dotkernel
diff --git a/‎.gitignore‎
Lines changed: 2 additions & 0 deletions b/‎.gitignore‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎composer.json‎
Lines changed: 3 additions & 7 deletions b/‎composer.json‎
Lines changed: 3 additions & 7 deletions
diff --git a/‎config/error-handling.global.php.dist‎
Lines changed: 43 additions & 14 deletions b/‎config/error-handling.global.php.dist‎
Lines changed: 43 additions & 14 deletions
diff --git a/‎config/log.global.php.dist‎
Lines changed: 11 additions & 6 deletions b/‎config/log.global.php.dist‎
Lines changed: 11 additions & 6 deletions
diff --git a/‎docs/book/v4/extra/cookie.md‎
Lines changed: 120 additions & 0 deletions b/‎docs/book/v4/extra/cookie.md‎
Lines changed: 120 additions & 0 deletions
@@ -2,6 +2,8 @@ clover.xml
 coveralls-upload.json
 .phpunit.result.cache
 .phpcs-cache
+config/log.global.php
+config/error-handling.global.php
 
 # Created by .ignore support plugin (hsz.mobi)
 ### JetBrains template
 
@@ -6,18 +6,14 @@
     "homepage": "https://github.com/dotkernel/dot-errorhandler",
     "authors": [
         {
-            "name": "DotKernel Team",
+            "name": "Dotkernel Team",
             "email": "team@dotkernel.com"
         }
     ],
     "keywords": [
         "error",
         "errorhandler",
-        "factories",
-        "container",
-        "laminas",
-        "mezzio",
-        "service-manager"
+        "error_log"
     ],
     "config": {
         "sort-packages": true,
@@ -27,7 +23,7 @@
     },
     "require": {
         "php": "~8.2.0 || ~8.3.0 || ~8.4.0",
-        "dotkernel/dot-log": "^4.1.0",
+        "dotkernel/dot-log": "^5.0",
         "laminas/laminas-diactoros": "^3.3",
         "laminas/laminas-stdlib": "^3.20",
         "laminas/laminas-stratigility": "^3.11",
 
@@ -3,9 +3,12 @@
 declare(strict_types=1);
 
 use Dot\ErrorHandler\ErrorHandlerInterface;
+use Dot\ErrorHandler\Extra\ExtraProvider;
 use Dot\ErrorHandler\Extra\Processor\CookieProcessor;
 use Dot\ErrorHandler\Extra\Processor\HeaderProcessor;
+use Dot\ErrorHandler\Extra\Processor\ProcessorInterface;
 use Dot\ErrorHandler\Extra\Processor\RequestProcessor;
+use Dot\ErrorHandler\Extra\Processor\ServerProcessor;
 use Dot\ErrorHandler\Extra\Processor\SessionProcessor;
 use Dot\ErrorHandler\Extra\Processor\TraceProcessor;
 use Dot\ErrorHandler\Extra\Provider\CookieProvider;
@@ -14,6 +17,7 @@ use Dot\ErrorHandler\Extra\Provider\RequestProvider;
 use Dot\ErrorHandler\Extra\Provider\ServerProvider;
 use Dot\ErrorHandler\Extra\Provider\SessionProvider;
 use Dot\ErrorHandler\Extra\Provider\TraceProvider;
+use Dot\ErrorHandler\Extra\ReplacementStrategy;
 use Dot\ErrorHandler\LogErrorHandler;
 
