Query7 » php

Writing an Event System in PHP

admin — Sat, 06 Mar 2010 00:31:57 +0000

In this tutorial you will learn how to create and implement an event system in PHP. You will be able to integrate it with your own web application or framework.

What is an event system?

An event system is a way to call prefined functions at a specified time in your application code. It’s main use is to allow developers to add functionality to your code without modifying the original source. Directly editing the source code of an application is proven not to work because every time the software gets updated, the changes made to the source get overwritten. By offering an event system in your application developers will be able to write plugin style code which will get executed at a specified time in the main application code. This makes your platform easier to develop for and offers a low entry level for coders wanting to add functionality themselves.

Overview of the system

event::$events is a static variable (array) which holds all of the registered events and associated Closure objects.

event::register(‘eventName’, function($args){}) accepts two arguments. The first being the name of the event and the second being a Closure object which will be called when the event is fired. You can see we use type hinting for the second argument to only accept a Closure object, this way we don’t need to write extra code in the function to check whether the method is callable.

    public static function register($event, Closure $func)
    {
        self::$events[$event][] = $func;
    }

event::fire(‘eventName’, $args) also accepts two arguments. The first is the event name and the second is an array of arguments that will be passed to the Closure function when it is called. Because we can register multiple methods to one event, we need to iterate over the array of events and then call the function with passed arguments.

    public static function fire($event, $args = array())
    {
        if(isset(self::$events[$event]))
        {
            foreach(self::$events[$event] as $func)
            {
                call_user_func($func, $args);
            }
        }

    }

Usage

Suppose we were writing a blogging platform and we wanted to make it easy for developers to call functions when a new blog post was created or deleted. In the appropriate location we would call the fire event::method(). In this case we are passing $postInfo , an array of post data, as an argument

event::fire('blog.post.create', $postInfo);

If we wanted to send an email to someone every time a post is published we only need to register an event and include the code.

event::register('blog.post.create', function($args = array()){

    mail('myself@me.com', 'Blog Post Published', $args['name'] . ' has been published');

});

Alternatively, if the event system were put to use in a framework, there could be events for various times during the framework’s loading process (eg. before routing, before calling the controller function, before accessing the database). We would call the fire function at these times.

event::fire('pre.controller');

event::register('pre.controller', function($args = array()){

	log::write('pre controller');

	//include some relevant files
});

Full source

class event
{

    public static $events = array();

    public static function fire($event, $args = array())
    {
        if(isset(self::$events[$event]))
        {
            foreach(self::$events[$event] as $func)
            {
                call_user_func($func, $args);
            }
        }

    }

    public static function register($event, Closure $func)
    {
        self::$events[$event][] = $func;
    }

}

If you have any questions or comments about the event class please ask below in the comments.

Preventing CSRF in PHP

admin — Tue, 16 Feb 2010 22:21:35 +0000

Cross site request forgery (CSRF) is where a malicious website will attempt to issue actions on another website without the user’s knowledge of it occuring.

Hypothetical Situation: You had just done some online banking and had ticked the ‘Remember me’ option when you logged in. The banking website easily allows you to transfer money to other people. While browsing the malicious site you see a link that seems to take you somewhere harmless but it actually sends you to www.my.bank/transfer?to=3740384342?amount=99999 . Because you ticked ‘remember me’ you are automatically logged in and the bank goes ahead and transfers the funds.

There are some obvious fundamental issues the bank could address such as checking with the user whether they want to send the funds and masking their URLs but the problem of the form still remains. Theres nothing from stopping anyone sending seemingly valid data to the URL the form submits to. This problem is known as Cross Site Request Forgery (CSRF) and it is a potential problem in every single dynamic website. While stealing money is an extreme example, CSRF could also be used to steal cookies from a website or post spammy comments on a blog without the user being aware that they are doing so.

Actions on websites are always associated with forms – logging in, transferring funds or posting a comment on the blog. Our solution to the CSRF problem is to generate a unique key when the user visits the page with the form on it. We set this key as a $_SESSION as well as a hidden input field in the form. When the form is submitted we will check the key stored in the session and the key posted by the form. If they are the same then we know the user willingly submitted the form. If they don’t match (or the $_SESSION key is empty) then we know something malicious is going on and we can safely redirect the user (and take no action).

session_start();

//if the form was submitted..
if(isset($_POST['submit']))
{

    //check the tokens
    if($_SESSION['csrfToken'] == $_POST['csrfToken'])
    {
        echo 'form is good';
    }
    else
    {
        header("Location: www.query7.com");
    }

}
else
{

//generate the token
$token = md5(uniqid(rand(), TRUE));

//set the token as a session
$_SESSION['csrfToken'] = $token;


//our form with the hidden field
$form = '

Account: 

Amount: 




';

echo $form;


}

We can add an additional level of security by making sure the user was fowarded from the page that contains the form.


//after checking of the tokens match

if(!$_SERVER['HTTP_REFERER'] == 'http://yoursite.com/location/of/form.php')
{

    header('Location: http://www.yoursite.com/tricked.php');
}

If you have any questions about CSRF or how to protect against it please ask them in the comments.

PHP in Action – Objects, Design, Agility

admin — Sun, 31 Jan 2010 00:38:01 +0000

Book Review

PHP in Action is a book aimed at people who are comfortable coding procedural or object orientated PHP scripts. It doesn’t teach you what a variable is or what function to use if you want to connect to a database but it does teach you design patterns, best practice techniques and useful information about PHP5′s object system. If you are looking into writing a PHP framework or want to further understand design patterns and objects in PHP then I highly recommend this book. It’s written by prominent members of the PHP community – Dagfinn Reiersol, Marcus Baker and Chris Shiflett and is 525 pages long.

