diff --git a/app/code/Magento/Payment/view/adminhtml/templates/form/cc.phtml b/app/code/Magento/Payment/view/adminhtml/templates/form/cc.phtml index c888aaa6ebabc..de991650f6f75 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/form/cc.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/form/cc.phtml @@ -3,12 +3,16 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Adminhtml\Transparent\Form $block - * @var \Magento\Framework\View\Helper\SecureHtmlRenderer $secureRenderer - */ -$code = $block->escapeHtml($block->getMethodCode()); +use Magento\Framework\Escaper; +use Magento\Framework\View\Helper\SecureHtmlRenderer; +use Magento\Payment\Block\Adminhtml\Transparent\Form; + +/** @var Escaper $escaper */ +/** @var Form $block */ +/** @var SecureHtmlRenderer $secureRenderer */ +$code = $escaper->escapeHtml($block->getMethodCode()); $ccType = $block->getInfoData('cc_type'); $ccExpMonth = $block->getInfoData('cc_exp_month'); $ccExpYear = $block->getInfoData('cc_exp_year'); @@ -16,16 +20,16 @@ $ccExpYear = $block->getInfoData('cc_exp_year');
@@ -33,11 +37,11 @@ $ccExpYear = $block->getInfoData('cc_exp_year');
renderEventListenerAsTag( @@ -59,24 +63,24 @@ $ccExpYear = $block->getInfoData('cc_exp_year');
@@ -86,10 +90,10 @@ $ccExpYear = $block->getInfoData('cc_exp_year'); hasVerification()): ?>
- diff --git a/app/code/Magento/Payment/view/adminhtml/templates/info/default.phtml b/app/code/Magento/Payment/view/adminhtml/templates/info/default.phtml index 3cd88bddbfb1f..c3a6ea75568c1 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/info/default.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/info/default.phtml @@ -3,23 +3,25 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Info $block - * @see \Magento\Payment\Block\Info - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ $specificInfo = $block->getSpecificInformation(); $paymentTitle = $block->getMethod()->getConfigData('title', $block->getInfo()->getOrder()->getStoreId()); ?> -escapeHtml($paymentTitle) ?> +escapeHtml($paymentTitle) ?> $value) : ?> - + diff --git a/app/code/Magento/Payment/view/adminhtml/templates/info/instructions.phtml b/app/code/Magento/Payment/view/adminhtml/templates/info/instructions.phtml index f60c1d063addf..e96ad60cd9556 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/info/instructions.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/info/instructions.phtml @@ -3,18 +3,20 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Info $block - * @see \Magento\Payment\Block\Info - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ ?> -

escapeHtml($block->getMethod()->getTitle()) ?>

+

escapeHtml($block->getMethod()->getTitle()) ?>

getInstructions()) : ?>
escapeHtml($label) ?>:escapeHtml($label) ?>: - escapeHtml(implode("\n", $block->getValueAsArray($value, true)))) ?> + escapeHtml(implode("\n", $block->getValueAsArray($value, true)))) ?>
- +
escapeHtml($block->getInstructions())) ?>escapeHtml($block->getInstructions())) ?>
diff --git a/app/code/Magento/Payment/view/adminhtml/templates/info/pdf/default.phtml b/app/code/Magento/Payment/view/adminhtml/templates/info/pdf/default.phtml index 54b9e48d07a94..427033ead7af8 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/info/pdf/default.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/info/pdf/default.phtml @@ -3,21 +3,23 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @see \Magento\Payment\Block\Info - * @var \Magento\Payment\Block\Info $block - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ $paymentTitle = $block->getMethod()->getConfigData('title', $block->getInfo()->getOrder()->getStoreId()); ?> -escapeHtml($paymentTitle) ?>{{pdf_row_separator}} +escapeHtml($paymentTitle) ?