The RESTful web services provide a simple way to exchange data between different applications. If your web application needs to communicate over the across platforms, RESTful web service needs to be developed. The application can connect and work with different platforms (web, mobile, etc) using RESTful API. The REST API uses GET, PUT, POST and DELETE HTTP request for data handling across platforms.

CodeIgniter RESTful web service is the easiest way to integrate REST API service in the web application. Using CodeIgniter Rest Server you can easily create the REST API in CodeIgniter . In this tutorial, we will show you how to implement user login and registration with CodeIgniter REST API .

The example code will demonstrate how to build REST API and handle the user authentication (login and registration) with CodeIgniter.

The following steps will be implemented to create REST API in CodeIgniter .

Before getting started, take a look the files structure of CodeIgniter REST application.

To store user’s account information, a table needs to be created in the database. The following SQL creates a users table with some basic fields in mysql database.

The following SQL creates a keys table to store REST API key for authentication.

Import the API key data in the keys table, which will be used to validate the API call.

We will use REST Controller library to build RESTful web services in CodeIgniter. Follow the below steps to integrate RESTful server in CodeIgniter using REST Controller library.

Note that: All the required files are included in the source code, you don’t need to download these files separately.

The User model handles the database related operations (fetch, insert, update, and delete).

It’s always better to make a separate folder for API related controller. In this example, we will place the API controller in controllers/api/ folder.

The Authentication API controller handles the API requests. It allows to implement a RESTful interface for the user login and registration through the GET, POST, and PUT request.

routes.php

Specify the routes for REST API requests (login, registration, view, and update).

You can interact and use the CodeIgniter REST API methods to integrate the user login system in the different applications. The cURL allows you to make HTTP requests in PHP. We will use PHP cURL to interact with CodeIgniter REST API, and perform the GET, POST, and PUT requests. The following examples uses HTTP Basic authentication with API key to connect to the RESTful API.

User Registration via REST API:

The following code performs a POST request to insert the user data for registration (signup) via CodeIgniter REST API.

User Login via REST API:

The following code performs a POST request to validate the credential for login (sign in) via CodeIgniter REST API.

Retrieve User Account Data via REST API:

The following code performs a GET request to retrieve the user’s account data via CodeIgniter REST API.

Update User Account via REST API:

The following code performs a PUT request to update the user data via CodeIgniter REST API.

Are you want to get implementation help, or modify or extend the functionality of this script?Submit paid service request

Download Source Code

Exakat 1.4.9 Review

Exakat 1.4.9 follows the preparation of php 7.3 : we added a lot of new rules to get ready for the upcoming version. There was already 9 available checks, but more are coming in. The most interesting of it is that they close edge cases that will benefit other versions : avoid giving references to static properties, avoid mixing reading and writing the same variable in the same expression. We also kindly suggest you start using ‘named regex’, where the captured subpatterns have names. As the saying goes, I am not a number, I am the Exakat 1.4.9 review.

From the UPGRADING docs , static properties were split between inheriting classes when the property was set with a reference.

This is a fairly rare piece of code, but a nasty bug when it shows up. This is now reported as an issue for version below PHP 7.3.

PHP accepts multiple time the same interfaces in a implements clause, just like that :

Once bar is implemented, the following one is also valid, so there is no need for an error. As for clean code, of course, there is no need to repeat the interface, so this is now reported.

Note that this analysis is distinct from the Already Parents Interface analysis, which reports when an interface is implemented multiple times, over several generations : for example, when the class and its children both implements the same interface. This double implementation is also superfluous, but it is easier to miss.

PCRE is moving to PCRE 2.0 in PHP 7.3, so it will be time to review all those regex. While you’re at it, why not impress your friends and co-workers by giving names to sub-patterns ?

When using PCRE, sub-patterns get a number for later reference. In fact, you can give those subpatterns a literal name : this way, it is easier to understand what was captured, and in case of regex reorganisation, there is no need to change all the offsets. Look at that, there are even two ways to name a sub-pattern:

It works with preg_match and preg_match_all . This is not a PHP 7.3 upgrade: this was introduced in PHP 5.2.2. Boy, time flies…

PHP warns us each time a property is accessed the wrong way : accessing a static property normally, or accessing normally a static property. The two errors are not the same : the first a Notice, while the second is a fatal error.

It is recommended checking all the access, and stick to their definition.

Exakat includes a ‘weekly’ report : this report is built with a selection of five analysis. This means a short audit report, with few issues to review. This is not a lot to read them, and review them in your code. Everyone in the PHP community can focus on one of the classic coding problems and fix it. Talk about the weekly audit around you : you’ll find programmers facing the same challenges.

To obtain the ‘weekly’ audit, run an audit, and request the ‘Weekly’ report.

Every week, you can find here 5 new analysis to review in your code. In fact, when your code is clean, you can also take a quick look at the upcoming

This week, we focus on five special analysis.