 return [
@@ -23,32 +27,57 @@ return [
         ],
     ],
     'dot-errorhandler' => [
-        'loggerEnabled' => true,
-        'logger'        => 'dot-log.default_logger',
-        'loggerExtra'   => [
+        'loggerEnabled'           => true,
+        'logger'                  => 'dot-log.default_logger',
+        ExtraProvider::CONFIG_KEY => [
             CookieProvider::class  => [
-                'enabled'   => true,
-                'processor' => CookieProcessor::class,
+                'enabled'   => false,
+                'processor' => [
+                    'class'               => CookieProcessor::class,
+                    'replacementStrategy' => ReplacementStrategy::Full,
+                    'sensitiveParameters' => [
+                        ProcessorInterface::ALL,
+                    ],
+                ],
             ],
             HeaderProvider::class  => [
-                'enabled'   => true,
-                'processor' => HeaderProcessor::class,
+                'enabled'   => false,
+                'processor' => [
+                    'class'               => HeaderProcessor::class,
+                    'replacementStrategy' => ReplacementStrategy::Full,
+                ],
             ],
             RequestProvider::class => [
-                'enabled'   => true,
-                'processor' => RequestProcessor::class,
+                'enabled'   => false,
+                'processor' => [
+                    'class'               => RequestProcessor::class,
+                    'replacementStrategy' => ReplacementStrategy::Full,
+                    'sensitiveParameters' => [
+                        'password',
+                    ],
+                ],
             ],
             ServerProvider::class  => [
-                'enabled'   => true,
-                'processor' => null,
+                'enabled'   => false,
+                'processor' => [
+                    'class'               => ServerProcessor::class,
+                    'replacementStrategy' => ReplacementStrategy::Full,
+                    'sensitiveParameters' => [
+                        ProcessorInterface::ALL,
+                    ],
+                ],
             ],
             SessionProvider::class => [
-                'enabled'   => true,
-                'processor' => SessionProcessor::class,
+                'enabled'   => false,
+                'processor' => [
+                    'class' => SessionProcessor::class,
+                ],
             ],
             TraceProvider::class   => [
                 'enabled'   => true,
-                'processor' => TraceProcessor::class,
+                'processor' => [
+                    'class' => TraceProcessor::class,
+                ],
             ],
         ],
     ],
 
@@ -1,27 +1,32 @@
 <?php
 
+declare(strict_types=1);
+
+use Dot\Log\Formatter\Json;
+use Dot\Log\Logger;
+
 return [
     'dot_log' => [
         'loggers' => [
             'default_logger' => [
                 'writers' => [
                     'FileWriter' => [
-                        'name' => 'stream',
-                        'priority' => \Dot\Log\Logger::ALERT,
+                        'name'    => 'stream',
+                        'level'   => Logger::ALERT,
                         'options' => [
                             'stream' => __DIR__ . '/../../log/error-log-{Y}-{m}-{d}.log',
                             // explicitly log all messages
-                            'filters' => [
+                            'filters'   => [
                                 'allMessages' => [
-                                    'name' => 'priority',
+                                    'name'    => 'level',
                                     'options' => [
                                         'operator' => '>=',
-                                        'priority' => \Dot\Log\Logger::EMERG,
+                                        'level'    => Logger::EMERG,
                                     ],
                                 ],
                             ],
                             'formatter' => [
-                                'name' => \Dot\Log\Formatter\Json::class,
+                                'name' => Json::class,
                             ],
                         ],
                     ],
 
