# Copyright (C) 2012-2025 Zammad Foundation, https://zammad-foundation.org/ class NotificationFactory::Template =begin examples how to use cleaned_template = NotificationFactory::Template.new( 'some template #{ticket.title} #{config.fqdn}', true, false, # Allow ERB tags in the template? ).to_s =end def initialize(template, escape, trusted) @template = template @escape = escape @trusted = trusted end def to_s result = @template result.gsub!(%r{<%(?!%)}, '<%%') if !@trusted result = result.gsub(%r{(?\s*|\s*<.+?>\z}, '') case input_template when %r{\At\('(.+?)'\)\z}m %(<%= t "#{sanitize_text($1)}", #{@escape} %>) when %r{\At\((.+?)\)\z}m %(<%= t d"#{sanitize_object_name($1)}", #{@escape} %>) when %r{\Adt\((.+?)\)\z}m %(<%= dt "#{sanitize_text($1)}" %>) when %r{\Aconfig\.(.+?)\z}m %(<%= c "#{sanitize_object_name($1)}", #{@escape} %>) else %(<%= d "#{sanitize_object_name(input_template)}", #{@escape} %>) end end result.gsub(%r{\\\#{\s*(.*?)\s*}}m, '#{\1}') # rubocop:disable Lint/InterpolationCheck end def sanitize_text(string) string&.tr("\t\r\n", '') &.gsub(%r{(?