Every week, you can find here 5 new analysis to review in your code. In fact, when your code is clean, you can also take a quick look at the upcoming week with the ‘Go further’ section.

All the 359 analyzers are presented in the docs, including the fuzzy Strtr arguments : this native PHP call requires strings of the same length to be useful. Although this mostly applies to older code sources, it is a rare bug : 5% applications mishandle strtr().

You can check all of the Exakat reports at the gallery:exakat gallery.

Download Exakat on exakat.io, install it with Docker , upgrade it with ‘exakat.phar upgrade -u’ and like us on github .

A strong, memorable web designis one of the best ways to stand out. A well-designed click, hold anddrag to explore and scroll website can catch people`s attention, cause them to want to look a little longer, and make them remember your site. If it`s used wisely it saves a lot of space and helps in compartmentalising the content on an app. In this post, you`ll find 40 Interactive Click, Hold & Drag Website Designs from both individual web designers and creative studios worldwide.

Millions of Downloads:43,000+ WordPress Themes, Plugins & Design Assets Ad

As is good practice for any and all Cloud Engineers I am constantly looking for ways to minimize cost of operations and simpify operations. For this blog specifically it currently costs around 25 USD / mo. The costs comes from the EC2 instance, RDS ( + 14 day back ups), and a EFS volume, Route52 domain, and outbound traffic. Looking around Lightsail is a much simpler and cheaper solution; so I started migrating.

Lightsail is, ostensibly, a dumbed down UI for simple VPS administration. Servers can be provisioned, a SSH key is provided, port access, and disk snapshots are all available via the UI; a simplified UI.

This is standard fair linux access. The Lightsail UI provides a download link for the *.pem file. Download it, move it to ~/.ssh, change permissions to 0400 and connect as normal. The UI also provides a web based SSH interface. I suspect this leverages AWS Systems Manager in the background.

Again, pretty standard fare, however I did an upgrade to Ubuntu 18.04. Call me brave but this is a personal blog site not a corporate payment system.

LEMP stack FTW

With the core services install I move on to the unknown part of the migration. How to migrate WordPress. Luckily WordPress contains basic import / export functionality via the Settings menu item.

Took the output and imported it into the new instance. Everything went fine except the Link Directory content. That sucked, I had to find an alterate solution and migrate the content manually. Boo.

With the content moved I went to Route 53 and setup a subdomain (https://blog.davidjeddy.com) and pointed it at the new static IP provisioned via the Lightsail UI. I then waited for propagation. Once I was sure blog.* pointed correctly I edited the TLD to redirect to blog.* thus not losing any organic traffic or mess with anyone’s bookmarks.

This is the web, crashes happen. It is a fact of life. For LightSail backup up my application was as easy as clicking ‘Create Snapshot’ in the UI and the disk is imaged. I can even do this via the CLI API .Since the instance now contains my entire applications and database it is an all-inclusive backup. Be sure to test your recovery plan!

Once I was sure everything was running I did a ‘soft off’ of the old location. Specifically added a banner to the top of the site indicating the move was happening. At the end of the week I checked traffic patterns to ensure the old instance was no longer receiving traffic. Then, lights off.

Average cost before migration was running in the range of 25 USD / month. Projected cost after migration is around 10 USD / month. While not thousands per month this shows that AWS is serious about giving Linode / Dreamhost, other basic VPS providers a run for the money. Low cost + AWS infrastructure = market competition from the bottom to the top.

An Fully Automatic, Framework independent, RESTful php Router component used in scrawler.

This is an library for automatic restful routing, you do not have to define a single route, it automatically detects the url and calls the corresponding controller. Automatic routing is made possible by following some conventions.

In your index.php

Done now whatever request occurs it will be automatically routed . You don't have define a single route

The automatic routing is possible by following some conventions. Lets take a example lets say a controller Hello

now calling localhost/hello/world from your browser you will see hello world on your screen.

Each request to the server is interpreted by ghost route in following way:

METHOD /controller/function/arguments1/arguments2

The controller and function that would be invoked will be

For Example the following call:

GET /user/find/1

would invoke following controller and method

In above example 1 will be passed as argument $id

The function name in the controller should be named according to following convention: methodFunctionname Note:The method should always be written in small and the first word of function name should always start with capital. Method is the method used while calling url. Valid methods are:

Some eg. of valid function names are: getArticles, postUser, putResource Invalid function names are: GETarticles, Postuser, PutResource

Test folders are probably the best place where you can see internal working of various functions and use them in your project accordinglt

You may need to add the following snippet in your Apache HTTP server virtual host configuration or .htaccess file.

Alternatively, if you’re lucky enough to be using a version of Apache greater than 2.2.15, then you can instead just use this one, single line:

For IIS you will need to install URL Rewrite for IIS and then add the following rule to your web.config :

Under the server block of your virtual host configuration, you only need to add three lines.