@@ -0,0 +1,120 @@
+# Log cookie data
+
+Looking at `dot-errorhandler`'s config file, the array found at `CookieProvider::class` allows you to configure the behaviour of this provider:
+
+- **enabled**: enabled/disable this provider
+- **processor**: an array configuring the data processor to be used by the **CookieProvider**:
+  - **class**: data processor class implementing `Dot\ErrorHandler\Extra\Processor\ProcessorInterface`
+  - **replacementStrategy**: whether to replace specific cookie values completely or partially
+  - **sensitiveParameters**: an array of cookies names that may contain sensitive information so their value should be masked partially/completely
+
+## Configure provider
+
+By default, **CookieProvider** is disabled.
+It can be enabled only by setting **enabled** to **true**.
+
+If **enabled** is set to **true**, your log file will contain an additional field under the `extra` key, called `cookie`.
+If **enabled** is set to **false**, no additional field is added under the `extra` key.
+
+## Configure processor
+
+From here, we assume that **enabled** is set to **true**.
+
+If **processor** is missing/empty, the processor is ignored the provider will log the raw data available.
+If **processor** is specified, but **class** is missing/invalid, the processor is ignored and the provider will log the raw data available.
+
+From here, we assume that **processor**.**class** is valid.
+
+### Replacement strategy
+
+This value should be an instance of `Dot\ErrorHandler\Extra\ReplacementStrategy`.
+
+If **replacementStrategy** is missing/invalid, the default **replacementStrategy** is used, which is `ReplacementStrategy::Full`.
+Else, the value used should be one of:
+
+- `ReplacementStrategy::Partial` for half-string replacements (e.g.: "abcdef" becomes "abc***")
+- `ReplacementStrategy::Full` for full-string replacements (e.g.: "abcdef" becomes "******")
+
+### Sensitive parameters
+
+If **sensitiveParameters** is missing/empty, the processor is ignored the provider will log the raw data available.
+This is because without a set of **sensitiveParameters**, the processor is unable to determine which key needs to be processed or left untouched.
+When specifying the array of **sensitiveParameters**, there are two possibilities:
+
+- use the constant `ProcessorInterface::ALL`, meaning alter all cookie values using the strategy specified by the **replacementStrategy**
+
+```php
+'sensitiveParameters' => [
+    Dot\ErrorHandler\Extra\Processor\ProcessorInterface::ALL,
+],
+```
+
+- use exact strings to list the cookies for which the values should be altered using the strategy specified by the **replacementStrategy**
+
+```php
+'sensitiveParameters' => [
+    'rememberMe',
+],
+```
+
+> **CookieProcessor** uses EXACT cookie name lookups.
+> In order to alter the value of a cookie, you need to specify the exact cookie name.
+
+> The config `sensitiveParameters` is case-insensitive.
+
+## Why should I use a processor
+
+Consider the following request cookies:
+
+```text
+[
+    "sessionId" => "feb21b39f9c54e3a49af1f862acc8300",
+    "language" => "en",
+]
+```
+
+Without a **CookieProcessor**, the plain text session cookie identifier would end up saved in the log file:
+
+```text
+..."extra":{"file":"/path/to/some/class.php","line":314,"cookie":{"sessionId":"feb21b39f9c54e3a49af1f862acc8300","language":"en"},...
+```
+
+But, with a properly configured **CookieProcessor**:
+
+```php
+'processor' => [
+    'class'               => CookieProcessor::class,
+    'replacementStrategy' => ReplacementStrategy::Full,
+    'sensitiveParameters' => [
+        'sessionId',
+    ],
+],
+```
+
+the logged cookie data becomes:
+
+```text
+..."extra":{"file":"/path/to/some/class.php","line":314,"cookie":{"sessionId":"********************************","language":"en"},...
+```
+
+## Custom processor
+
+If the existing processor does not offer enough features, you can create a custom processor.
+The custom processor must implement `Dot\ErrorHandler\Extra\Processor\ProcessorInterface` or extend `Dot\ErrorHandler\Extra\Processor\AbstractProcessor`, which already implements `Dot\ErrorHandler\Extra\Processor\ProcessorInterface`.
+Once the custom processor is ready, you need to configure **CookieProvider** to use it.
+For this, open `dot-errorhandler`'s config file and - under **CookieProvider::class** - set **processor**.**class** to the class string of your custom processor:
+
+```php
+CookieProvider::class  => [
+    'enabled'   => false,
+    'processor' => [
+        'class'               => CustomCookieProcessor::class,
+        'replacementStrategy' => ReplacementStrategy::Full,
+        'sensitiveParameters' => [
+            ProcessorInterface::ALL,
+        ],
+    ],
+],
+```
+
+Using this, cookie data will be processed by `CustomCookieProcessor` and logged as provided by this new processor.