117 lines
2.6 KiB
JavaScript
117 lines
2.6 KiB
JavaScript
/**
|
|
* @author yutent<yutent.io@gmail.com>
|
|
* @date 2020/09/16 12:09:15
|
|
*/
|
|
|
|
//类似于Array 的splice方法
|
|
if (!String.prototype.splice) {
|
|
Object.defineProperty(String.prototype, 'splice', {
|
|
value: function(start, len, fill) {
|
|
let length = this.length
|
|
let argLen = arguments.length
|
|
|
|
fill = fill === undefined ? '' : fill
|
|
|
|
if (argLen < 1) {
|
|
return this
|
|
}
|
|
|
|
//处理负数
|
|
if (start < 0) {
|
|
if (Math.abs(start) >= length) {
|
|
start = 0
|
|
} else {
|
|
start = length + start
|
|
}
|
|
}
|
|
|
|
if (argLen === 1) {
|
|
return this.slice(0, start)
|
|
} else {
|
|
len -= 0
|
|
|
|
let strl = this.slice(0, start)
|
|
let strr = this.slice(start + len)
|
|
|
|
return strl + fill + strr
|
|
}
|
|
},
|
|
enumerable: false
|
|
})
|
|
}
|
|
|
|
//同php的htmlspecialchars函数
|
|
if (!String.prototype.htmlspecialchars) {
|
|
Object.defineProperty(String.prototype, 'htmlspecialchars', {
|
|
value: function(sign) {
|
|
let str = this.replace(/&(?!\w+;)/g, '&')
|
|
.replace(/</g, '<')
|
|
.replace(/>/g, '>')
|
|
|
|
if (sign === 'ENT_QUOTES') {
|
|
return str.replace(/"/g, '"').replace(/'/g, ''')
|
|
} else if (sign === 'ENT_NOQUOTES') {
|
|
return str
|
|
} else {
|
|
return str.replace(/"/g, '"')
|
|
}
|
|
},
|
|
enumerable: false
|
|
})
|
|
}
|
|
|
|
//htmlspecialchars的还原
|
|
if (!String.prototype.tohtml) {
|
|
Object.defineProperty(String.prototype, 'tohtml', {
|
|
value: function() {
|
|
return this.replace(/</gi, '<')
|
|
.replace(/>/gi, '>')
|
|
.replace(/"/gi, '"')
|
|
.replace(/'/g, "'")
|
|
.replace(/&/gi, '&')
|
|
},
|
|
enumerable: false
|
|
})
|
|
}
|
|
|
|
//简单的过滤xss
|
|
if (!String.prototype.xss) {
|
|
Object.defineProperty(String.prototype, 'xss', {
|
|
value: function() {
|
|
let str = this.htmlspecialchars('ENT_QUOTES')
|
|
str = str
|
|
.replace(
|
|
/(document\.cookie)|(document\.write)|(\.parentNode)|(window\.location)|(\.innerHTML)/g,
|
|
''
|
|
)
|
|
.replace(/(%0[0-8bcef])|(%1[0-9a-f])/g, '')
|
|
return str
|
|
},
|
|
enumerable: false
|
|
})
|
|
}
|
|
|
|
// js特殊字符的转义
|
|
if (!String.prototype.escape) {
|
|
Object.defineProperty(String.prototype, 'escape', {
|
|
value: function() {
|
|
return this.replace(/('|"|&|\\|\}|\{|\(|\)|;|=|\,|&)/g, '\\$1')
|
|
},
|
|
enumerable: false
|
|
})
|
|
}
|
|
|
|
if (!String.prototype.item) {
|
|
Object.defineProperty(String.prototype, 'item', {
|
|
value: function(num) {
|
|
var n = +num
|
|
if (n < 0) {
|
|
n = this.length + n
|
|
}
|
|
return this[n]
|
|
},
|
|
enumerable: false,
|
|
writable: true
|
|
})
|
|
}
|