, $options)) {
    525. 

  525. 			return $options;
    526. 

  526. 		}
    527. 

  527. 

  528. 		switch ($field) {
    529. 

  529. 			case '_method':
    530. 

  530. 				$name = $field;
    531. 

  531. 			break;
    532. 

  532. 			default:
    533. 

  533. 				$name = 'data[' . join('][', $view->entity()) . ']';
    534. 

  534. 			break;
    535. 

  535. 		}
    536. 

  536. 

  537. 		if (is_array($options)) {
    538. 

  538. 			$options[$key] = $name;
    539. 

  539. 			return $options;
    540. 

  540. 		} else {
    541. 

  541. 			return $name;
    542. 

  542. 		}
    543. 

  543. 	}
    544. 

  544. /**
    545. 

  545.  * Gets the data for the current tag
    546. 

  546.  *
    547. 

  547.  * @param array $options
    548. 

  548.  * @param string $key
    549. 

  549.  * @return array
    550. 

  550.  * @access public
    551. 

  551.  */
    552. 

  552. 	function value($options = array(), $field = null, $key = 'value') {
    553. 

  553. 		if ($options === null) {
    554. 

  554. 			$options = array();
    555. 

  555. 		} elseif (is_string($options)) {
    556. 

  556. 			$field = $options;
    557. 

  557. 			$options = 0;
    558. 

  558. 		}
    559. 

  559. 

  560. 		if (!empty($field)) {
    561. 

  561. 			$this->setEntity($field);
    562. 

  562. 		}
    563. 

  563. 

  564. 		if (is_array($options) && isset($options[$key])) {
    565. 

  565. 			return $options;
    566. 

  566. 		}
    567. 

  567. 

  568. 		$result = null;
    569. 

  569. 

  570. 		$modelName = $this->model();
    571. 

  571. 		$fieldName = $this->field();
    572. 

  572. 		$modelID = $this->modelID();
    573. 

  573. 

  574. 		if (is_null($fieldName)) {
    575. 

  575. 			$fieldName = $modelName;
    576. 

  576. 			$modelName = null;
    577. 

  577. 		}
    578. 

  578. 

  579. 		if (isset($this->data[$fieldName]) && $modelName === null) {
    580. 

  580. 			$result = $this->data[$fieldName];
    581. 

  581. 		} elseif (isset($this->data[$modelName][$fieldName])) {
    582. 

  582. 			$result = $this->data[$modelName][$fieldName];
    583. 

  583. 		} elseif (isset($this->data[$fieldName]) && is_array($this->data[$fieldName])) {
    584. 

  584. 			if (ClassRegistry::isKeySet($fieldName)) {
    585. 

  585. 				$model =& ClassRegistry::getObject($fieldName);
    586. 

  586. 				$result = $this->__selectedArray($this->data[$fieldName], $model->primaryKey);
    587. 

  587. 			}
    588. 

  588. 		} elseif (isset($this->data[$modelName][$modelID][$fieldName])) {
    589. 

  589. 			$result = $this->data[$modelName][$modelID][$fieldName];
    590. 

  590. 		}
    591. 

  591. 

  592. 		if (is_array($result)) {
    593. 

  593. 			$view =& ClassRegistry::getObject('view');
    594. 

  594. 			if (isset($result[$view->fieldSuffix])) {
    595. 

  595. 				$result = $result[$view->fieldSuffix];
    596. 

  596. 			}
    597. 

  597. 		}
    598. 

  598. 

  599. 		if (is_array($options)) {
    600. 

  600. 			if (empty($result) && isset($options['default'])) {
    601. 

  601. 				$result = $options['default'];
    602. 

  602. 			}
    603. 

  603. 			unset($options['default']);
    604. 

  604. 		}
    605. 

  605. 

  606. 		if (is_array($options)) {
    607. 

  607. 			$options[$key] = $result;
    608. 

  608. 			return $options;
    609. 

  609. 		} else {
    610. 

  610. 			return $result;
    611. 

  611. 		}
    612. 

  612. 	}
    613. 

  613. /**
    614. 

  614.  * Sets the defaults for an input tag
    615. 

  615.  *
    616. 

  616.  * @param array $options
    617. 

  617.  * @param string $key
    618. 

  618.  * @return array
    619. 

  619.  * @access protected
    620. 

  620.  */
    621. 

  621. 	function _initInputField($field, $options = array()) {
    622. 

  622. 		if ($field !== null) {
    623. 

