- Issue created by @manpreetsingh154
- 🇮🇳India vishal.kadam Mumbai
Thank you for applying!
Please read Review process for security advisory coverage: What to expect → for more details and Security advisory coverage application checklist → to understand what reviewers look for. Tips for ensuring a smooth review → gives some hints for a smoother review.
The important notes are the following.
- If you have not done it yet, you should run
phpcs --standard=Drupal,DrupalPracticeon the project, which alone fixes most of what reviewers would report. - For the time this application is open, only your commits are allowed.
- The purpose of this application is giving you a new drupal.org role that allows you to opt projects into security advisory coverage, either projects you already created, or projects you will create. The project status won't be changed by this application and no other user will be able to opt projects into security advisory policy.
- We only accept an application per user. If you change your mind about the project to use for this application, or it is necessary to use a different project for the application, please update the issue summary with the link to the correct project and the issue title with the project name and the branch to review.
To the reviewers
Please read How to review security advisory coverage applications → , Application workflow → , What to cover in an application review → , and Tools to use for reviews → .
The important notes are the following.
- It is preferable to wait for a Code Review Administrator before commenting on newly created applications. Code Review Administrators will do some preliminary checks that are necessary before any change on the project files is suggested.
- Reviewers should show the output of a CLI tool → only once per application.
- It may be best to have the applicant fix things before further review.
For new reviewers, I would also suggest to first read In which way the issue queue for coverage applications is different from other project queues → .
- If you have not done it yet, you should run
- Status changed to RTBC
11 months ago 10:21am 19 January 2024 - Status changed to Needs review
11 months ago 10:31am 19 January 2024 - Status changed to Postponed: needs info
11 months ago 4:20pm 19 January 2024 - 🇮🇹Italy apaderno Brescia, 🇮🇹
Has the account used for this application been created by a person who already has another account?
- 🇮🇳India manpreetsingh154
I have only once account
How you need info from my end? - Status changed to Needs review
11 months ago 8:50am 20 January 2024 - Status changed to Needs work
9 months ago 5:07pm 11 March 2024 - 🇮🇳India vishal.kadam Mumbai
Fix phpcs issues.
phpcs --standard=Drupal,DrupalPractice --extensions=php,module,inc,install,test,profile,theme,css,info,txt,md,yml smartlink_form atter/ FILE: smartlink_formatter/smartlink_formatter.info.yml ------------------------------------------------------------------------------ FOUND 1 ERROR AFFECTING 1 LINE ------------------------------------------------------------------------------ 7 | ERROR | [x] Expected 1 newline at end of file; 0 found ------------------------------------------------------------------------------ PHPCBF CAN FIX THE 1 MARKED SNIFF VIOLATIONS AUTOMATICALLY ------------------------------------------------------------------------------ FILE: smartlink_formatter/src/Plugin/Field/FieldFormatter/SmartLinkFormatter.php ------------------------------------------------------------------------------ FOUND 0 ERRORS AND 19 WARNINGS AFFECTING 19 LINES ------------------------------------------------------------------------------ 100 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 101 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 104 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 108 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 114 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 137 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 148 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 159 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 170 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 192 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 195 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 199 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 202 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 206 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 209 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 212 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 215 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 218 | WARNING | t() calls should be avoided in classes, use \Drupal\Core\StringTranslation\StringTranslationTrait and $this->t() instead 242 | WARNING | \Drupal calls should be avoided in classes, use dependency injection instead ------------------------------------------------------------------------------ - Status changed to Needs review
7 months ago 9:41am 25 May 2024 - 🇮🇳India manpreetsingh154
Hello @vishal
I have fixed those above-mentioned phpcs issues.
Please review - Status changed to Needs work
7 months ago 5:32am 26 May 2024 - 🇮🇳India vishal.kadam Mumbai
FILE: src/Plugin/Field/FieldFormatter/SmartLinkFormatter.php
$link_title = \Drupal::token()->replace($item->title, [$entity->getEntityTypeId() => $entity], ['clear' => TRUE]);\Drupal calls should be avoided in classes, use dependency injection instead
- Status changed to Needs review
7 months ago 3:06pm 26 May 2024 - 🇮🇳India manpreetsingh154
@vishal I have applied the changes as per Drupal standard code for token service.
Please review - Status changed to RTBC
7 months ago 3:09pm 26 May 2024 - 🇮🇳India vishal.kadam Mumbai
Rest looks fine to me.
Let’s wait for a Code Review Administrator to take a look and if everything goes fine, you will get the role.
