escape lang directive echos

taylorotwell · taylorotwell · commit d3c0a369057d · 2018-09-02T13:28:46.000+02:00
diff --git a/src/Illuminate/View/Compilers/Concerns/CompilesTranslations.php b/src/Illuminate/View/Compilers/Concerns/CompilesTranslations.php
@@ -18,7 +18,7 @@ protected function compileLang($expression)
             return "<?php \$__env->startTranslation{$expression}; ?>";
         }
 
-        return "<?php echo app('translator')->getFromJson{$expression}; ?>";
+        return "<?php echo e(app('translator')->getFromJson{$expression}); ?>";
     }
 
     /**
@@ -28,7 +28,7 @@ protected function compileLang($expression)
      */
     protected function compileEndlang()
     {
-        return '<?php echo $__env->renderTranslation(); ?>';
+        return '<?php echo e($__env->renderTranslation()); ?>';
     }
 
     /**
@@ -39,6 +39,6 @@ protected function compileEndlang()
      */
     protected function compileChoice($expression)
     {
-        return "<?php echo app('translator')->choice{$expression}; ?>";
+        return "<?php echo e(app('translator')->choice{$expression}); ?>";
     }
 }
diff --git a/tests/View/Blade/BladeExpressionTest.php b/tests/View/Blade/BladeExpressionTest.php
@@ -6,13 +6,13 @@ class BladeExpressionTest extends AbstractBladeTestCase
 {
     public function testExpressionsOnTheSameLine()
     {
-        $this->assertEquals('<?php echo app(\'translator\')->getFromJson(foo(bar(baz(qux(breeze()))))); ?> space () <?php echo app(\'translator\')->getFromJson(foo(bar)); ?>', $this->compiler->compileString('@lang(foo(bar(baz(qux(breeze()))))) space () @lang(foo(bar))'));
+        $this->assertEquals('<?php echo e(app(\'translator\')->getFromJson(foo(bar(baz(qux(breeze())))))); ?> space () <?php echo e(app(\'translator\')->getFromJson(foo(bar))); ?>', $this->compiler->compileString('@lang(foo(bar(baz(qux(breeze()))))) space () @lang(foo(bar))'));
     }
 
     public function testExpressionWithinHTML()
     {
         $this->assertEquals('<html <?php echo e($foo); ?>>', $this->compiler->compileString('<html {{ $foo }}>'));
         $this->assertEquals('<html<?php echo e($foo); ?>>', $this->compiler->compileString('<html{{ $foo }}>'));
-        $this->assertEquals('<html <?php echo e($foo); ?> <?php echo app(\'translator\')->getFromJson(\'foo\'); ?>>', $this->compiler->compileString('<html {{ $foo }} @lang(\'foo\')>'));
+        $this->assertEquals('<html <?php echo e($foo); ?> <?php echo e(app(\'translator\')->getFromJson(\'foo\')); ?>>', $this->compiler->compileString('<html {{ $foo }} @lang(\'foo\')>'));
     }
 }
diff --git a/tests/View/Blade/BladeLangTest.php b/tests/View/Blade/BladeLangTest.php
@@ -7,13 +7,13 @@ class BladeLangTest extends AbstractBladeTestCase
     public function testStatementThatContainsNonConsecutiveParenthesisAreCompiled()
     {
         $string = "Foo @lang(function_call('foo(blah)')) bar";
-        $expected = "Foo <?php echo app('translator')->getFromJson(function_call('foo(blah)')); ?> bar";
+        $expected = "Foo <?php echo e(app('translator')->getFromJson(function_call('foo(blah)'))); ?> bar";
         $this->assertEquals($expected, $this->compiler->compileString($string));
     }
 