  623. 			$this->setEntity($field);
    624. 

  624. 		}
    625. 

  625. 		$options = (array)$options;
    626. 

  626. 		$options = $this->__name($options);
    627. 

  627. 		$options = $this->value($options);
    628. 

  628. 		$options = $this->domId($options);
    629. 

  629. 		if ($this->tagIsInvalid()) {
    630. 

  630. 			$options = $this->addClass($options, 'form-error');
    631. 

  631. 		}
    632. 

  632. 		return $options;
    633. 

  633. 	}
    634. 

  634. /**
    635. 

  635.  * Adds the given class to the element options
    636. 

  636.  *
    637. 

  637.  * @param array $options
    638. 

  638.  * @param string $class
    639. 

  639.  * @param string $key
    640. 

  640.  * @return array
    641. 

  641.  */
    642. 

  642. 	function addClass($options = array(), $class = null, $key = 'class') {
    643. 

  643. 		if (isset($options[$key]) && trim($options[$key]) != '') {
    644. 

  644. 			$options[$key] .= ' ' . $class;
    645. 

  645. 		} else {
    646. 

  646. 			$options[$key] = $class;
    647. 

  647. 		}
    648. 

  648. 		return $options;
    649. 

  649. 	}
    650. 

  650. /**
    651. 

  651.  * Returns a string generated by a helper method
    652. 

  652.  *
    653. 

  653.  * This method can be overridden in subclasses to do generalized output post-processing
    654. 

  654.  *
    655. 

  655.  * @param  string  $str	String to be output.
    656. 

  656.  * @return string
    657. 

  657.  */
    658. 

  658. 	function output($str) {
    659. 

  659. 		return $str;
    660. 

  660. 	}
    661. 

  661. /**
    662. 

  662.  * Before render callback.  Overridden in subclasses.
    663. 

  663.  *
    664. 

  664.  */
    665. 

  665. 	function beforeRender() {
    666. 

  666. 	}
    667. 

  667. /**
    668. 

  668.  * After render callback.  Overridden in subclasses.
    669. 

  669.  *
    670. 

  670.  */
    671. 

  671. 	function afterRender() {
    672. 

  672. 	}
    673. 

  673. /**
    674. 

  674.  * Before layout callback.  Overridden in subclasses.
    675. 

  675.  *
    676. 

  676.  */
    677. 

  677. 	function beforeLayout() {
    678. 

  678. 	}
    679. 

  679. /**
    680. 

  680.  * After layout callback.  Overridden in subclasses.
    681. 

  681.  *
    682. 

  682.  */
    683. 

  683. 	function afterLayout() {
    684. 

  684. 	}
    685. 

  685. /**
    686. 

  686.  * Transforms a recordset from a hasAndBelongsToMany association to a list of selected
    687. 

  687.  * options for a multiple select element
    688. 

  688.  *
    689. 

  689.  * @param mixed $data
    690. 

  690.  * @param string $key
    691. 

  691.  * @return array
    692. 

  692.  * @access private
    693. 

  693.  */
    694. 

  694. 	function __selectedArray($data, $key = 'id') {
    695. 

  695. 		if (!is_array($data)) {
    696. 

  696. 			$model = $data;
    697. 

  697. 			if (!empty($this->data[$model][$model])) {
    698. 

  698. 				return $this->data[$model][$model];
    699. 

  699. 			}
    700. 

  700. 			if (!empty($this->data[$model])) {
    701. 

  701. 				$data = $this->data[$model];
    702. 

  702. 			}
    703. 

  703. 		}
    704. 

  704. 		$array = array();
    705. 

  705. 		if (!empty($data)) {
    706. 

  706. 			foreach ($data as $var) {
    707. 

  707. 				$array[$var[$key]] = $var[$key];
    708. 

  708. 			}
    709. 

  709. 		}
    710. 

  710. 		return $array;
    711. 

  711. 	}
    712. 

  712. /**
    713. 

  713.  * Resets the vars used by Helper::clean() to null
    714. 

  714.  *
    715. 

  715.  * @access private
    716. 

  716.  */
    717. 

  717. 	function __reset() {
    718. 

  718. 		$this->__tainted = null;
    719. 

  719. 		$this->__cleaned = null;
    720. 

  720. 	}
    721. 

  721. /**
    722. 

  722.  * Removes harmful content from output
    723. 

  723.  *
    724. 

  724.  * @access private
    725. 

  725.  */
    726. 

  726. 	function __clean() {
    727. 