- Status changed to Needs work
7 months ago 8:33pm 26 May 2024 - 🇮🇹Italy apaderno Brescia, 🇮🇹
- The following points are just a start and don't necessarily encompass all of the changes that may be necessary
- A specific point may just be an example and may apply in other places
- A review is about code that doesn't follow the coding standards, contains possible security issue, or does not correctly use the Drupal API; the single points are not ordered, not even by importance
src/Plugin/Field/FieldFormatter/SmartLinkFormatter.php
This is essentially a copy of the
LinkFormatterclass that has been changed to include more attributes. That is fine, and it is preferable to use as base class a class that is not part of the public API, contrary to base classes likeFormatterBase.Still,
SmartLinkFormattershould not contain parts that are specific for the copied class. For example, may you spot and remove the part that has been copied from theLinkFormatterclass, which should be removed?$elements['url_only'] = [ '#type' => 'checkbox', '#title' => $this->t('URL only'), '#default_value' => $this->getSetting('url_only'), '#access' => $this->getPluginId() == 'smartlink_formatter', ]; $elements['url_plain'] = [ '#type' => 'checkbox', '#title' => $this->t('Show URL as plain text'), '#default_value' => $this->getSetting('url_plain'), '#access' => $this->getPluginId() == 'smartlink_formatter', '#states' => [ 'visible' => [ ':input[name*="url_only"]' => ['checked' => TRUE], ], ], ];if (!empty($item->_attributes)) { // Piggyback on the metadata attributes, which will be placed in the // field template wrapper, and set the URL value in a content // attribute. // @todo Does RDF need a URL rather than an internal URI here? // @see \Drupal\Tests\rdf\Kernel\Field\LinkFieldRdfaTest. $content = str_replace('internal:/', '', $item->uri); $item->_attributes += ['content' => $content]; }The following code is not catching the thrown exception, contrary to the
LinkFormatterclass.$url = $item->getUrl() ?: Url::fromRoute('<none>');It would be better to catch it and change the code as per 📌 Add logging to LinkFormatter and LinkWidget when the URL is invalid Active , which is referenced from the original code.
try { $url = $item->getUrl(); } catch (\InvalidArgumentException $e) { // @todo Add logging here in https://www.drupal.org/project/drupal/issues/3348020 $url = Url::fromRoute('<none>'); }Some of the translatable strings should be changed, but that is not blocking this application. For example:
- The hyphen in Show URL only as plain-text is not correct in English
- Instead of Add Class in link @link_class, it is preferable to use Add @link_class to links (In English, it is add something to, not add something in.)
- Status changed to Needs review
7 months ago 3:34am 29 May 2024 - 🇮🇳India manpreetsingh154
Hello @apaderno
I have applied the all required changes as you mentioned in above comment.
Please review the module.
Thank you - Status changed to Needs work
7 months ago 8:44am 29 May 2024 - 🇮🇹Italy apaderno Brescia, 🇮🇹
$elements = parent::settingsForm($form, $form_state); $elements['url_only']['#access'] = $this->getPluginId() == 'smartlink_formatter'; $elements['url_plain']['#access'] = $this->getPluginId() == 'smartlink_formatter'; $elements['link_class'] = [ '#type' => 'textfield', '#title' => $this->t('Link class'), '#default_value' => $this->getSetting('link_class'), '#required' => FALSE, '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ]; $elements['rel'] = [ '#type' => 'checkbox', '#title' => $this->t('Add rel="nofollow" to links'), '#return_value' => 'nofollow', '#default_value' => $this->getSetting('rel'), '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ];if ($this->getPluginId() == 'smartlink_formatter' && !empty($settings['url_only'])) { if (!empty($settings['url_plain'])) { $summary[] = $this->t('Show URL only as plain text'); } else { $summary[] = $this->t('Show URL only'); } }The question in the previous comment has not been answered, nor has the code been correctly changed. Can you spot the lines that have been copied from the
LinkFormatterclass, which should not be used in this class, and explain why those lines are not correct?$url = $item->getUrl() ?: Url::fromRoute('<none>');That line is not yet catching the thrown exception. The code should also be changed as per 📌 Add logging to LinkFormatter and LinkWidget when the URL is invalid Active .
- Status changed to Needs review
7 months ago 5:52pm 29 May 2024 - 🇮🇳India manpreetsingh154
Hello @apaderno
I've eliminated the duplicated code from the link formatter. Instead, I've modified the field's access and addressed the states included by the link formatter. Additionally, I've incorporated the necessary exception handling as per https://www.drupal.org/project/drupal/issues/3348020 📌 Add logging to LinkFormatter and LinkWidget when the URL is invalid Active
Thank you
- Status changed to Needs work
7 months ago 8:29am 30 May 2024 - 🇮🇹Italy apaderno Brescia, 🇮🇹
$elements['url_only']['#access'] = $this->getPluginId() == 'smartlink_formatter'; $elements['url_plain']['#access'] = $this->getPluginId() == 'smartlink_formatter'; $elements['rel']['#states'] = [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ] ]; $elements['target']['#states'] = [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ] ]; $elements['noopener'] = [ '#type' => 'checkbox', '#title' => $this->t('Add rel="noopener" to links'), '#return_value' => 'noopener', '#default_value' => $this->getSetting('noopener'), '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ];if ($this->getPluginId() == 'smartlink_formatter' && !empty($settings['url_only'])) { if (!empty($settings['url_plain'])) { $summary[] = $this->t('Show URL only as text'); } else { $summary[] = $this->t('Show URL only'); } }The code I quoted in my previous comment still contains lines that are present because the Drupal core class has similar lines.
