| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202 |
- using Ganss.XSS;
- using HtmlAgilityPack;
- using System;
- using System.Collections.Generic;
- using System.Linq;
- using System.Text.RegularExpressions;
- namespace Masuit.Tools.Html
- {
- /// <summary>
- /// html工具类
- /// </summary>
- public static partial class HtmlTools
- {
- /// <summary>
- /// 标准的防止html的xss净化器
- /// </summary>
- /// <param name="html"></param>
- /// <returns></returns>
- public static string HtmlSantinizerStandard(this string html)
- {
- var sanitizer = new HtmlSanitizer();
- sanitizer.AllowedAttributes.Remove("id");
- sanitizer.AllowedAttributes.Remove("alt");
- sanitizer.AllowedCssProperties.Remove("font-family");
- sanitizer.AllowedCssProperties.Remove("background-color");
- sanitizer.KeepChildNodes = true;
- sanitizer.AllowedTags.Remove("input");
- sanitizer.AllowedTags.Remove("button");
- sanitizer.AllowedTags.Remove("iframe");
- sanitizer.AllowedTags.Remove("frame");
- sanitizer.AllowedTags.Remove("textarea");
- sanitizer.AllowedTags.Remove("select");
- sanitizer.AllowedTags.Remove("form");
- return sanitizer.Sanitize(html);
- }
- /// <summary>
- /// 自定义的防止html的xss净化器
- /// </summary>
- /// <param name="html">源html</param>
- /// <param name="labels">需要移除的标签集合</param>
- /// <param name="attributes">需要移除的属性集合</param>
- /// <param name="styles">需要移除的样式集合</param>
- /// <returns></returns>
- public static string HtmlSantinizerCustom(this string html, string[] labels = null, string[] attributes = null, string[] styles = null)
- {
- var sanitizer = new HtmlSanitizer();
- if (labels != null)
- {
- foreach (string label in labels)
- {
- sanitizer.AllowedTags.Remove(label);
- }
- }
- if (attributes != null)
- {
- foreach (string attr in attributes)
- {
- sanitizer.AllowedAttributes.Remove(attr);
- }
- }
- if (styles != null)
- {
- foreach (string p in styles)
- {
- sanitizer.AllowedCssProperties.Remove(p);
- }
- }
- sanitizer.KeepChildNodes = true;
- return sanitizer.Sanitize(html);
- }
- /// <summary>
- /// 去除html标签后并截取字符串
- /// </summary>
- /// <param name="html">源html</param>
- /// <param name="length">截取长度</param>
- /// <returns></returns>
- public static string RemoveHtmlTag(this string html, int length = 0)
- {
- var doc = new HtmlDocument();
- doc.LoadHtml(html);
- var strText = doc.DocumentNode.InnerText;
- if (length > 0 && strText.Length > length)
- {
- return strText.Substring(0, length);
- }
- return strText;
- }
- /// <summary>
- /// 清理Word文档转html后的冗余标签属性
- /// </summary>
- /// <param name="html"></param>
- /// <returns></returns>
- public static string ClearHtml(this string html)
- {
- string s = Regex.Match(Regex.Replace(html, @"background-color:#?\w{3,7}|font-family:'?[\w|\(|\)]*'?;?", string.Empty), @"<body[^>]*>([\s\S]*)<\/body>").Groups[1].Value.Replace(" ", string.Empty);
- s = Regex.Replace(s, @"\w+-?\w+:0\w+;?", string.Empty); //去除多余的零值属性
- s = Regex.Replace(s, "alt=\"(.+?)\"", string.Empty); //除去alt属性
- s = Regex.Replace(s, @"-aw.+?\s", string.Empty); //去除Word产生的-aw属性
- return s;
- }
- /// <summary>
- /// 替换html的img路径为绝对路径
- /// </summary>
- /// <param name="html"></param>
- /// <param name="imgDest"></param>
- /// <returns></returns>
- public static string ReplaceHtmlImgSource(this string html, string imgDest) => html.Replace("<img src=\"", "<img src=\"" + imgDest + "/");
- /// <summary>
- /// 将src的绝对路径换成相对路径
- /// </summary>
- /// <param name="s"></param>
- /// <returns></returns>
- public static string ConvertImgSrcToRelativePath(this string s)
- {
- return Regex.Replace(s, @"<img src=""(http:\/\/.+?)/", @"<img src=""/");
- }
- /// <summary>
- /// 匹配html的所有img标签集合
- /// </summary>
- /// <param name="html"></param>
- /// <returns></returns>
- public static IEnumerable<HtmlNode> MatchImgTags(this string html)
- {
- var doc = new HtmlDocument();
- doc.LoadHtml(html);
- var nodes = doc.DocumentNode.Descendants("img");
- return nodes;
- }
- /// <summary>
- /// 匹配html的所有img标签的src集合
- /// </summary>
- /// <param name="html"></param>
- /// <returns></returns>
- public static IEnumerable<string> MatchImgSrcs(this string html)
- {
- return MatchImgTags(html).Where(n => n.Attributes.Contains("src")).Select(n => n.Attributes["src"].Value);
- }
- /// <summary>
- /// 获取html中第一个img标签的src
- /// </summary>
- /// <param name="html"></param>
- /// <returns></returns>
- public static string MatchFirstImgSrc(this string html)
- {
- return MatchImgSrcs(html).FirstOrDefault();
- }
- /// <summary>
- /// 随机获取html代码中的img标签的src属性
- /// </summary>
- /// <param name="html"></param>
- /// <returns></returns>
- public static string MatchRandomImgSrc(this string html)
- {
- int count = MatchImgSrcs(html).Count();
- var rnd = new Random();
- return MatchImgSrcs(html).ElementAtOrDefault(rnd.Next(count));
- }
- /// <summary>
- /// 替换回车换行符为html换行符
- /// </summary>
- /// <param name="str">html</param>
- public static string StrFormat(this string str)
- {
- str = str.Replace("\r\n", "<br />");
- str = str.Replace("\n", "<br />");
- var str2 = str;
- return str2;
- }
- /// <summary>
- /// 替换html字符
- /// </summary>
- /// <param name="strHtml">html</param>
- public static string EncodeHtml(this string strHtml)
- {
- if (strHtml != "")
- {
- strHtml = strHtml.Replace(",", "&def");
- strHtml = strHtml.Replace("'", "&dot");
- strHtml = strHtml.Replace(";", "&dec");
- return strHtml;
- }
- return "";
- }
- }
- }
|