>{{pdf_row_separator}} getSpecificInformation()) : ?> $value) : ?> - escapeHtml($label) ?>: - escapeHtml(implode(' ', $block->getValueAsArray($value))) ?> + escapeHtml($label) ?>: + escapeHtml(implode(' ', $block->getValueAsArray($value))) ?> {{pdf_row_separator}} -escapeHtml(implode('{{pdf_row_separator}}', $block->getChildPdfAsArray())) ?> +escapeHtml(implode('{{pdf_row_separator}}', $block->getChildPdfAsArray())) ?> diff --git a/app/code/Magento/Payment/view/adminhtml/templates/info/substitution.phtml b/app/code/Magento/Payment/view/adminhtml/templates/info/substitution.phtml index d187b64683e45..a8b5760db9ae3 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/info/substitution.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/info/substitution.phtml @@ -3,14 +3,17 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Info $block - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ ?>
getMethod()->getTitle() - ? $block->escapeHtml($block->getMethod()->getTitle()) - : $block->escapeHtml(__('Payment method')); ?> - escapeHtml(__(' is not available. You still can process offline actions.')) ?> + ? $escaper->escapeHtml($block->getMethod()->getTitle()) + : $escaper->escapeHtml(__('Payment method')); ?> + escapeHtml(__(' is not available. You still can process offline actions.')) ?>
diff --git a/app/code/Magento/Payment/view/adminhtml/templates/transparent/form.phtml b/app/code/Magento/Payment/view/adminhtml/templates/transparent/form.phtml index aacf0788fb43c..12ebac9ec0a4d 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/transparent/form.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/transparent/form.phtml @@ -3,11 +3,16 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** @var \Magento\Payment\Block\Transparent\Form $block */ -/** @var \Magento\Framework\View\Helper\SecureHtmlRenderer $secureRenderer */ +use Magento\Framework\Escaper; +use Magento\Framework\View\Helper\SecureHtmlRenderer; +use Magento\Payment\Block\Transparent\Form; -$code = $block->escapeHtml($block->getMethodCode()); +/** @var Escaper $escaper */ +/** @var SecureHtmlRenderer $secureRenderer */ +/** @var Form $block */ +$code = $escaper->escapeHtml($block->getMethodCode()); $ccType = $block->getInfoData('cc_type'); $ccExpYear = $block->getInfoData('cc_exp_year'); $ccExpMonth = $block->getInfoData('cc_exp_month'); @@ -19,7 +24,7 @@ $ccExpMonth = $block->getInfoData('cc_exp_month'); allowtransparency="true" frameborder="0" name="iframeTransparent" - src="escapeUrl($block->getViewFileUrl('blank.html')) ?>"> + src="escapeUrl($block->getViewFileUrl('blank.html')) ?>"> renderStyleAsTag( "display: none; width: 100%; background-color: transparent;", 'iframe#' . /* @noEscape */ $code . '-transparent-iframe' @@ -29,20 +34,20 @@ $ccExpMonth = $block->getInfoData('cc_exp_month'); class="admin__fieldset" data-mage-init='{ "transparent":{ - "cardFieldsMap":escapeHtml($block->getCardFieldsMap()) ?>, - "controller":"escapeHtml($block->getRequest()->getControllerName()) ?>", + "cardFieldsMap":escapeHtml($block->getCardFieldsMap()) ?>, + "controller":"escapeHtml($block->getRequest()->getControllerName()) ?>", "gateway":"", - "dateDelim":"escapeHtml($block->getDateDelim()) ?>", - "orderSaveUrl":"escapeUrl($block->getOrderUrl()) ?>", - "cgiUrl":"escapeUrl($block->getCgiUrl()) ?>", - "expireYearLength":"escapeHtml($block->getMethodConfigData('cc_year_length')) ?>", - "nativeAction":"escapeUrl( + "dateDelim":"escapeHtml($block->getDateDelim()) ?>", + "orderSaveUrl":"escapeUrl($block->getOrderUrl()) ?>", + "cgiUrl":"escapeUrl($block->getCgiUrl()) ?>", + "expireYearLength":"escapeHtml($block->getMethodConfigData('cc_year_length')) ?>", + "nativeAction":"escapeUrl( $block->getUrl('*/*/save', ['_secure' => $block->getRequest()->isSecure()]) ) ?>" }, "validation":[]}'>
