Changeset 11583

Timestamp:

02/18/2022 08:06:03 AM (19 months ago)

Author:

dd32

Message:

Trac: Mark links in ticket descriptions/comments as rel="ugc nofollow". Take two.

[11548] was previously applying to all 'searchable' elements which includes the code browser.
The code browser uses a different String class, and being treated as a Markup string caused it to strip content that was unexpected within it.
This implements [11548] again verifying the specific string classes which we can alter, and narrowing it further by only applying to the ticket/comment classes and only when ext-link is present, to reduce potential breakage.

Fixes #4950.

File:

• sites/trunk/trac.wordpress.org/templates/site.html (modified) (1 diff)

sites/trunk/trac.wordpress.org/templates/site.html

@@ -314 +314 @@
     <textarea class="${select('@class')} wp-exclude-emoji" id="${select('@id')}" name="${select('@name')}" rows="${select('@rows')}" cols="${select('@cols')}">${select('*|comment()|text()')}</textarea>
 </py:match>
+
+<!--! Mark description/comment links as nofollow user-generated-content. -->
+<div py:match="div[contains(@class,'description') or contains(@class,'comment')]" py:attrs="select('@*')">
+    <?python
+    from genshi.core import TEXT, Markup
+    def nofollow_ugc(stream):
+        for kind, data, pos in stream:
+            if kind is TEXT and isinstance( data, Markup ) and ( 'ext-link' in data ):
+                data = Markup( data.replace( '<' + 'a class="ext-link"', '<' + 'a class="ext-link" rel="ugc nofollow"' ) )
+            yield kind, data, pos
+    ?>
+    ${nofollow_ugc(select('*|comment()|text()'))}
+</div>
 
 <body py:match="body" id="wordpress-org" class="${project_slug} trac wporg-make make-${project_slug}" py:attrs="select('@*')">