[HttpFoundation] Add Url and UrlParser
#53346
Conversation
7adb171 to
1407a55
Compare
| /** | ||
| * @author Alexandre Daubois <alex.daubois@gmail.com> | ||
| */ | ||
| final class Parameters implements \Stringable |
There was a problem hiding this comment.
I would still name this àI would name this class Dsn`
| @@ -92,17 +92,17 @@ public static function invalidDsnProvider(): iterable | |||
| { | |||
| yield [ | |||
| 'some://', | |||
| 'The mailer DSN is invalid.', | |||
| 'The "some://" DSN is invalid.', | |||
There was a problem hiding this comment.
Exposing the DSN here means it could leak sensitive data to a log file
|
see #32546 for a related discussion |
|
Here is a link to a PR I made to try introduce a DSN component. Symfony is all about following official standards. There is no standard for DSN (believe it or not). That is why it might be hard to push for a dedicated DSN component. |
|
💯 That's why I wrote we might need a URL parser, not a DSN parser ;) |
|
Alright I see the distinction. A bit of renaming is needed here. An URL parser could belong to HttpFoundation, as it already has some "UrlHelper". |
I understand, but we created our own standard of DSN in the Symfony world, which is spread across different components |
That's not the case, each DSN in Symfony is potentially adhoc for the components that need one. There are already differences that are hard to abstract. |
1407a55 to
303a8c9
Compare
Yes, that work has been implementation driven. I looked at how Symfony is using DSN and I created a specification for it. But making it a dedicated component says more "This is how Symfony think DSN should work". If we are just implementing DSN in various other components means we can eat the cake and have it too (ie don't agree on a standard but use DSN as we like). Im obviously not against a DSN component or let a official DSN parser be part of HTTPFoundation, a new URI component. Im just trying to give some background or a TLDR for #36999 and #32546. |
Would you have an example? From what I saw during the
Thank you for that! 🙏 |
It is mostly the "function" part. Some components supports DSN like: |
|
Just a quick thought but shouldn't we just use Tobias' package in the framework? |
Dsn\Parser and Dsn\ParametersUrl and UrlParser
|
|
||
| class InvalidUrlException extends \InvalidArgumentException | ||
| { | ||
| public function __construct(string $dsn) |
There was a problem hiding this comment.
parameter can be removed IMHO
| $dsn = $this->scheme.'://'; | ||
|
|
||
| if ($this->isAuthenticated()) { | ||
| $dsn .= rawurlencode($this->user).':'.rawurlencode($this->pass).'@'; |
There was a problem hiding this comment.
Will throw if one of this->user or this->pass is null, as rawurlencode() requires a string
| public function __construct( | ||
| public string $scheme, | ||
| public ?string $user = null, | ||
| public ?string $pass = null, |
There was a problem hiding this comment.
We could, but this would make impossible to do the following:
$url = new Url(...parse_url($url));This is why I kept pass here
There was a problem hiding this comment.
the goal of the new code should be to completely replace using parse_url, so this argument is void sorry. (parse_url is broken)
There was a problem hiding this comment.
Oh yes, of course 🤦 Updated accordingly
303a8c9 to
db7c57e
Compare
db7c57e to
31232ee
Compare
|
Is |
|
Closed in favor of symfony/polyfill#498 |
This PR #53320 raised a problem in the codebase. Each place in the code where a DSN is parsed has its own implemented logic.
This led to various consistency issues: variable names differing from one place to another but having the same meaning, different behavior (some places decode HTML characters in URLs while others don't), work done "twice"... And of course, if a bug is detected somewhere, you have to check that it's not present everywhere (as must have been done with the PR mentioned above).
@OskarStark and @nicolas-grekas raised that there could be some place for something that unifies the work of DSN parsing which is of course always the same: parse the URL, decode the auth part with special chars, check a scheme is present, check the host is optionally present also.
Here is a first take on this. I created the logic in HttpFoundation, because why not, but I don't think this is the best place. However, we don't have any idea on where to put this as you can see in the comments of the linked PR 😄 I'm even sure that this is not the right place because, to me, add HttpFoundation as a dependency for this DSN parser feels weird.
A new component might be the solution, but it seems it was already discussed in the past and it was rejected (note that I couldn't find info about this, so if you were part of the discussion, feel free to link some issue or PR, thanks!).
This PR will give you an idea of what could be possible. I already leveraged this new mechanism in DI, Notifier, Mailer and Translation so you can see this in action. Of course, if this get accepted, the next step will be to leverage this in the Cache component mainly.
Things to discuss: