W3cubDocs

/WordPress

wp_kses_split( string $content, array[]|string $allowed_html, string[] $allowed_protocols ): string

Searches for HTML tags, no matter how malformed.

Description

It also matches stray > characters.

Parameters

$contentstringrequired: Content to filter.
$allowed_htmlarray[]|stringrequired: An array of allowed HTML elements and attributes, or a context name such as 'post'. See wp_kses_allowed_html() for the list of accepted context names.
$allowed_protocolsstring[]required: Array of allowed URL protocols.

Return

string Content with fixed HTML tags

Source

function wp_kses_split( $content, $allowed_html, $allowed_protocols ) {
	global $pass_allowed_html, $pass_allowed_protocols;

	$pass_allowed_html      = $allowed_html;
	$pass_allowed_protocols = $allowed_protocols;

	$token_pattern = <<<REGEX
~
	(                      # Detect comments of various flavors before attempting to find tags.
		(<!--.*?(-->|$))   #  - Normative HTML comments.
		|
		</[^a-zA-Z][^>]*>  #  - Closing tags with invalid tag names.
		|
		<![^>]*>           #  - Invalid markup declaration nodes. Not all invalid nodes
		                   #    are matched so as to avoid breaking legacy behaviors.
	)
	|
	(<[^>]*(>|$)|>)        # Tag-like spans of text.
~x
REGEX;
	return preg_replace_callback( $token_pattern, '_wp_kses_split_callback', $content );
}

View all references View on Trac View on GitHub

Changelog

Version	Description
6.6.0	Recognize additional forms of invalid HTML which convert into comments.
1.0.0	Introduced.

© 2003–2024 WordPress Foundation
Licensed under the GNU GPLv2+ License.
https://developer.wordpress.org/reference/functions/wp_kses_split