acdc-parser 0.8.0

`AsciiDoc` parser using PEG grammars
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86

use std::str::FromStr;

/// Safe mode to use when processing the document. This follows from what is described in
/// <https://docs.asciidoctor.org/asciidoctor/latest/safe-modes/> and is intended to
/// provide similar functionality as Asciidoctor.
#[derive(Debug, Clone, Default, PartialOrd, PartialEq, Eq, Copy)]
pub enum SafeMode {
    /// The `UNSAFE` safe mode level disables all security measures.
    #[default]
    Unsafe = 0,

    /// The `SAFE` safe mode level prevents access to files which reside outside of the
    /// parent directory of the source file. Include directives (`include::[]`) are
    /// enabled, but paths to include files must be within the parent directory. This mode
    /// allows assets (such as the stylesheet) to be embedded in the document.
    Safe,

    /// The `SERVER` safe mode level disallows the document from setting attributes that
    /// would affect conversion of the document. This level trims docfile to its relative
    /// path and prevents the document from:
    ///
    /// - setting source-highlighter, doctype, docinfo and backend
    /// - seeing docdir (as it can reveal information about the host filesystem)
    ///
    /// It allows icons and linkcss. No includes from a url are allowed unless the
    /// `allow-uri-read` attribute is set.
    Server,

    /// The `SECURE` safe mode level disallows the document from attempting to read files
    /// from the file system and including their contents into the document. Additionally,
    /// it:
    ///
    /// - disables icons
    /// - disables include directives (`include::[]`)
    /// - data can not be retrieved from URIs
    /// - prevents access to stylesheets and JavaScript files
    /// - sets the backend to html5
    /// - disables docinfo files
    /// - disables data-uri
    /// - disables interactive (opts=interactive) and inline (opts=inline) modes for SVGs
    /// - disables docdir and docfile (as these can reveal information about the host
    ///   filesystem)
    /// - disables source highlighting
    ///
    /// Note: `GitHub` processes `AsciiDoc` files using the `SECURE` mode.
    Secure,
}

impl FromStr for SafeMode {
    type Err = String;

    fn from_str(s: &str) -> Result<Self, Self::Err> {
        match s.to_lowercase().as_str() {
            "unsafe" => Ok(Self::Unsafe),
            "safe" => Ok(Self::Safe),
            "server" => Ok(Self::Server),
            "secure" => Ok(Self::Secure),
            _ => Err(format!(
                "invalid safe mode: '{s}', expected: unsafe, safe, server, secure"
            )),
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_from_str() -> Result<(), String> {
        assert_eq!(SafeMode::from_str("unsafe")?, SafeMode::Unsafe);
        assert_eq!(SafeMode::from_str("UNSAFE")?, SafeMode::Unsafe);
        assert_eq!(SafeMode::from_str("safe")?, SafeMode::Safe);
        assert_eq!(SafeMode::from_str("server")?, SafeMode::Server);
        assert_eq!(SafeMode::from_str("secure")?, SafeMode::Secure);
        assert!(SafeMode::from_str("invalid").is_err());
        Ok(())
    }

    #[test]
    fn test_ordering() {
        assert!(SafeMode::Unsafe < SafeMode::Safe);
        assert!(SafeMode::Safe < SafeMode::Server);
        assert!(SafeMode::Server < SafeMode::Secure);
    }
}