  727. 		if (get_magic_quotes_gpc()) {
    728. 

  728. 			$this->__cleaned = stripslashes($this->__tainted);
    729. 

  729. 		} else {
    730. 

  730. 			$this->__cleaned = $this->__tainted;
    731. 

  731. 		}
    732. 

  732. 

  733. 		$this->__cleaned = str_replace(array("&amp;", "&lt;", "&gt;"), array("&amp;amp;", "&amp;lt;", "&amp;gt;"), $this->__cleaned);
    734. 

  734. 		$this->__cleaned = preg_replace('#(&\#*\w+)[\x00-\x20]+;#u', "$1;", $this->__cleaned);
    735. 

  735. 		$this->__cleaned = preg_replace('#(&\#x*)([0-9A-F]+);*#iu', "$1$2;", $this->__cleaned);
    736. 

  736. 		$this->__cleaned = html_entity_decode($this->__cleaned, ENT_COMPAT, "UTF-8");
    737. 

  737. 		$this->__cleaned = preg_replace('#(<[^>]+[\x00-\x20\"\'\/])(on|xmlns)[^>]*>#iUu', "$1>", $this->__cleaned);
    738. 

  738. 		$this->__cleaned = preg_replace('#([a-z]*)[\x00-\x20]*=[\x00-\x20]*([\`\'\"]*)[\\x00-\x20]*j[\x00-\x20]*a[\x00-\x20]*v[\x00-\x20]*a[\x00-\x20]*s[\x00-\x20]*c[\x00-\x20]*r[\x00-\x20]*i[\x00-\x20]*p[\x00-\x20]*t[\x00-\x20]*:#iUu', '$1=$2nojavascript...', $this->__cleaned);
    739. 

  739. 		$this->__cleaned = preg_replace('#([a-z]*)[\x00-\x20]*=([\'\"]*)[\x00-\x20]*v[\x00-\x20]*b[\x00-\x20]*s[\x00-\x20]*c[\x00-\x20]*r[\x00-\x20]*i[\x00-\x20]*p[\x00-\x20]*t[\x00-\x20]*:#iUu', '$1=$2novbscript...', $this->__cleaned);
    740. 

  740. 		$this->__cleaned = preg_replace('#([a-z]*)[\x00-\x20]*=*([\'\"]*)[\x00-\x20]*-moz-binding[\x00-\x20]*:#iUu','$1=$2nomozbinding...', $this->__cleaned);
    741. 

  741. 		$this->__cleaned = preg_replace('#([a-z]*)[\x00-\x20]*=([\'\"]*)[\x00-\x20]*data[\x00-\x20]*:#Uu', '$1=$2nodata...', $this->__cleaned);
    742. 

  742. 		$this->__cleaned = preg_replace('#(<[^>]+)style[\x00-\x20]*=[\x00-\x20]*([\`\'\"]*).*expression[\x00-\x20]*\([^>]*>#iU', "$1>", $this->__cleaned);
    743. 

  743. 		$this->__cleaned = preg_replace('#(<[^>]+)style[\x00-\x20]*=[\x00-\x20]*([\`\'\"]*).*behaviour[\x00-\x20]*\([^>]*>#iU', "$1>", $this->__cleaned);
    744. 

  744. 		$this->__cleaned = preg_replace('#(<[^>]+)style[\x00-\x20]*=[\x00-\x20]*([\`\'\"]*).*s[\x00-\x20]*c[\x00-\x20]*r[\x00-\x20]*i[\x00-\x20]*p[\x00-\x20]*t[\x00-\x20]*:*[^>]*>#iUu', "$1>", $this->__cleaned);
    745. 

  745. 		$this->__cleaned = preg_replace('#</*\w+:\w[^>]*>#i', "", $this->__cleaned);
    746. 

  746. 		do {
    747. 

  747. 			$oldstring = $this->__cleaned;
    748. 

  748. 			$this->__cleaned = preg_replace('#</*(applet|meta|xml|blink|link|style|script|embed|object|iframe|frame|frameset|ilayer|layer|bgsound|title|base)[^>]*>#i', "", $this->__cleaned);
    749. 

  749. 		} while ($oldstring != $this->__cleaned);
    750. 

  750. 		$this->__cleaned = str_replace(array("&amp;", "&lt;", "&gt;"), array("&amp;amp;", "&amp;lt;", "&amp;gt;"), $this->__cleaned);
    751. 

  751. 	}
    752. 

  752. }
    753. 

  753. ?>
    754.