Valinor

danog/Valinor

Fork 0

mirror of https://github.com/danog/Valinor.git synced 2024-12-02 17:48:14 +01:00

Commit Graph

Author	SHA1	Message	Date
Romain Canon	ad1207153e	feat!: rework messages body and parameters features The `\CuyZ\Valinor\Mapper\Tree\Message\Message` interface is no longer a `Stringable`, however it defines a new method `body` that must return the body of the message, which can contain placeholders that will be replaced by parameters. These parameters can now be defined by implementing the interface `\CuyZ\Valinor\Mapper\Tree\Message\HasParameters`. This leads to the deprecation of the no longer needed interface `\CuyZ\Valinor\Mapper\Tree\Message\TranslatableMessage` which had a confusing name. ```php final class SomeException extends DomainException implements ErrorMessage, HasParameters, HasCode { private string $someParameter; public function __construct(string $someParameter) { parent::__construct(); $this->someParameter = $someParameter; } public function body() : string { return 'Some message / {some_parameter} / {source_value}'; } public function parameters(): array { return [ 'some_parameter' => $this->someParameter, ]; } public function code() : string { // A unique code that can help to identify the error return 'some_unique_code'; } } ```	2022-07-25 22:05:31 +02:00
Romain Canon	6ce1a439ad	feat!: filter userland exceptions to hide potential sensible data /!\ This change fixes a security issue. Userland exception thrown in a constructor will not be automatically caught by the mapper anymore. This prevents messages with sensible information from reaching the final user — for instance an SQL exception showing a part of a query. To allow exceptions to be considered as safe, the new method `MapperBuilder::filterExceptions()` must be used, with caution. ```php final class SomeClass { public function __construct(private string $value) { \Webmozart\Assert\Assert::startsWith($value, 'foo_'); } } try { (new \CuyZ\Valinor\MapperBuilder()) ->filterExceptions(function (Throwable $exception) { if ($exception instanceof \Webmozart\Assert\InvalidArgumentException) { return \CuyZ\Valinor\Mapper\Tree\Message\ThrowableMessage::from($exception); } // If the exception should not be caught by this library, it // must be thrown again. throw $exception; }) ->mapper() ->map(SomeClass::class, 'bar_baz'); } catch (\CuyZ\Valinor\Mapper\MappingError $exception) { // Should print something similar to: // > Expected a value to start with "foo_". Got: "bar_baz" echo $exception->node()->messages()[0]; } ```	2022-07-08 13:58:48 +02:00
Nathan Boiron	56ff6849bc	doc: introduce mkdocs as a static documentation generator	2022-06-10 17:32:07 +02:00

Author

SHA1

Message

Date

Romain Canon

ad1207153e

feat!: rework messages body and parameters features

The `\CuyZ\Valinor\Mapper\Tree\Message\Message` interface is no longer
a `Stringable`, however it defines a new method `body` that must return
the body of the message, which can contain placeholders that will be
replaced by parameters.

These parameters can now be defined by implementing the interface
`\CuyZ\Valinor\Mapper\Tree\Message\HasParameters`.

This leads to the deprecation of the no longer needed interface
`\CuyZ\Valinor\Mapper\Tree\Message\TranslatableMessage` which had a
confusing name.

```php
final class SomeException
    extends DomainException
    implements ErrorMessage, HasParameters, HasCode
{
    private string $someParameter;

    public function __construct(string $someParameter)
    {
        parent::__construct();

        $this->someParameter = $someParameter;
    }

    public function body() : string
    {
        return 'Some message / {some_parameter} / {source_value}';
    }

    public function parameters(): array
    {
        return [
            'some_parameter' => $this->someParameter,
        ];
    }

    public function code() : string
    {
        // A unique code that can help to identify the error
        return 'some_unique_code';
    }
}
```

2022-07-25 22:05:31 +02:00

Romain Canon

6ce1a439ad

feat!: filter userland exceptions to hide potential sensible data

/!\ This change fixes a security issue.

Userland exception thrown in a constructor will not be automatically
caught by the mapper anymore. This prevents messages with sensible
information from reaching the final user — for instance an SQL exception
showing a part of a query.

To allow exceptions to be considered as safe, the new method
`MapperBuilder::filterExceptions()` must be used, with caution.

```php
final class SomeClass
{
    public function __construct(private string $value)
    {
        \Webmozart\Assert\Assert::startsWith($value, 'foo_');
    }
}

try {
    (new \CuyZ\Valinor\MapperBuilder())
        ->filterExceptions(function (Throwable $exception) {
            if ($exception instanceof \Webmozart\Assert\InvalidArgumentException) {
                return \CuyZ\Valinor\Mapper\Tree\Message\ThrowableMessage::from($exception);
            }

            // If the exception should not be caught by this library, it
            // must be thrown again.
            throw $exception;
        })
        ->mapper()
        ->map(SomeClass::class, 'bar_baz');
} catch (\CuyZ\Valinor\Mapper\MappingError $exception) {
    // Should print something similar to:
    // > Expected a value to start with "foo_". Got: "bar_baz"
    echo $exception->node()->messages()[0];
}
```

2022-07-08 13:58:48 +02:00

Nathan Boiron

56ff6849bc

doc: introduce mkdocs as a static documentation generator

2022-06-10 17:32:07 +02:00

3 Commits