@@ -63,14 +68,14 @@ $ccExpMonth = $block->getInfoData('cc_exp_month');
@@ -109,9 +114,9 @@ $ccExpMonth = $block->getInfoData('cc_exp_month'); name="payment[cc_exp_month]"> getCcMonths() as $k => $v): ?> @@ -122,9 +127,9 @@ $ccExpMonth = $block->getInfoData('cc_exp_month'); name="payment[cc_exp_year]"> getCcYears() as $k => $v): ?> @@ -133,10 +138,10 @@ $ccExpMonth = $block->getInfoData('cc_exp_month'); hasVerification()): ?>
- getParams(); /** @var \Magento\Framework\Json\Helper\Data $jsonHelper */ @@ -18,12 +22,12 @@ $jsonHelper = $block->getData('jsonHelper'); escapeJs($params['redirect'])}"; + window.location="{$escaper->escapeJs($params['redirect'])}"; script; ?> escapeJs($params['redirect_parent'])}"; + window.top.location="{$escaper->escapeJs($params['redirect_parent'])}"; script; ?> @@ -34,7 +38,7 @@ script; ?> escapeJs($params['order_success'])}"; + window.top.location = "{$escaper->escapeJs($params['order_success'])}"; script; ?> diff --git a/app/code/Magento/Payment/view/adminhtml/templates/transparent/info.phtml b/app/code/Magento/Payment/view/adminhtml/templates/transparent/info.phtml index 5997648ed5582..ce8f867b653e5 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/transparent/info.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/transparent/info.phtml @@ -3,17 +3,20 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Transparent\Info $block - * @var \Magento\Framework\View\Helper\SecureHtmlRenderer $secureRenderer - * @see \Magento\Payment\Block\Transparent\Info - */ +use Magento\Framework\Escaper; +use Magento\Framework\View\Helper\SecureHtmlRenderer; +use Magento\Payment\Block\Transparent\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ +/** @var SecureHtmlRenderer $secureRenderer */ ?> -
-
escapeHtml(__('We\'ll ask for your payment details before you place an order.')) ?>
+
+
escapeHtml(__('We\'ll ask for your payment details before you place an order.')) ?>
renderStyleAsTag( "display:none", - 'fieldset#payment_form_' . $block->escapeHtml($block->getMethodCode()) + 'fieldset#payment_form_' . $escaper->escapeHtml($block->getMethodCode()) ) ?> diff --git a/app/code/Magento/Payment/view/adminhtml/templates/transparent/redirect.phtml b/app/code/Magento/Payment/view/adminhtml/templates/transparent/redirect.phtml index 17fbdf780a40a..f16d30fe99dc8 100644 --- a/app/code/Magento/Payment/view/adminhtml/templates/transparent/redirect.phtml +++ b/app/code/Magento/Payment/view/adminhtml/templates/transparent/redirect.phtml @@ -3,18 +3,23 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** @var \Magento\Payment\Block\Transparent\Redirect $block */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Transparent\Redirect; + +/** @var Escaper $escaper */ +/** @var Redirect $block */ $params = $block->getPostParams(); $redirectUrl = $block->getRedirectUrl(); ?> - diff --git a/app/code/Magento/Payment/view/base/templates/info/pdf/default.phtml b/app/code/Magento/Payment/view/base/templates/info/pdf/default.phtml index a8583ea5549fe..3ee5a80526ae6 100644 --- a/app/code/Magento/Payment/view/base/templates/info/pdf/default.phtml +++ b/app/code/Magento/Payment/view/base/templates/info/pdf/default.phtml @@ -3,20 +3,22 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @see \Magento\Payment\Block\Info - * @var \Magento\Payment\Block\Info $block - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ ?> -escapeHtml($block->getMethod()->getTitle()) ?>{{pdf_row_separator}} +escapeHtml($block->getMethod()->getTitle()) ?>{{pdf_row_separator}} getSpecificInformation()) : ?> $value) : ?> - escapeHtml($label) ?>: - escapeHtml(implode(' ', $block->getValueAsArray($value))) ?