     public function testLanguageAndChoicesAreCompiled()
     {
-        $this->assertEquals('<?php echo app(\'translator\')->getFromJson(\'foo\'); ?>', $this->compiler->compileString("@lang('foo')"));
-        $this->assertEquals('<?php echo app(\'translator\')->choice(\'foo\', 1); ?>', $this->compiler->compileString("@choice('foo', 1)"));
+        $this->assertEquals('<?php echo e(app(\'translator\')->getFromJson(\'foo\')); ?>', $this->compiler->compileString("@lang('foo')"));
+        $this->assertEquals('<?php echo e(app(\'translator\')->choice(\'foo\', 1)); ?>', $this->compiler->compileString("@choice('foo', 1)"));
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@ protected function compileLang($expression)`
`18`	`18`	`return "<?php \$__env->startTranslation{$expression}; ?>";`
`19`	`19`	`}`
`20`	`20`
`21`		`- return "<?php echo app('translator')->getFromJson{$expression}; ?>";`
	`21`	`+ return "<?php echo e(app('translator')->getFromJson{$expression}); ?>";`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`/**`
`@@ -28,7 +28,7 @@ protected function compileLang($expression)`
`28`	`28`	`*/`
`29`	`29`	`protected function compileEndlang()`
`30`	`30`	`{`
`31`		`- return '<?php echo $__env->renderTranslation(); ?>';`
	`31`	`+ return '<?php echo e($__env->renderTranslation()); ?>';`
`32`	`32`	`}`
`33`	`33`
`34`	`34`	`/**`
`@@ -39,6 +39,6 @@ protected function compileEndlang()`
`39`	`39`	`*/`
`40`	`40`	`protected function compileChoice($expression)`
`41`	`41`	`{`
`42`		`- return "<?php echo app('translator')->choice{$expression}; ?>";`
	`42`	`+ return "<?php echo e(app('translator')->choice{$expression}); ?>";`
`43`	`43`	`}`
`44`	`44`	`}`
Original file line number	Diff line number	Diff line change
`@@ -6,13 +6,13 @@ class BladeExpressionTest extends AbstractBladeTestCase`
`6`	`6`	`{`
`7`	`7`	`public function testExpressionsOnTheSameLine()`
`8`	`8`	`{`
`9`		`- $this->assertEquals('<?php echo app(\'translator\')->getFromJson(foo(bar(baz(qux(breeze()))))); ?> space () <?php echo app(\'translator\')->getFromJson(foo(bar)); ?>', $this->compiler->compileString('@lang(foo(bar(baz(qux(breeze()))))) space () @lang(foo(bar))'));`
	`9`	`+ $this->assertEquals('<?php echo e(app(\'translator\')->getFromJson(foo(bar(baz(qux(breeze())))))); ?> space () <?php echo e(app(\'translator\')->getFromJson(foo(bar))); ?>', $this->compiler->compileString('@lang(foo(bar(baz(qux(breeze()))))) space () @lang(foo(bar))'));`
`10`	`10`	`}`
`11`	`11`
`12`	`12`	`public function testExpressionWithinHTML()`
`13`	`13`	`{`
`14`	`14`	`$this->assertEquals('<html <?php echo e($foo); ?>>', $this->compiler->compileString('<html {{ $foo }}>'));`
`15`	`15`	`$this->assertEquals('<html<?php echo e($foo); ?>>', $this->compiler->compileString('<html{{ $foo }}>'));`
`16`		`- $this->assertEquals('<html <?php echo e($foo); ?> <?php echo app(\'translator\')->getFromJson(\'foo\'); ?>>', $this->compiler->compileString('<html {{ $foo }} @lang(\'foo\')>'));`
	`16`	`+ $this->assertEquals('<html <?php echo e($foo); ?> <?php echo e(app(\'translator\')->getFromJson(\'foo\')); ?>>', $this->compiler->compileString('<html {{ $foo }} @lang(\'foo\')>'));`
`17`	`17`	`}`
`18`	`18`	`}`
Original file line number	Diff line number	Diff line change
`@@ -7,13 +7,13 @@ class BladeLangTest extends AbstractBladeTestCase`
`7`	`7`	`public function testStatementThatContainsNonConsecutiveParenthesisAreCompiled()`
`8`	`8`	`{`
`9`	`9`	`$string = "Foo @lang(function_call('foo(blah)')) bar";`
`10`		`- $expected = "Foo <?php echo app('translator')->getFromJson(function_call('foo(blah)')); ?> bar";`
	`10`	`+ $expected = "Foo <?php echo e(app('translator')->getFromJson(function_call('foo(blah)'))); ?> bar";`
`11`	`11`	`$this->assertEquals($expected, $this->compiler->compileString($string));`
`12`	`12`	`}`
`13`	`13`
`14`	`14`	`public function testLanguageAndChoicesAreCompiled()`
`15`	`15`	`{`
`16`		`- $this->assertEquals('<?php echo app(\'translator\')->getFromJson(\'foo\'); ?>', $this->compiler->compileString("@lang('foo')"));`
`17`		`- $this->assertEquals('<?php echo app(\'translator\')->choice(\'foo\', 1); ?>', $this->compiler->compileString("@choice('foo', 1)"));`
	`16`	`+ $this->assertEquals('<?php echo e(app(\'translator\')->getFromJson(\'foo\')); ?>', $this->compiler->compileString("@lang('foo')"));`
	`17`	`+ $this->assertEquals('<?php echo e(app(\'translator\')->choice(\'foo\', 1)); ?>', $this->compiler->compileString("@choice('foo', 1)"));`
`18`	`18`	`}`
`19`	`19`	`}`