U aF3@s(dZddlZddlZddlZddlmZddlmZmZm Z m Z m Z m Z ddl mZddlmZmZmZddlmZmZddlmZmZmZdd lmZd Zd d gZd dddddgZedZ edZ!edej"Z#edej"Z$ee%eddZ&e'dde'dde'dde'dd e'd!d"e'd#d$e'd%d&e'd'd(e'd)d*e'd+d,e'd-d.e'd/d0i Z(e()d1d2e*d3Dee%ed4d5Z+e'dd e'd!d"e'd#d$iZ,d6d7Z-d8d9Z.d:d;Z/d"']+)z^https?://\[?\wz>^www\.|^(?!http)\w[^@]+\.(com|edu|gov|int|mil|net|org)($|/.*)$cCsttt|S)a Return the given text with ampersands, quotes and angle brackets encoded for use in HTML. Always escape input, even if it's already escaped and marked as such. This may result in double-escaping. If this is a concern, use conditional_escape() instead. )rhtmlescapestrtextr/home/adriano.carvalho/ftp/files/BrinquedotecaVirtual/brinquedotecavirtual/venv/lib/python3.8/site-packages/django/utils/html.pyrs r\z\u005C'z\u0027"z\u0022>z\u003E;sr, cCstt|tS)z4Hex encode characters for use in JavaScript strings.)rr translate _js_escapesvaluerrrescapejs>sr2cCs0ddlm}tj||dt}td|t|S)z Escape all the HTML/XML special characters with their unicode escapes, so value is safe to be output anywhere except for inside a tag attribute. Wrap the escaped JSON in a script tag. r)DjangoJSONEncoder)clsz3)Zdjango.core.serializers.jsonr3jsondumpsr._json_script_escapes format_htmlr)r1Z element_idr3Zjson_strrrr json_scriptKs r9cCs0t|trt|}t|dr$|St|SdS)z Similar to escape(), except that it doesn't operate on pre-escaped strings. This function relies on the __html__ convention used both by Django's SafeData class and by third-party libraries like markupsafe. __html__N) isinstancer rhasattrr:rrrrrconditional_escapeYs   r=cOs,tt|}dd|D}t|j||S)z Similar to str.format, but pass all arguments through conditional_escape(), and call mark_safe() on the result. This function should be used instead of str.format or % interpolation to build up small HTML fragments. cSsi|]\}}|t|qSr)r=)r*kvrrr oszformat_html..)mapr=itemsrformat) format_stringargskwargsZ args_safeZ kwargs_saferrrr8hs r8cs tt|fdd|DS)a A wrapper of format_html, for the common case of a group of arguments that need to be formatted using the same format string, and then joined using 'sep'. 'sep' is also passed through conditional_escape. 'args_generator' should be an iterator that returns the sequence of 'args' that will be passed to format_html. Example: format_html_join(' ', "
  • {} {}
    • ", ((u.first_name, u.last_name) for u in users)) c3s|]}tf|VqdSN)r8)r*rErDrrr,sz#format_html_join..)rr=join)seprDZargs_generatorrrHrformat_html_joinssrKFcCsDt|}tdt|}|r,dd|D}ndd|D}d|S)z$Convert newlines into

    and
    s.z {2,}cSs g|]}dt|ddqSz

    %s

     z
    )rreplacer*prrr szlinebreaks..cSsg|]}d|ddqSrLrNrOrrrrQsz )rresplitrrI)r1 autoescapeZparasrrr linebreakss rVcs<eZdZfddZddZddZddZd d ZZS) MLStrippercs tjdd|g|_dS)NF)convert_charrefs)super__init__resetfedself __class__rrrZszMLStripper.__init__cCs|j|dSrGr\append)r^drrr handle_dataszMLStripper.handle_datacCs|jd|dS)Nz&%s;rar^namerrrhandle_entityrefszMLStripper.handle_entityrefcCs|jd|dS)Nz&#%s;rarerrrhandle_charrefszMLStripper.handle_charrefcCs d|jS)N)rIr\r]rrrget_dataszMLStripper.get_data) __name__ __module__ __qualname__rZrdrgrhrj __classcell__rrr_rrWs  rWcCs t}||||S)z< Internal tag stripping utility used by strip_tags. )rWfeedcloserj)r1srrr _strip_onces rrcCs@t|}d|kr\s+<)rSsubrr0rrrstrip_spaces_between_tagssrwcCsdd}zt|\}}}}}Wntk r:||YSXz t|}Wntk rd||YSX|rddt|ddD}t|}||}||}t|||||fS)z'Quote a URL if it isn't already quoted.cSst|}t|ttddS)N~)safe)rrrr )segmentrrr unquote_quotesz%smart_urlquote..unquote_quotecSs$g|]}t|dt|dfqS)r)r)r*qrrrrQsz"smart_urlquote..T)keep_blank_values)r ValueErrorr UnicodeErrorrrr)urlr{schemenetlocpathqueryfragmentZ query_partsrrrsmart_urlquotes"  rc Cst|t}|fdd}dd}dd}tt|}t|D]\} } d| ks`d| ks`d | krd | d } } } || | | \} } } d }|rd nd }t| rtt | }nzt | rtd t | }n\d | kr&|| r&| dd\}}z t |}Wntk rYq.trim_urlcSsd}|rd}tD]n\}}||r>|t|d}||7}d}||r||||dkr|dt| }||}d}qt|}|t}||kr|t|d|}|dt|t|}d}q|||fS)zr Trim trailing and wrapping punctuation from `middle`. Return the items of the new state. TFNr|) WRAPPING_PUNCTUATION startswithrendswithrsrunescaperstripTRAILING_PUNCTUATION_CHARS)leadmiddletrailZtrimmed_somethingZopeningclosingZmiddle_unescapedstrippedrrrtrim_punctuations*     z urlize..trim_punctuationcSsdd|ks|ds|dr dSz|d\}}Wntk rHYdSXd|ks\|dr`dSdS)z1Return True if value looks like an email address.@F.T)rrrTr)r1p1p2rrris_email_simple szurlize..is_email_simplerr:riNz rel="nofollow"z http://%sr|z mailto:%s@%sz%sz%s%s%s)r;r word_split_rerTr enumerate simple_url_rematchrrrsimple_url_2_rersplitr rrrrI)rZtrim_url_limitZnofollowrUZ safe_inputrrrwordsiwordrrrrZ nofollow_attrlocaldomainZtrimmedrrrurlizesN          rcCs |ddS)z Avoid text wrapping in the middle of a phrase by adding non-breaking spaces where there previously were normal spaces.   rRr0rrravoid_wrapping]srcsRd|jkrtd|jd|jkr0td|j|jfdd|_dd|_|S)z A decorator that defines the __html__ method. This helps non-Django templates to detect classes whose __str__ methods return SafeString. r:z;can't apply @html_safe to %s because it defines __html__().__str__zAcan't apply @html_safe to %s because it doesn't define __str__().cs t|SrG)rr]Z klass_strrruzhtml_safe..cSst|SrG)rr]rrrrvr)__dict__rrkrr:)klassrrr html_safees    r)F)NFF):__doc__rr5rS html.parserr urllib.parserrrrrrZdjango.utils.encodingr Zdjango.utils.functionalr r r Zdjango.utils.httpr rZdjango.utils.safestringrrrZdjango.utils.textrrrZDOTScompileZunencoded_ampersands_rer IGNORECASErrrrr)r/updateranger2r7r9r=r8rKrVrWrrrurwrrrrrrrrs             # t