> + escapeHtml($label) ?>: + escapeHtml(implode(' ', $block->getValueAsArray($value))) ?> {{pdf_row_separator}} -escapeHtml(implode('{{pdf_row_separator}}', $block->getChildPdfAsArray())) ?> +escapeHtml(implode('{{pdf_row_separator}}', $block->getChildPdfAsArray())) ?> diff --git a/app/code/Magento/Payment/view/frontend/templates/form/cc.phtml b/app/code/Magento/Payment/view/frontend/templates/form/cc.phtml index 86c3099db7550..b17aaceac15af 100644 --- a/app/code/Magento/Payment/view/frontend/templates/form/cc.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/form/cc.phtml @@ -3,12 +3,16 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Transparent\Form $block - * @var \Magento\Framework\View\Helper\SecureHtmlRenderer $secureRenderer - */ -$code = $block->escapeHtml($block->getMethodCode()); +use Magento\Framework\Escaper; +use Magento\Framework\View\Helper\SecureHtmlRenderer; +use Magento\Payment\Block\Transparent\Form; + +/** @var Escaper $escaper */ +/** @var SecureHtmlRenderer $secureRenderer */ +/** @var Form $block */ +$code = $escaper->escapeHtml($block->getMethodCode()); $ccType = $block->getInfoData('cc_type'); $ccExpMonth = $block->getInfoData('cc_exp_month'); $ccExpYear = $block->getInfoData('cc_exp_year'); @@ -17,7 +21,7 @@ $ccExpYear = $block->getInfoData('cc_exp_year'); id="payment_form_">
@@ -41,11 +45,11 @@ $ccExpYear = $block->getInfoData('cc_exp_year');
@@ -82,9 +86,9 @@ $ccExpYear = $block->getInfoData('cc_exp_year'); data-validate='{required:true, "validate-cc-exp":"#_expiration_yr"}'> getCcMonths() as $k => $v): ?> - @@ -95,9 +99,9 @@ $ccExpYear = $block->getInfoData('cc_exp_year'); @@ -109,10 +113,10 @@ $ccExpYear = $block->getInfoData('cc_exp_year'); hasVerification()): ?>
- renderEventListenerAsTag( @@ -131,12 +135,12 @@ $ccExpYear = $block->getInfoData('cc_exp_year'); '#' . $code . '_cc_cid' ) ?> getViewFileUrl('Magento_Checkout::cvv.png') . '\" alt=\"' . - $block->escapeHtml(__('Card Verification Number Visual Reference')) . - '\" title=\"' . $block->escapeHtml(__('Card Verification Number Visual Reference')) . '\" />'; ?> + $escaper->escapeHtml(__('Card Verification Number Visual Reference')) . + '\" title=\"' . $escaper->escapeHtml(__('Card Verification Number Visual Reference')) . '\" />'; ?>
- - escapeHtml(__('What is this?')) ?> + escapeHtml(__('What is this?')) ?>
diff --git a/app/code/Magento/Payment/view/frontend/templates/info/default.phtml b/app/code/Magento/Payment/view/frontend/templates/info/default.phtml index 8649c0416f124..97f353ebaa25c 100644 --- a/app/code/Magento/Payment/view/frontend/templates/info/default.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/info/default.phtml @@ -3,13 +3,15 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Info $block - * @see \Magento\Payment\Block\Info - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ $specificInfo = $block->getSpecificInformation(); -$title = $block->escapeHtml($block->getMethod()->getTitle()); +$title = $escaper->escapeHtml($block->getMethod()->getTitle()); ?>
@@ -19,9 +21,9 @@ $title = $block->escapeHtml($block->getMethod()->getTitle()); $value) : ?> - escapeHtml($label) ?> + escapeHtml($label) ?> - escapeHtml(implode("\n", $block->getValueAsArray($value, true)))) ?> + escapeHtml(implode("\n", $block->getValueAsArray($value, true)))) ?> diff --git a/app/code/Magento/Payment/view/frontend/templates/info/instructions.phtml b/app/code/Magento/Payment/view/frontend/templates/info/instructions.phtml index 60efae16b1711..3668957cff57f 100644 --- a/app/code/Magento/Payment/view/frontend/templates/info/instructions.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/info/instructions.phtml @@ -3,15 +3,17 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Info $block - * @see \Magento\Payment\Block\Info - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ ?>