Scrawler Router is created by Pranjal Pandey and released under the MIT License.

On the Sticher.io site there's a new tutorial posted where Brendt shares some thoughts about domain driven design and splitting codebases to make them more maintainable and logically separated.

The post then starts with a definition of what a "domain" is and how it relates to functionality in an application (a Laravel app in this case). He gives an example of restructuring the code into "domains" of functionality rather than thinking about their types (enums, rules, etc). He provides a new proposed directory structure for these domains including folders for Actions , Exceptions , Rules , Status and ValueObjects . He then walks through several of these categories and gives a bit more detail about what's inside and some of the functionality those files might contain.

As is good practice for any and all Cloud Engineers I am constantly looking for ways to minimize cost of operations and simpify operations. For this blog specifically it currently costs around 25 USD / mo. The costs comes from the EC2 instance, RDS ( + 14 day back ups), and a EFS volume, Route52 domain, and outbound traffic. Looking around Lightsail is a much simpler and cheaper solution; so I started migrating.

Lightsail is, ostensibly, a dumbed down UI for simple VPS administration. Servers can be provisioned, a SSH key is provided, port access, and disk snapshots are all available via the UI; a simplified UI.

This is standard fair linux access. The Lightsail UI provides a download link for the *.pem file. Download it, move it to ~/.ssh, change permissions to 0400 and connect as normal. The UI also provides a web based SSH interface. I suspect this leverages AWS Systems Manager in the background.

Again, pretty standard fare, however I did an upgrade to Ubuntu 18.04. Call me brave but this is a personal blog site not a corporate payment system.

LEMP stack FTW

With the core services install I move on to the unknown part of the migration. How to migrate Wordpress. Luckily Wordpress contains basic import / export functionality via the Settings menu item.

Took the output and imported it into the new instance. Everything went fine except the Link Directory content. That sucked, I had to find an alterate solution and migrate the content manually. :( Boo.

With the content moved I went to Route 53 and setup a subdomain (https://blog.davidjeddy.com) and pointed it at the new static IP provisioned via the Lightsail UI. I then waited for propagation. Once I was sure blog.* pointed correctly I edited the TLD to redirect to blog.* thus not losing any organic traffic or mess with anyone's bookmarks.

This is the web, crashes happen. It is a fact of life. For LightSail backup up my application was as easy as clicking 'Create Snapshot' in the UI and the disk is imaged. I can even do this via the CLI API .Since the instance now contains my entire applications and database it is an all-inclusive backup. Be sure to test your recovery plan!

Once I was sure everything was running I did a 'soft off' of the old location. Specifically added a banner to the top of the site indicating the move was happening. At the end of the week I checked traffic patterns to ensure the old instance was no longer receiving traffic. Then, lights off.

Average cost before migration was running in the range of 25 USD / month. Projected cost after migration is around 10 USD / month. While not thousands per month this shows that AWS is serious about giving Linode / Dreamhost, other basic VPS providers a run for the money. Low cost + AWS infrastructure = market competition from the bottom to the top.

No ratings yet.

On the eve of the most buzzing upgrade in the WordPress universe, we’ve interviewed Michael Torbert , Matthew Woodward , Brian Jackson , andother WP experts. Further, you will learn what we need to know about this change, and what we need to fine tune on our websites before the release of WordPress 5.0 with Gutenberg editor by default.

Here we go with a checklist forWordPress websites that includes the info you need to consider if you want to survive an upgrade to version 5.0. The main and the most buzzing thing in WordPress 5 will be new default content builderGutenberg. This editor uses content blocks and allows adding various media items directly into the post/page body, without adding custom shortcodes or HTML code blocks.

Some people say that Gutenberg will break the WordPress part of the Internet. Others say that it’s our future and we have no choice but to accept it. Anyway, Gutenberg will be the default editor in WordPress 5.0 and we have to check if our websites are ready for it. The exact date of WordPress 5.0 release has not been given yet, probably it’s expected by the end of this year. So there is still some time to get prepared.

By the way, the new editor is named after Johannes Gutenberg - the person who started the Printing Revolution by introducing the printing press. He is regarded as a person who had started the new milestone of a history. So we can assume how ambitious WordPress team is about Gutenberg.

Always back up the live site before doing any updates like this one. That way, whatever goes wrong, you can always rollback, says certified WordPress expert Nikola Vejin at Codeable .

To test the new editor, create a staging site and then perform the WordPress update on this staging site first. A staging is a perfect copy of your original website and it's a safety measure. Now add a few posts using the new shiny Gutenberg editor. And then properly test all your core features and pages of the website as there might be unexpected conflicts, - says Marius Vetrici , WordPress specialist at WPRiders , - only when you confirm that the updated staging site works fine, you can roll out the updates on the live site. And then check the core features of the live site to ensure that it runs as expected.

