Fix escape for non-string data

elegantweb · Sep 1, 2023 · 8ff4bc5 · 8ff4bc5
1 parent 982658c
commit 8ff4bc5
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 6 deletions.
diff --git a/src/Processor.php b/src/Processor.php
@@ -109,16 +109,28 @@ protected function isColumnRequired($name)
     }
 
     /**
-     * Indicates if the column should be escaped.
+     * Indicates if the column is a raw column, raw columns should be inacted in either way.
      *
      * @param string $name
      * @return bool
      */
-    protected function shouldEscapeColumn($name)
+    protected function isColumnRaw($name)
     {
         return !in_array($name, $this->raw);
     }
 
+    /**
+     * Indicates if the column should be escaped.
+     *
+     * @param string $name
+     * @param mixed $value
+     * @return bool
+     */
+    protected function shouldEscapeColumn($name, $value)
+    {
+        return is_string($value) && $this->isColumnRaw($name);
+    }
+
     /**
      * Sets up the source columns at the row.
      *
@@ -131,7 +143,7 @@ protected function setupSourceColumns(&$row, $record)
 
         foreach ($columns as $name => $value) {
             if ($this->isColumnRequired($name)) {
-                Arr::set($row, $name, $this->shouldEscapeColumn($name) ? e($value) : $value);
+                Arr::set($row, $name, $this->shouldEscapeColumn($name, $value) ? e($value) : $value);
             }
         }
     }
@@ -146,7 +158,7 @@ protected function setupAddonColumns(&$row, $record)
     {
         foreach ($this->addon as $name => $data) {
             if ($this->isColumnRequired($name)) {
-                Arr::set($row, $name, Helper::resolveData($data, compact('record'), $this->shouldEscapeColumn($name)));
+                Arr::set($row, $name, Helper::resolveData($data, compact('record'), $this->isColumnRaw($name)));
             }
         }
     }

diff --git a/src/Support/Helper.php b/src/Support/Helper.php
@@ -20,12 +20,12 @@ public static function resolveData($data, array $params = [], $escape = true)
             // NOTE: $params does include keys and variable names, but for methods, we don't want to use PHP 8 named arguments, so we just use array_values to fix the problem
             $data = call_user_func_array($data, array_values($params));
         }
-        // No need to escape blade data, so just return the content
         else {
+            // No need to escape blade data, so just return the content
             return static::resolveBladeData($data, $params);
         }
 
-        if ($escape) {
+        if ($escape and is_string($data)) {
             return e($data);
         } else {
             return $data;