git subrepo commit (merge) mailcow/src/mailcow-dockerized
subrepo: subdir: "mailcow/src/mailcow-dockerized"
merged: "32243e56"
upstream: origin: "https://github.com/mailcow/mailcow-dockerized.git"
branch: "master"
commit: "e2b4b6f6"
git-subrepo: version: "0.4.3"
origin: "???"
commit: "???"
Change-Id: I51e2016ef5ab88a8b0bdc08551b18f48ceef0aa5
diff --git a/mailcow/src/mailcow-dockerized/data/web/inc/lib/vendor/twig/twig/src/TokenParser/SandboxTokenParser.php b/mailcow/src/mailcow-dockerized/data/web/inc/lib/vendor/twig/twig/src/TokenParser/SandboxTokenParser.php
new file mode 100644
index 0000000..c919556
--- /dev/null
+++ b/mailcow/src/mailcow-dockerized/data/web/inc/lib/vendor/twig/twig/src/TokenParser/SandboxTokenParser.php
@@ -0,0 +1,66 @@
+<?php
+
+/*
+ * This file is part of Twig.
+ *
+ * (c) Fabien Potencier
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Twig\TokenParser;
+
+use Twig\Error\SyntaxError;
+use Twig\Node\IncludeNode;
+use Twig\Node\Node;
+use Twig\Node\SandboxNode;
+use Twig\Node\TextNode;
+use Twig\Token;
+
+/**
+ * Marks a section of a template as untrusted code that must be evaluated in the sandbox mode.
+ *
+ * {% sandbox %}
+ * {% include 'user.html' %}
+ * {% endsandbox %}
+ *
+ * @see https://twig.symfony.com/doc/api.html#sandbox-extension for details
+ *
+ * @internal
+ */
+final class SandboxTokenParser extends AbstractTokenParser
+{
+ public function parse(Token $token): Node
+ {
+ $stream = $this->parser->getStream();
+ $stream->expect(/* Token::BLOCK_END_TYPE */ 3);
+ $body = $this->parser->subparse([$this, 'decideBlockEnd'], true);
+ $stream->expect(/* Token::BLOCK_END_TYPE */ 3);
+
+ // in a sandbox tag, only include tags are allowed
+ if (!$body instanceof IncludeNode) {
+ foreach ($body as $node) {
+ if ($node instanceof TextNode && ctype_space($node->getAttribute('data'))) {
+ continue;
+ }
+
+ if (!$node instanceof IncludeNode) {
+ throw new SyntaxError('Only "include" tags are allowed within a "sandbox" section.', $node->getTemplateLine(), $stream->getSourceContext());
+ }
+ }
+ }
+
+ return new SandboxNode($body, $token->getLine(), $this->getTag());
+ }
+
+ public function decideBlockEnd(Token $token): bool
+ {
+ return $token->test('endsandbox');
+ }
+
+ public function getTag(): string
+ {
+ return 'sandbox';
+ }
+}