As always, keep your plugins up to date in order to have the most current integration, says Michael Torbert , Co-Author of WordPress All-in-One for Dummies.

In addition to this, Ihtisham Zahoor , Web Developer at WordPress , recommends to update the site's themes and plugins, create a backup, and run health check before and after the upgrade to version 5 for a smooth transition.

I’d make sure to test the theme on staging site to make sure it's fully compatible before you decide to make the change. A lot of exciting new features for the editor are coming that will provide blocks to add elements to the content of the page and this will allow a lot of flexibility with page layout design to users. Most older themes are not going to support it.” - Says full stack developer Frederick Pohl .

If your theme is compatible, just relax and wait for the 5.0 release. According to Stacy M. Clements, web consultant who specializes in WordPress, Business Owner at Milepost42 , if your site is built with a reputable and supportedWordPress theme and plugins, and you keep it up to date, it's likely you will have a few problems. Major theme and plugin developers are aware of Gutenberg and are doing their best to modify their software to deal with the changes. If you have a custom-built theme or plugins, you will want to check with your developer to make sure the software is modified appropriately.

If your theme is built by TemplateMonster and you have noticed some problem while testing, just write to the support team and they will help you handle it.

Stacy M. Clements recommends you to check all types of content you have (pages, posts, any custom content types). You may find that everything works well, or you may find some problems with the way your content is displayed, or the way how your theme elements are displayed, or custom content you've created with a page builder. Make sure you're using the latest versions of your theme and plugins, but if you still have problems, contact your theme developer to find if they're going to support Gutenberg, if not, probably it’s time to change the theme.

If you need to make some major changes to get your site "Gutenberg-compatible", you can buy some time by installing the Classic Editor plugin which restores TinyMCE editor.

According to Brian Jackson , CMO of Kinsta , the Classic Editor is no longer a fallback option by the end of 2019. So it's very important that all WordPress users, bloggers, and developers alike dive into Gutenberg and start testing it as soon as possible.

Read all comments given by experts to have an advantage in the process of transition to the Gutenberg and to save your website, especially if your business completely depends on it.

It's very important that all WordPress users, bloggers, and developers alike dive into Gutenberg and start testing it as soon as possible. Gutenberg is coming, whether you like it or not. I wouldn't be surprised if the Classic Editor is no longer a fallback option by the end of 2019.

The first thing you should probably do is check to see if your WordPress theme is going to support the new Gutenberg blocks. If the theme developer is already on top of things, then you probably don't have much to worry about other than learning the new editor. If the developer hasn't even started testing stuff on Gutenberg yet, it may be time to look for a new theme. I'm a massive fan of GeneratePress.

The above goes for all plugins that tie into the WordPress editor. The Yoast SEO plugin is just one example where it already supports Gutenberg, and they are actively adding more and more support.

The best advice I can give users right now is not to wait to test everything on their site with Gutenberg. Many WordPress hosts have staging environments which make testing thingslike this easy.

I’m a big fan of Heroku . I enjoy writing code, but I don’t enjoy wrangling servers to run my code. Heroku is a “platform-as-a-service” (PaaS) provider, meaning it provides a hosting platform and all you have to do is push code; it will configure load-balanced servers and services for you.

Another service I use is Bitbucket . Bitbucket is great for hosting private repositories if you’re boot-strapping or don’t want to pay GitHub for private repositories. I use Bitbucket to host the source code for my personal projects that are closed source.

If you’re working on personal projects then you may also host the source code of packages in private repositories. To use these private packages as Composer dependencies in an application you deploy to Heroku, you’ll need to go through some configuration steps. The steps are roughly:

You’ll now need to add a COMPOSER_AUTH environment variable to your Heroku application. As the name suggests, it specifies to Composer how to authenticate access private repositories. Documentation for this environment variable (and other available variables) is here: https://getcomposer.org/doc/03-cli.md#composer-auth

The environment variable’s value with be a JSON object. The object should look like this:

Obviously, replace the XXX values with the key and secret that was generated when you created your OAuth consumer on Bitbucket.

Now, set the environment variable in your Heroku app. You can either use the Heroku dashboard or the Heroku CLI . Setting an environment variable using the CLI looks like this:

Be sure to use the actual name of your application for the --app flag.

The final step to be able to use a private hosted package is to add to your composer.json file as a dependency, and set its URL.

Add a repositories key to your composer.json file if one does not exist already. It should be an array of objects. Each object should have a type and a url value. For packages hosted on Bitbucket, the type would be vcs and the URL would be the HTTPS URL of the repository, i.e.

It’s important you use the HTTPS URL, as the SSH URL does not work when authenticating using OAuth.

Finally, add the name of your package as it is in its own composer.json file as a dependency of your application:

Commit the changes.

Now, when you next deploy your application to Heroku (using git push heroku ), if your consumer key and secret, repository URL, and package name are all correct; Heroku should use OAuth to authenticate with Bitbucket and be able to pull down your package’s source code!

