Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Hide sensitive information with SensitiveParameter attribute #5189

Merged
merged 30 commits into from
Jul 16, 2022
Merged

Hide sensitive information with SensitiveParameter attribute #5189

merged 30 commits into from
Jul 16, 2022

Conversation

staabm
Copy link
Member

@staabm staabm commented Jul 11, 2022

New feature for PHP 8.2: Redact parameters in back traces

@staabm staabm marked this pull request as draft July 11, 2022 14:34
@staabm staabm marked this pull request as ready for review July 11, 2022 14:37
staabm
staabm commented Jul 12, 2022
View reviewed changes
redaxo/src/core/lib/login/login.php Outdated
Comment on lines 101 to 105
#[\SensitiveParameter]
$login,
#[\SensitiveParameter]
$password,
$isPreHashed = false
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

gibts hier noch ein cs fixer setting was wir einstellen könnten, damit die parameter besser eingerückt würden? gibts nen cs-fixer setting wg. attributes auf separater zeile?

staabm
staabm commented Jul 12, 2022
View reviewed changes
phpstan.neon.dist Outdated
@@ -33,6 +33,7 @@ parameters:
symfony:
console_application_loader: .tools/phpstan/console.php
ignoreErrors:
- '#.*Attribute class SensitiveParameter does not exist.*#'
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

wird in phpstan implementiert mit phpstan/phpstan-src#1511

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Psalm upstream issue:
vimeo/psalm#8262

@staabm staabm marked this pull request as draft July 14, 2022 07:58
@staabm
Copy link
Member Author

staabm commented Jul 14, 2022

der PR ist fertig.. wir warten auf tool support in phpstan/psalm, siehe linked issues

@staabm
Copy link
Member Author

staabm commented Jul 16, 2022

Alternativ: errors baselinen, da das attribut auch ohne tool support einen mehrwert zur laufzeit hat

@staabm staabm marked this pull request as ready for review July 16, 2022 13:41
@staabm staabm added the automerge Automatisch PR rebasen und mergen label Jul 16, 2022
@kodiakhq kodiakhq bot merged commit deb82ed into main Jul 16, 2022
@kodiakhq kodiakhq bot deleted the staabm-patch-2 branch July 16, 2022 13:49
@rex-bot rex-bot removed the automerge Automatisch PR rebasen und mergen label Jul 16, 2022
@gharlan gharlan added this to the REDAXO 5.14 milestone Jul 18, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gharlan gharlan gharlan left review comments

Assignees
No one assigned
Labels
None yet
Milestone
REDAXO 5.14
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@staabm @gharlan @rex-bot