-
escapeHtml($block->getMethod()->getTitle()) ?>
+
escapeHtml($block->getMethod()->getTitle()) ?>
getInstructions()) : ?> -
escapeHtml($block->getInstructions())) ?>
+
escapeHtml($block->getInstructions())) ?>
diff --git a/app/code/Magento/Payment/view/frontend/templates/info/pdf/default.phtml b/app/code/Magento/Payment/view/frontend/templates/info/pdf/default.phtml index a8583ea5549fe..3ee5a80526ae6 100644 --- a/app/code/Magento/Payment/view/frontend/templates/info/pdf/default.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/info/pdf/default.phtml @@ -3,20 +3,22 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @see \Magento\Payment\Block\Info - * @var \Magento\Payment\Block\Info $block - */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ ?> -escapeHtml($block->getMethod()->getTitle()) ?>{{pdf_row_separator}} +escapeHtml($block->getMethod()->getTitle()) ?>{{pdf_row_separator}} getSpecificInformation()) : ?> $value) : ?> - escapeHtml($label) ?>: - escapeHtml(implode(' ', $block->getValueAsArray($value))) ?> + escapeHtml($label) ?>: + escapeHtml(implode(' ', $block->getValueAsArray($value))) ?> {{pdf_row_separator}} -escapeHtml(implode('{{pdf_row_separator}}', $block->getChildPdfAsArray())) ?> +escapeHtml(implode('{{pdf_row_separator}}', $block->getChildPdfAsArray())) ?> diff --git a/app/code/Magento/Payment/view/frontend/templates/transparent/form.phtml b/app/code/Magento/Payment/view/frontend/templates/transparent/form.phtml index 06ae865be99f2..003d19db4e20a 100644 --- a/app/code/Magento/Payment/view/frontend/templates/transparent/form.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/transparent/form.phtml @@ -3,47 +3,52 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** @var \Magento\Payment\Block\Transparent\Form $block */ -/** @var \Magento\Framework\View\Helper\SecureHtmlRenderer $secureRenderer */ +use Magento\Framework\Escaper; +use Magento\Framework\View\Helper\SecureHtmlRenderer; +use Magento\Payment\Block\Transparent\Form; -$code = $block->escapeHtml($block->getMethodCode()); +/** @var Escaper $escaper */ +/** @var SecureHtmlRenderer $secureRenderer */ +/** @var Form $block */ +$code = $escaper->escapeHtml($block->getMethodCode()); $ccExpMonth = $block->getInfoData('cc_exp_month'); $ccExpYear = $block->getInfoData('cc_exp_year'); $ccType = $block->getInfoData('cc_type'); -$content = 'escapeUrl($block->getViewFileUrl('Magento_Checkout::cvv.png')) . '\" alt=\"' . - $block->escapeHtml(__('Card Verification Number Visual Reference')) . '\" title=\"' . - $block->escapeHtml(__('Card Verification Number Visual Reference')) . '\" />'; +$content = 'escapeUrl($block->getViewFileUrl('Magento_Checkout::cvv.png')) . '\" alt=\"' . + $escaper->escapeHtml(__('Card Verification Number Visual Reference')) . '\" title=\"' . + $escaper->escapeHtml(__('Card Verification Number Visual Reference')) . '\" />'; ?> + src="escapeUrl($block->getViewFileUrl('blank.html')) ?>"> renderStyleAsTag( "display: none; width: 100%; background-color: transparent;", 'iframe#' . /* @noEscape */ $code . '-transparent-iframe' ) ?>
$block->getRequest()->isSecure()]) ) ?>" }, "validation":[]}'>
- escapeHtml(__('Credit Card Information')) ?>\ + escapeHtml(__('Credit Card Information')) ?>\
escapeUrl($block->getViewFileUrl('Magento_Che
@@ -112,9 +117,9 @@ $content = 'escapeUrl($block->getViewFileUrl('Magento_Che "validate-cc-exp":"#_expiration_yr" }'> getCcMonths() as $k => $v): ?> - @@ -128,9 +133,9 @@ $content = 'escapeUrl($block->getViewFileUrl('Magento_Che data-container="-cc-year" data-validate='{required:true}'> getCcYears() as $k => $v): ?> - @@ -142,13 +147,13 @@ $content = 'escapeUrl($block->getViewFileUrl('Magento_Che hasVerification()): ?>