The TutsPlus.com site has another great php tutorial for those new to the language covering mathematical functionality in the language , from the basics out to more complex topics like trigonometry and random number generation.

They start off with some of the "heavy hitters" in PHP's math functionality and how how to perform trigonometric operations with the likes of sin , cos and tan . This is applied to create an interesting dynamic image using the GD functionality. Next up comes the exponential and logarithmic functions with simple examples followed by a section sharing some other useful math functions for more everyday needs.

StarTutorial has continued their "Modern php Developer" series of tutorials with their latest covering the use of Iterators for working with sets of data.

If you have used a for loop in PHP, the idea of iteration is most likely not foreign to you. You pass an array to a for loop, and perform some logic inside the loop, but did you know that you can actually pass data structures other than arrays to a for loop? That's where Iterator comes into play.

The tutorial starts by introducing some of the basic concepts of what iterators are and how they're represented in PHP in their most basic form: arrays. They cover some of the basic array handing and functions before getting into the actual Iterator object handling. The article is then broken up into a few parts covering iterators and their functionality:

Code and a summary of the functionality is included in each section providing you with a great start towards using iterators over simple arrays in your modern PHP applications.

Learn php Training in Chennai from FITA, the professional institute who delivers training to enhance your technical skills. We help you in achieving your dreams through personal and professional development.

PHP is an open source programming language that is recognized globally as the most powerful scripting language for creating websites. FITA is a leading PHP Training Institute in Chennai.

Learn how to use PHP for data drove websites and our expert trainers will show you how to create professional websites that leverage the power of robust data at the same time keeping the usability in mind. FITA has been teaching PHP course in Chennai and has trained more than 1200 students and has helped to achieve professional results faster and more efficiently. Trained students from PHPCourse in Chennai are placed in top IT companies.

Learn PHP Training at FITA and gain an in-depth knowledge of PHP.

The course syllabus is specially designed for candidates to enter into the technology industry.

Arrays in PHP

Learn PHP Training in Chennai at FITA to sustain in the global world. Many of the Best PHP professionals who are working in top IT Companies are trainers. Many of the students who are interested in learning the PHP Course, they will learn first the Web Designing Course in Chennai . We are providing the Certification and placement support to the students.

Gaining certification from a renowned PHP Training Insitute in Chennai opens many doors in this working world. We focus mainly on high-quality training to enhance your knowledge. The biggest challenge in today’s world is to get a job in the IT industry. FITA upgrades you with the latest versions.

FITAis a leading training institute thatoffers the in-depth program onPHPTrainingin Chennai. Training is offered by highlyexperiencedprofessionals with rich experience in UI designing and server-side PHP programming. If you are specifically looking for any customized trainingin the modules provided in our PHPtraining in Chennai syllabus, talk to our student counsellor to customize your PHP and MySQL Training! To know more about the BestPHP Training Institute in Chennai offered at FITA, call us at 98404-11333.

FITA has been ratedas the bestPHPTraining in Chennaiby Students and Professionals alike!

Are you located in any of these areas Adyar, Ambattur, Aminjikarai, Adambakkam, Anna Nagar, Anna Salai, Ashok Nagar, Besant Nagar, Choolaimedu, Chromepet, Egmore, Ekkattuthangal, Guindy, K.K.Nagar, Kilpauk, Kodambakkam, Madipakkam, Medavakkam, Mylapore, Nandanam, Nanganallur, Nungambakkam, OMR, Pallikaranai, Perungudi, Porur, Saidapet, Sholinganallur, St. Thomas Mount, T. Nagar, Tambaram, Teynampet, Thiruvanmiyur, Thoraipakkam,Vadapalani, Velachery, Villivakkam, Virugambakkam and West Mambalam.

Our T Nagar or Velachery office is just few kilometer away from your location. If you need the best PHPTraining in Chennai , drive a couple of extra kilometers is worth it!

PHP Training

I have an array $product_array, and when I use print_r($product_array);. The array shows like this

I set my database table in 4 columes, first one is mainid, and which is auto increment, following with ID, NAME, PRICE, as the keys showed above. I would like to insert this array $product_array into mysql. Can anyone help? Would be very much appreciated! tks.

see more details :

insert multiple rows via a php array into mysql

I've already published a few articles on Laravel Login to support username or email. In this article, I'm going to cover the process of adding the username or email support with Laravel 5.7 default authentication system.

The process below helps you to understand the following things.

The reason behind writing this article is peoples, preferring my previous articles about Laravel login and register with username or email support for earlier versions of Laravel.

If you are starting your fresh Laravel 5.7 project, and want to add the support for username or email for login and register, you could follow the steps from the beginning.

For any existing project just upgraded to Laravel 5.7, it is, of course, useful to follow the article to customize your authentication system.

Let's begin with the registration part to add support for username or email login with Laravel 5.7.

