Fix #1712 merge iframe whitelist and object/embed whitelist

modules/admin/admin.admin.controller.php

@@ -702,27 +702,18 @@ class adminAdminController extends admin
 	{
 		$vars = Context::getRequestVars();
 		
-		// iframe filter
-		$iframe_whitelist = $vars->mediafilter_iframe;
-		$iframe_whitelist = array_filter(array_map('trim', preg_split('/[\r\n]/', $iframe_whitelist)), function($item) {
+		// Media Filter iframe/embed whitelist
+		$whitelist = $vars->mediafilter_whitelist;
+		$whitelist = array_filter(array_map('trim', preg_split('/[\r\n]/', $whitelist)), function($item) {
 			return $item !== '';
 		});
-		$iframe_whitelist = array_unique(array_map(function($item) {
+		$whitelist = array_unique(array_map(function($item) {
 			return Rhymix\Framework\Filters\MediaFilter::formatPrefix($item);
-		}, $iframe_whitelist));
-		natcasesort($iframe_whitelist);
-		Rhymix\Framework\Config::set('mediafilter.iframe', array_values($iframe_whitelist));
-		
-		// object filter
-		$object_whitelist = $vars->mediafilter_object;
-		$object_whitelist = array_filter(array_map('trim', preg_split('/[\r\n]/', $object_whitelist)), function($item) {
-			return $item !== '';
-		});
-		$object_whitelist = array_unique(array_map(function($item) {
-			return Rhymix\Framework\Filters\MediaFilter::formatPrefix($item);
-		}, $object_whitelist));
-		natcasesort($object_whitelist);
-		Rhymix\Framework\Config::set('mediafilter.object', array_values($object_whitelist));
+		}, $whitelist));
+		natcasesort($whitelist);
+		Rhymix\Framework\Config::set('mediafilter.whitelist', array_values($whitelist));
+		Rhymix\Framework\Config::set('mediafilter.iframe', []);
+		Rhymix\Framework\Config::set('mediafilter.object', []);
 		
 		// HTML classes
 		$classes = $vars->mediafilter_classes;

modules/admin/admin.admin.view.php

@@ -488,8 +488,7 @@ class adminAdminView extends admin
 	function dispAdminConfigSecurity()
 	{
 		// Load embed filter.
-		context::set('mediafilter_iframe', implode(PHP_EOL, Rhymix\Framework\Filters\MediaFilter::getIframeWhitelist()));
-		context::set('mediafilter_object', implode(PHP_EOL, Rhymix\Framework\Filters\MediaFilter::getObjectWhitelist()));
+		context::set('mediafilter_whitelist', implode(PHP_EOL, Rhymix\Framework\Filters\MediaFilter::getWhitelist()));
 		context::set('mediafilter_classes', implode(PHP_EOL, Rhymix\Framework\Config::get('mediafilter.classes') ?: array()));
 		
 		// Load robot user agents.

modules/admin/tpl/config_security.html

@@ -11,15 +11,9 @@
 		<input type="hidden" name="act" value="procAdminUpdateSecurity" />
 		<input type="hidden" name="xe_validator_id" value="modules/admin/tpl/config_security/1" />
 		<div class="x_control-group">
-			<label class="x_control-label" for="mediafilter_iframe">iframe</label>
+			<label class="x_control-label" for="mediafilter_whitelist">iframe/embed</label>
 			<div class="x_controls" style="margin-right:14px">
-				<textarea name="mediafilter_iframe" id="mediafilter_iframe" rows="8" style="width:100%;">{$mediafilter_iframe}</textarea>
-			</div>
-		</div>
-		<div class="x_control-group">
-			<label class="x_control-label" for="mediafilter_object">object/embed</label>
-			<div class="x_controls" style="margin-right:14px">
-				<textarea name="mediafilter_object" id="mediafilter_object" rows="8" style="width:100%;">{$mediafilter_object}</textarea>
+				<textarea name="mediafilter_whitelist" id="mediafilter_whitelist" rows="8" style="width:100%;">{$mediafilter_whitelist}</textarea>
 			</div>
 		</div>
 		<div class="x_control-group">