escapeUrl($block->getViewFileUrl('Magento_Che ) ?>
" data-mage-init='{ "tooltip": {"content": ""} }'> - escapeHtml(__('What is this?')) ?> + escapeHtml(__('What is this?')) ?>
diff --git a/app/code/Magento/Payment/view/frontend/templates/transparent/iframe.phtml b/app/code/Magento/Payment/view/frontend/templates/transparent/iframe.phtml index ac4cd87eb9962..ad6fad0f87291 100644 --- a/app/code/Magento/Payment/view/frontend/templates/transparent/iframe.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/transparent/iframe.phtml @@ -3,10 +3,15 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** @var \Magento\Payment\Block\Transparent\Iframe $block */ -/** @var \Magento\Framework\View\Helper\SecureHtmlRenderer $secureRenderer */ +use Magento\Framework\Escaper; +use Magento\Framework\View\Helper\SecureHtmlRenderer; +use Magento\Payment\Block\Transparent\Iframe; +/** @var Escaper $escaper */ +/** @var SecureHtmlRenderer $secureRenderer */ +/** @var Iframe $block */ $params = $block->getParams(); ?> @@ -14,7 +19,7 @@ $params = $block->getParams(); escapeJs($params['redirect'])}"; + window.location="{$escaper->escapeJs($params['redirect'])}"; script; ?> @@ -27,7 +32,7 @@ script; function($) { var parent = window.parent; $(parent).trigger('clearTimeout'); - parent.location="{$block->escapeJs($params['redirect_parent'])}"; + parent.location="{$escaper->escapeJs($params['redirect_parent'])}"; } ); script; @@ -72,7 +77,7 @@ script; ?> escapeJs($params['order_success'])}"; + window.parent.location = "{$escaper->escapeJs($params['order_success'])}"; script; ?> diff --git a/app/code/Magento/Payment/view/frontend/templates/transparent/info.phtml b/app/code/Magento/Payment/view/frontend/templates/transparent/info.phtml index 49c35e844c39a..a869c4b40d661 100644 --- a/app/code/Magento/Payment/view/frontend/templates/transparent/info.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/transparent/info.phtml @@ -3,19 +3,23 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** - * @var \Magento\Payment\Block\Transparent\Info $block - * @var \Magento\Framework\View\Helper\SecureHtmlRenderer $secureRenderer - * @see \Magento\Payment\Block\Transparent\Info - */ +use Magento\Framework\Escaper; +use Magento\Framework\View\Helper\SecureHtmlRenderer; +use Magento\Payment\Block\Transparent\Info; + +/** @var Escaper $escaper */ +/** @var Info $block */ +/** @var SecureHtmlRenderer $secureRenderer */ +/** @see Info */ ?> -
+
- escapeHtml(__('We\'ll ask for your payment details before you place an order.')) ?> + escapeHtml(__('We\'ll ask for your payment details before you place an order.')) ?>
renderStyleAsTag( "display:none", - 'fieldset#payment_form_' . $block->escapeHtml($block->getMethodCode()) + 'fieldset#payment_form_' . $escaper->escapeHtml($block->getMethodCode()) ) ?> diff --git a/app/code/Magento/Payment/view/frontend/templates/transparent/redirect.phtml b/app/code/Magento/Payment/view/frontend/templates/transparent/redirect.phtml index 17fbdf780a40a..f16d30fe99dc8 100644 --- a/app/code/Magento/Payment/view/frontend/templates/transparent/redirect.phtml +++ b/app/code/Magento/Payment/view/frontend/templates/transparent/redirect.phtml @@ -3,18 +3,23 @@ * Copyright © Magento, Inc. All rights reserved. * See COPYING.txt for license details. */ +declare(strict_types=1); -/** @var \Magento\Payment\Block\Transparent\Redirect $block */ +use Magento\Framework\Escaper; +use Magento\Payment\Block\Transparent\Redirect; + +/** @var Escaper $escaper */ +/** @var Redirect $block */ $params = $block->getPostParams(); $redirectUrl = $block->getRedirectUrl(); ?> - $value):?> - +