For a fresh Laravel 5.7 setup, begin with generating the default auth scaffolding with an artisan console command, which ships with the framework out of the box.

For existing project add a new migration file using an artisan command to add a new field to the users' table, and for the new fresh project, you can easily edit the migration file generated with auth scaffolding and add a single line below.

To fill value in the database for username field, we've to add a key username to the $fillable property under app/User.php database model.

The user registration form also requires a little bit of customization to add the username field.

The default auth system ships with a controller class, which handles the necessary methods for the registration system. We've to edit a few methods under that class to add the username to the database.

We've already added the necessary routes, email verification steps linked with another article. For the login system to support username or email we need to override a few methods on the login controller.

The login form requires a very little change on the input type field from email to text.

The controller class for login also ships with the framework and uses an AuthenticatesUsers trait, which handles the specific methods necessary for the default auth system.

To apply the new changes we need, we have to override the methods under the controller class for the login system.

The full source code for the all above customization is available on the github repository.

Thanks for following up my regular articles, and reading up to the end. If you have any feedback for me, feel free to leave your comment. Do not forget to share if you think worth sharing, and reading my articles.

Happy Coding!

This is a pretty common scenario in day to day programming. You want to include an official 3rd party php package in your Laravel application. However, the API provider like Google Spreadsheets doesn’t provide a Laravel PHP package.

I’m going to show you how to Laravel-ify any PHP package easily inside of your exisiting Laravel application.

To show you how to do it, I’m going to use Googlesheets PHP Client. So in your package.json you should have it installed:

Now in Laravel to define a Service you’ll first need to create a Service Provider. You can quickly generate one with an artisan command:

That should generate a brand new GoogleServiceProvider in app/providers/GoogleServiceProvider.php .

Now you need to register your shiny new ServiceProvider with your Laravel application. In config/app.php scroll down till you find the providers array. Add your new provider to it:

Great now your Laravel application knows to look for GoogleServiceProvider when it’s booting up.

Now we can actually create your Google SpreadSheet Client as a Service. This will allow us to inject your Google SpreadSheet Client anywhere in your Laravel application without reinstantating it over and over again.

Open up your GoogleServiceProvider :

Great! Now you have wired up your Google Spread Sheet client as a service named google_spreadsheet_client . You can also bind services to Interfaces or Class names, but let’s keep things simple for this tutorial.

Now that you have defined a service, you can use the Laravel container helper to instantiate it anywhere:

Note: you can also use the global helper resolve('google_spreadsheets_client') to access the container, if you want to access your service outside of a controller.

I hope this helps. If you have any other questions reach out to me at @ctrlaltdylan on the Twitters.

Have you have used Node.js ?

For those of my readers unfamiliar with Node.js, it's a server-side javascript framework that provides the ability to create, among other things, network services. To do so, it provides an event loop, which allows for such things as asynchronous processing.

In the php ecosystem, a group of Chinese developers have been creating an extension that provides many of the same capabilities as Node.js. This extension, called Swoole , allows you to create web servers with asynchronous capabilities. In many cases, the asynchronous capabilities are handled via coroutines, allowing you to write normal, synchronous code that still benefits from the asynchronous nature of the system event loop, allowing your server to continue responding to new requests as they come in!

We've been gradually adding and refining our Swoole support in Expressive , and recently issued a stable release that will work with any PSR-15 request handler. In this post, I'll enumerate what I feel are the reasons for considering Swoole when deploying your PHP middleware application.

I feel there are three key advantages to Swoole, and, by extension, any async PHP runtime:

There are a few general architectures for applications:

The first scenario is common in internal networks and development, and in many shared hosting scenarios. It's generally considered less secure, however, as a vulnerability in one application can potentially escalate to affect all applications hosted on the server. Additionally, it means that any updates to PHP versions must be tested on all applications, which often means updates are few and far between ― which is also problematic from a security standpoint.

When you want to isolate the environment, you'll move to a single web server, single PHP application model:

And when you start scaling, this becomes a load balancer sitting in front of many of these web server/PHP application pairs:

In each of these last two scenarios, there's one thing I want to point out: your application consists of at least two distinct services: the PHP processes, and a web server.

In these scenarios, this means each "server" is actually a composite. And when you are adding redundancy to your architecture, this adds significant complexity. It's one more process on each and every node that can fail, and additional configuration you need when deploying.

When we start thinking about microservices, this becomes more problematic. Microservices should be quick and easy to deploy; one service per container is both typical and desired.

What Swoole lets us do is remove one layer of that complexity.

We can have a service per container, and that container can be built with only PHP. We start the Swoole HTTP server, and it's ready to go. We then tell the reverse proxy or load balancer how to route to it, and we're done.

This is useful in each of the scenarios, including the one web server/mulitiple applications scenario, as we can have different PHP runtimes per application. Our "web server" becomes a reverse proxy instead.

