[a-z][^\s>/]*+ ) (? [^\s>/][^\s=>/]*+ ) # first char can be pretty much anything, including = (? (?> "[^"]*+" | \'[^\']*+\' | [^\s>]*+ # unquoted values can contain quotes, = and / ) ) (? (?&attname) (?: \s*+ = \s*+ (?&attval) )?+ ) (? [^\s>] ) # most crap inside tag is ignored, will eat the last / in self closing tags (? <(?&tagname) (?: \s*+ # spaces between attributes not required: bold red text (?> (?&attrib) | # order matters (?&crap) # if not an attribute, eat the crap ) )*+ \s*+ /?+ \s*+ > ) )'; // removes onanything attributes from all matched HTML tags function remove_event_attributes($html){ global $redefs; $re = '(?&tag)' . $redefs; return preg_replace("~$re~xie", 'remove_event_attributes_from_tag("$0")', $html); } // removes onanything attributes from a single opening tag function remove_event_attributes_from_tag($tag){ global $redefs; $re = '( ^ <(?&tagname) ) | \G \s*+ (?> ((?&attrib)) | ((?&crap)) )' . $redefs; return preg_replace("~$re~xie", '"$1$3"? "$0": (preg_match("/^on/i", "$2")? " ": "$0")', $tag); } // test $str = ' '; echo $str . "\n----------------------\n"; echo remove_event_attributes($str); ?>