Notice that in my previous comment I asked a question for which I am waiting an answer: Can you spot the lines that have been copied from theLinkFormatterclass, although they have been changed, which should not be used in this class, and explain why those lines are not correct?try { $url = $item->getUrl(); } catch (\InvalidArgumentException $e) { // @todo Add logging here in https://www.drupal.org/project/drupal/issues/3348020 $url = Url::fromRoute('<none>'); }The comment is linking to a Drupal core issue, which will not change this module's code. You can open an issue for your project, and reference that issue.
- Status changed to Needs review
7 months ago 5:29pm 30 May 2024 - 🇮🇳India manpreetsingh154
Hello @apaderno
1. I have removed the duplicate code which is already exists in base class linkformatter.
2. I have created the issue and refer in module that issue.Thank you
- Status changed to Needs work
7 months ago 7:27am 31 May 2024 - 🇮🇹Italy apaderno Brescia, 🇮🇹
The changes are not correct.
Instead of changing the code, please answer this question: Can you spot the lines that have been copied from the LinkFormatter class, which should not be used in this class, and explain why those lines are not correct?The reason I am asking that question is simple: Most of the code used by the project comes from a Drupal core class. The code you wrote is not sufficient for these applications, but I could accept it if you were able to catch which lines should not be present in the code you wrote and explain why.
Copying code from another module or Drupal code and not being able to adapt it is not what we expect in these applications. - Status changed to Needs review
7 months ago 9:32am 31 May 2024 - 🇮🇳India manpreetsingh154
Hello @apaderno
I totally agree with you. Actually, I want to create one formatter which have all attribute support for tag that's why i extended the core class and update the another attributes for link in smartlink formatter.
Thank you
- Status changed to Needs work
7 months ago 10:48am 31 May 2024 - 🇮🇳India manpreetsingh154
@apaderno
I hope you got my concern why i used the linkformatter code. Because i want to extend link formatter functionality with more attributes.Please confirm what is pending to do in this module.
- Status changed to Needs review
7 months ago 12:06am 1 June 2024 - 🇮🇳India manpreetsingh154
Please let me know if any more changes required to do
Thank you - Status changed to Needs work
7 months ago 10:08am 1 June 2024 - 🇮🇹Italy apaderno Brescia, 🇮🇹
I have already said what is wrong. I also asked a question which was never answered, and I also asked to please not change the code but simply answer the question.
- 🇮🇳India manpreetsingh154
I apologies, now i have answered your question.
I just want to build extended version of linkformatter with all attributes.
If i was trying to fields from parent classes those are not working due to condition which is in core getplugin == 'link'That's why i copied those fields and changed getplugin as per smartlink requirement.
Thank you
- Status changed to Needs review
7 months ago 3:16am 3 June 2024 - 🇮🇹Italy apaderno Brescia, 🇮🇹
The question I asked is the following one.
May you point out which of the following lines, which has been copied from the Drupal core class and modified, should not be used by this module?
/** * {@inheritdoc} */ public function settingsForm(array $form, FormStateInterface $form_state) { $elements = parent::settingsForm($form, $form_state); $elements['url_only']['#access'] = $this->getPluginId() == 'smartlink_formatter'; $elements['url_plain']['#access'] = $this->getPluginId() == 'smartlink_formatter'; $elements['link_class'] = [ '#type' => 'textfield', '#title' => $this->t('Link class'), '#default_value' => $this->getSetting('link_class'), '#required' => FALSE, '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ]; $elements['rel'] = [ '#type' => 'checkbox', '#title' => $this->t('Add rel="nofollow" to links'), '#return_value' => 'nofollow', '#default_value' => $this->getSetting('rel'), '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ]; $elements['noopener'] = [ '#type' => 'checkbox', '#title' => $this->t('Add rel="noopener" to links'), '#return_value' => 'noopener', '#default_value' => $this->getSetting('noopener'), '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ]; $elements['noreferrer'] = [ '#type' => 'checkbox', '#title' => $this->t('Add rel="noreferrer" to links'), '#return_value' => 'noreferrer', '#default_value' => $this->getSetting('noreferrer'), '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ]; $elements['target'] = [ '#type' => 'checkbox', '#title' => $this->t('Open link in new window'), '#return_value' => '_blank', '#default_value' => $this->getSetting('target'), '#states' => [ 'invisible' => [ ':input[name*="url_plain"]' => ['checked' => TRUE], ], ], ]; return $elements; }Please, do not change code. Just answer the question in a comment.
Hint: If you compare the code shown in this comment with the code shown in comment #15 → , you should easily find which lines are not correct.
- Status changed to Needs work
7 months ago 7:44am 3 June 2024 - 🇮🇳India vishal.kadam Mumbai
I am changing priority as per Issue priorities → .
- Status changed to Closed: won't fix
3 months ago 8:20am 24 September 2024 - 🇮🇳India vishal.kadam Mumbai
This thread has been idle, in the Needs work state with no activity for several months. Therefore, I am assuming that you are no longer pursuing this application, and I marked it as Closed (won't fix).
If this is incorrect, and you are still pursuing this application, then please feel free to re-open it and set the issue status to Needs work or Needs review, depending on the current status of your code.