Application-specific servers allow us to simplify our deployment, and ship microservices quickly.

Remember when PHP 7 came out, and it was like doubling the performance of your application?

What if you could do that again?

In our initial benchmarks of Expressive applications, we found that they performed four times better under Swoole than under a traditional nginx+php-fpm pair. More interesting: when benchmarking with a high number of concurrent requests, we also found that Swoole had fewer failed requests. This means you get both better performance and better resilience!

And the hits keep rolling in: when we enabled Swoole's coroutine support and benchmarked endpoints that made use of functionality backed by that coroutine support, we observed up to a ten-fold increase!

Swoole makes this possible in a couple of ways. First, because you are firing up a server exactly once, you lose the price of bootstrapping your application that you normally incur on each and every request; your application is bootstrapped from the moment you start accepting requests. Bootstrapping often accounts for the greatest single amount of resource usage in your application.

Second, Swoole runs as an event loop, just like Node.js, allowing it to defer processing of long-running requests in order to respond to new, incoming requests. This leads into my last point.

Swoole's event loop provides async functionality to PHP applications. While a number of userland libraries have popped up over the past five years or so that provide async capabilities for PHP, Swoole's is done as a native C extension, and works regardless of the operating system.

When you have an event loop, you can defer processing, which allows the server to respond to additional requests. Commonly, deferment can be explicit:

In this example, we calculate the content to return, defer caching, and return a response immediately. This means your user does not need to wait for you to finish caching content.

Logging is another use case. In the Expressive Swoole bindings, we do access logging after we mark the response complete. This ensures that logging does not impact response times.

Another use case is webhooks. Your application can accept a payload immediately, but finish processing of it after sending the response back to the client.

Swoole also provides async-enabled versions of common filesystem operations, mysql, Redis, and an HTTP client. In each of these, you provide a callback indicating what should be done once the operation is complete:

Code like the above has led to the term "callback hell" when you have many such deferments that depend on each other. So, what do you do if if you want your code to be "non-blocking", but don't want to write callbacks all the time? Well, recent versions of Swoole allow you to enable coroutine support for most I/O operations. What this means is that you can write your code just like you would in a synchronous environment, but whenever code that triggers a coroutine occurs, the server will advance the event loop, allowing it to answer additional requests before the current one completes its work, and then resume execution once it has.

Async functionality may not directly improve the performance of your application, but it will let your application answer more requests, allowing you to handle greater volumes of traffic!

We released zendframework/zend-expressive-swoole 1.0.0 two weeks ago. This library acts as a zend-httphandlerrunner RequestHandlerRunner implementation, which means:

In other words, if you want to use Swoole with the upcoming Slim 4 or with equip/dispatch or with northwoods/broker or any of the myriad PSR-15 dispatch systems out there, you can.

The library provides some interesting features for users:

I've been running applications on versions of it for the past two months, and have noted that it has been stable and reliable. I definitely think it's worth giving it a spin!

I'm really excited about the possibilities of Swoole and other async systems, as I think they afford us better performance, better reliability, and the ability to defer functionality that doesn't need to complete before we respond to clients. I'd love to hear YOUR experiences, though, particularly in the form of blog posts! Send me a link to a blog post via a comment, or by tweeting at me , and I'll add it to the ZF newsletter .

Posted by Matthew Weier O'Phinney ,

Support for php 5.6 drops on December 31 but a recent report found that almost 62 percent of websites are still using version 5.

Almost 62 percent of all websites are still running PHP version 5 even as version 5.6 of the server-side scripting language inches toward an ominous end-of-life.

Hypertext Preprocessor (PHP), a programming language designed for use in web-based applications with HTML content, supports a wide variety of platforms and is used by numerous web-based software applications, including popular content management systems like WordPress, Joomla and Drupal.

However, starting in December, versions 5.6 and 7.0 will no longer be supported.

“The deadlines will not be extended, and it is critical that PHP-based websites are upgraded to ensure that security support is provided,” a recent CERT notice has warned users .

Despite end-of-life in the horizon, a new report by Web Technology Surveys found that PHP version 5 is still used by 61.8 percent of all server-side programming language websites. And, of those using version 5, 41.5 percent of websites are using version 5.6, the report said.

Researchers and developers alike have called on these websites to update to newer, supported versions of PHP 7.2.

It’s particularly critical given the popularity of PHP: A full 78.9 percent of all websites use PHP overall, Web Technology Surveys’ report found.

Martin Wheatley, senior web application developer and web security tester, said that impacted websites would run on a platform that no longer receives updates opening them up to hacks, data exposure or malware.

“I know there are still sites out there that run on PHP 5.6 (and earlier!) that should really be moved on, either updated for PHP 7.2 or if the code is un-maintainable due to years of abuse by developers, simply rebuilt in a modern framework,” he said in a post . “These sites probably include old libraries that haven’t had the joy of an update or have long since been abandoned. The libraries probably have bugs and security holes in themselves, never mind the hosting platform or the website code itself. In some cases library code can be updated easily, others not.”

