Skip to content

feat: Settings - Decouple from shield #1220

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

feat: Settings - Decouple from shield #1220

wants to merge 1 commit into from

Conversation

najdanovicivan
Copy link
Contributor

@najdanovicivan najdanovicivan commented Nov 4, 2024
edited
Loading

Description
Decouple settings library so it is not required.
Related to #1215

Checklist:

  • Securely signed commits
  • Component(s) with PHPDoc blocks, only if necessary or adds value
  • Unit testing, with >80% coverage
  • User guide updated
  • Conforms to style guide

najdanovicivan
najdanovicivan commented Nov 4, 2024
View reviewed changes
src/Helpers/auth_helper.php
Comment on lines +47 to +76

if (! function_exists('shieldSetting')) {
/**
* Provides a wrapper function for settings module.
*
* @param mixed $value
*
* @return array|bool|float|int|object|string|void|null
* @phpstan-return ($value is null ? array|bool|float|int|object|string|null : void)
*/
function shieldSetting(?string $key = null, $value = null)
{
/** @var AuthConfig $config */
$config = config('Auth');
if($config->useSettings) {
return setting($key, $value);
}

// Getting the value?
if (!empty($key) && count(func_get_args()) === 1) {
$parts = explode('.', $key);
if (count($parts) === 1) {
throw new InvalidArgumentException('$key must contain both the class and field name, i.e. Foo.bar');
}
return config($parts[0])?->{$parts[1]} ?? null;
}

throw new InvalidArgumentException('Settings library is not being used for shield');
}
}
Copy link
Contributor Author

@najdanovicivan najdanovicivan Nov 4, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is the important part. With the proposed change call to setting() method will only occur here.

@najdanovicivan najdanovicivan changed the title WIP: Settings - Decouple from shield WIP feat: Settings - Decouple from shield Nov 4, 2024
@kenjis kenjis added the enhancement New feature or request label Nov 8, 2024
@datamweb datamweb added the GPG-Signing needed Pull requests that need GPG-Signing label Nov 30, 2024
@datamweb datamweb changed the title WIP feat: Settings - Decouple from shield feat: Settings - Decouple from shield Nov 30, 2024
@TwistedAndy
Copy link

Yes, it would be great to decouple Shield and Settings packages. Personally, I don't see a lot of sense of having the Settings dependency here, because CodeIgniter already has BaseConfig to handle settings.

@najdanovicivan
Copy link
Contributor Author

@datamweb What else is needed for this one to be merged ?

@datamweb
Copy link
Collaborator

datamweb commented Oct 3, 2025

@najdanovicivan I'm currently on mobile and need to review this PR on my PC. I'll get back to it soon.

paulbalandan
paulbalandan reviewed Oct 3, 2025
View reviewed changes
docs/addons/jwt.md

// Get the credentials for login
$credentials = $this->request->getJsonVar(setting('Auth.validFields'));
$credentials = $this->request->getJsonVar(shieldSetting('Auth.validFields'));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe this should be in snake case per our coding standards: shield_setting

src/Helpers/auth_helper.php
Comment on lines +54 to +55
* @return array|bool|float|int|object|string|void|null
* @phpstan-return ($value is null ? array|bool|float|int|object|string|null : void)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In what instance will this return void?

Suggested change
* @return array|bool|float|int|object|string|void|null
* @phpstan-return ($value is null ? array|bool|float|int|object|string|null : void)
* @return mixed

src/Helpers/auth_helper.php
* @return array|bool|float|int|object|string|void|null
* @phpstan-return ($value is null ? array|bool|float|int|object|string|null : void)
*/
function shieldSetting(?string $key = null, $value = null)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
function shieldSetting(?string $key = null, $value = null)
function shield_setting(?string $key = null, mixed $value = null): mixed

src/Helpers/auth_helper.php
{
/** @var AuthConfig $config */
$config = config('Auth');
if($config->useSettings) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add a function_exists check

src/Helpers/auth_helper.php
}

// Getting the value?
if (!empty($key) && count(func_get_args()) === 1) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What's the use case for having null key? Would it be better to just require a string key?

src/Helpers/auth_helper.php
if (count($parts) === 1) {
throw new InvalidArgumentException('$key must contain both the class and field name, i.e. Foo.bar');
}
return config($parts[0])?->{$parts[1]} ?? null;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The ?-> would return null if config($parts[0]) is not an object so the ?? null is useless.

src/Helpers/auth_helper.php
return config($parts[0])?->{$parts[1]} ?? null;
}

throw new InvalidArgumentException('Settings library is not being used for shield');
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This capturing exception feels off. This would be reached if:

  1. Auth::$useSettings is true but settings is not installed.
  2. $useSettings is false but $key is null or empty string.
  3. $useSettings is false, $key is non-empty-string, and $value is provided

These different scenarios should be tackled separately within each conditional above.

composer.json
"ext-curl": "Required to use the password validation rule via PwnedValidator class.",
"ext-openssl": "Required to use the JWT Authenticator."
"ext-openssl": "Required to use the JWT Authenticator.",
"codeigniter4/settings": "Required to store groups and permissions in database"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Add this also to require-dev

src/Helpers/auth_helper.php
}
}

if (! function_exists('shieldSetting')) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add a test for this new function.

@paulbalandan paulbalandan added tests needed Pull requests that need tests docs needed Pull requests needing documentation write-ups and/or revisions. and removed GPG-Signing needed Pull requests that need GPG-Signing labels Oct 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@paulbalandan paulbalandan paulbalandan left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
docs needed Pull requests needing documentation write-ups and/or revisions. enhancement New feature or request tests needed Pull requests that need tests
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@najdanovicivan @TwistedAndy @datamweb @paulbalandan @kenjis