Many websites are dragging their feet given that the updates cost time and money, he said.

And content management systems are doing nothing to help this cause Drupal is the only CMS that has posted an official notice requiring an upgrade to PHP 7 by March (three months after the PHP 5.6 end of life deadline).

“Drupal 8 will require PHP 7 starting March 6, 2019,” the company said. “Drupal 8 users who are running Drupal 8 on PHP 5.5 or PHP 5.6 should begin planning to upgrade their PHP version to 7.0 or higher (PHP 7.1+ is recommended). Drupal 8.6 will be the final Drupal 8 version to support PHP 5, andwill reach end-of-life on March 6, 2019, when Drupal 8.7.0 is released.”

There has been no such notice from WordPress or Joomla. Neither responded to a request for comment from Threatpost.

So what can websites that are still using PHP 5.6 do? Software engineer David Eddy stressed that they should contact their hosting provider and push them to support a secure version of the language.

“If you have a little technical knowledge, you and your team may be able to do a direct migration to a new machine with PHP 7,” he said in a recent post . “Otherwise, if you are a bit more technical you can install PHP 7 yourself. This may require removing an unsupported WordPress plugins, swapping code libraries or even doing some reprogramming due to a language extension no longer being supported.”

In addition to the risks associated with PHP 5.6, PHP 7.1 comes with advantages, including new features and bug fixes.

That includes speed improvements, according to web developer and Under2 Co-Founder Shane Jones, who took to Twitter to encourage websites to upgrade.

Anyone that's worked with me recently will know that I've been banging on about upgrading from #PHP5 to #PHP7 for years now. Mainly I've been focussed on the speed improvements due to #PHP being able to process more requests per second. Especially in #WordPress .

Thread 1/6 pic.twitter.com/HEPXq1ENO0

― Shane (@shanejones) October 15, 2018

In the end, while updating PHP is painful and time-consuming, is it worth protecting websites from various security risks that come with end of life, experts said.

“Yes it does cost time and money, but what’s worse, a small monthly support fee, or a headline ‘Site hacked, thousands of user details stolen’ followed by a fine for up to 20 million euros or 4% of your turnover under GDPR… I know what I’d rather pay,” said Wheatley.

Is it possible to have Laravel load view templates with a .html extension?

I'm rebuilding an existing app that has a bunch of .html files that are uploaded by users. It's a sort of multi-tenant application where each user can control the look and feel of their area by uploading templates.

I need to rebuild the app and make the change completely transparent to the users so I'd like to keep the .html extensions.

The best way I have found is to use View::addExtension in your base controller;

Here's my code sample:

View::addExtension('blade.html','blade');

class BaseController extends Controller { /** * Setup the layout used by the controller. * * @return void */ protected function setupLayout() { // Allows us to use easy-to-edit html extension files. // You can set 2nd param to 'php' is you want to // just process with php (no blade tags) View::addExtension('blade.html','blade'); if ( ! is_null($this->layout)) { $this->layout = View::make($this->layout); } } }

各位 Buffer 早上好，今天是 2018 年 10 月 17 日星期三，农历九月初九。今天的早餐铺内容有：黑客挟持罗马尼亚市政厅电脑并要求比特币赎金；php 5版年底终止安全更新，6成网站恐面临风险；索尼表示已修复PS4漏洞 官方给出解决方法；NSA调查Google新系统Fuchsia的安全性；Twitter推出新项目：旨在追踪仇恨用户网络活动。

索尼就PS4漏洞问题进行了回应，索尼表示正计划通过系统更新解决。不过PlayStation英国客服官方Twitter现在表示，PS4漏洞问题已经修复，并给出了官方解决方法。

I'm trying to encrypt (big) files in php using AES and have looked into using Mcrypt and OpenSSL, the problem is all solutions I have found so far only encrypt strings, and the files I'm trying to encrypt would trigger the max memory limit for PHP (which unfortunately can't be set higher), how would I go about achieving this?

You could use CBC encryption using Mcrypt and then encrypt a segment of data at a time. Make sure that the segment is x times the block size of the used cipher (e.g. 16 bytes for AES). Encrypt the segment and take the last block of the generated ciphertext and use it as IV for the next segment. The final segment should be PKCS#7 padded (plenty of examples out there including in the mcrypt_encrypt comments).

By chaining the segments together you get a ciphertext indistinguishable from a single encrypt (test your code using this information). Decryption is identical, using the ciphertext as IV. To see how it works, look at the CBC encryption method:

EDIT: if possible you should use the OpenSSL equivalent functionality. That's not (well) documented, but you should be able to do the same using the code found in the link within the comment that Scott mentioned . Note that you should first perform everything without padding, and then for the final segment with padding .