Overview of the book

Chapters 2,3,4 cover the PHP5 class system. The book offers detailed and useful examples of each of the topics as well as plenty of metaphors to help the reader understand exactly what each feature should do and is capable of doing. I found this contrasted greatly with the almost minimal explanations and examples offered by the official documentation on php.net. The following features are covered:

Magic Methods – __get(), __set(), __construct(), __autoload()
Exception handling
Error handling
Property visibility – public, protected, private
Abstract classes
Static methods
Interfaces

Chapters 5,6,7 talk about object orientated principles and design patterns. Object orientated patterns and solutions are discussed including the Open Closed Principle, Single Responsibility Principle and Dependency Inversion. The knowledge learnt in these chapters can be transferred to other programming languages which support object orientation. The book also goes into detail about several design patterns, all of which are vital if you are looking to write a large web application or framework in PHP. The book covers the following design patterns:

Strategy
Adapter
Decorator
Iterator
Composite

A large portion of Part 2 is dedicated purely to testing code. Marcus Baker (one of the authors) is a developer for SimpleTest (PHP testing library) so all testing examples in the book are focused around it. We are given a gentle introduction to test driven development with some basic examples and explanations on why we should test. We are then given two very detailed examples of how to test a class that interacts with a MySQL database and an email class (which uses mock objects). The third part of the book is focused around user interaction with your PHP web application. It starts off by looking at how and why you should keep your presentation (HTML) code seperate from your logic (PHP) code and then moves on to the Front Controller design pattern. The section is concluded with a form class which validates on both client and server side. The book concludes with a section on representing SQL rows and tables with PHP objects. It takes an indepth look at the Data Mapper pattern and creating a Data Gateway.

Opinion

It is clear the authors of the book are experienced PHP programmers who participate actively in the community. When explaining the Adapter pattern and seperation of presentation/logic code they use the example of PHPTAL and Smarty - two popular and modern templating solutions in PHP. The book is set out very well with clear code examples, well set out headers and helpful class diagrams. The only drawback of the book is that it was published June 30th 2007 so it doesn’t include features added in PHP 5.2 and 5.3 . While nothing covered in the book is wrong, it’s unfortunate that topics such as namespaces, anonymous functions and late static binding aren’t covered. It would have been nice to see a section at the end of the book which brings together all topics that were covered in the book. A basic PHP framework that includes form handling, templating a database layer could have been made. That being said, a tremendous amount of content is covered in great detail and I urge anyone looking to further their PHP knowledge to buy this book.

PHP In Action from Amazon

PHP Namespaces

admin — Fri, 08 Jan 2010 23:14:18 +0000

Namespaces were introduced into PHP from version 5.3 onwards. They allow the developer to seperate their code into modules or groups which inturn makes the code easier to read. Namespaces prevent class and function name conflicts, it allows you to have numerous classes with the same name, as long as they are in different namespaces. Namespaces also make the old Zend/PEAR style of class name redundant (Framework_Database_Mysql_Query) because there will no longer be any class name conflicts.

Note: throughout the tutorial we will use the hypothetical files.

/Framework/Database/Mysql/Query.php
/lib/myClass.php
/index.php

The Basics

To declare a namespace you simply use the namespace keyword followed by the name of your namespace. You can specify sub namespaces by using the backslash ( \ ). Best practices state that your namespace path should match the directory path. For example the file /Framework/Database/Mysql/Query.php should have the namespace Framework\Database\Mysql and the name of the class should be Query. You should have one namespace and class per file.

Using Namespaces

In /lib/myClass.php we declare a namespace, lib, and then define a simple class, myClass. In our index.php file we include the class and instantiate it. Because myClass is in the namespace lib, we must refer to the class as lib\myClass, not just myClass. An alternate way to get namespaced classes is to use the use keyword. By specifying what classes you are use-ing at the top of the script it’s easy to look back at your code to see the dependencies for each page. You can also use foo as bar. This essentially renames class foo as bar. You’ll need to do this if you are use-ing two or more classes with the same name (namespaces will be different). Otherwise you will get name errors. Examples below.

/lib/myClass.php

namspace lib;

class myClass
{

public function foo()
{
echo 'hello world';
}

}

index.php

require 'lib/myClass.php';

//Error, Class not found.
$bar = new myClass();

//Displays hello world on the screen.
$bar = new lib\myClass();
$bar->foo();

//Displays hello world on the screen
use lib\myClass;

$bar = new myClass();
$bar->foo();

//Displays hello world
use lib\myClass as newName;

$bar = new newName();
$bar->foo();

Implementing an Autoloader

Rather than including every file you think you will need in your script, you can implement an autoloader. The autoloader is run every time a class that hasn’t been defined is called. In our autoload function we can translate a namespace-d class name into a file to include. Assuming we follow the convention of namespaces mapping to directories this is relatively simple.

function __autoload($class)
{
    $file = str_replace('\\', '/', $class) . '.php';

    if(file_exists($file))
    {
        require $file;
    }
}

So if we called

$db = new \Framework\Database\Mysql\Query();

The autoloader would include the file Framework/Database/Mysql/Query.php where (if you were following convention) there would be a class called Query. Notice that the autoload function replaces two backslashes with a foward slash – even though the namespaces only have singular backslashes. This is because the backslash is the escape character for PHP and by putting two backslashes, it evaluates to one backslash.

Gotchas

Built in class names returning as not found.
In your existing code you may use classes built into PHP such as Exception, StdClass, Mysqli etc.. When working with namespaces you must remember to prefix these with the backslash to indicate that you want to use the class from the root namespace, the PHP library – not your own version of the class that has the same name.

Relative namespaces.
If in /Framework/Database/Mysql/Query.php we needed to use the class in /lib/MyClass.php then you would most likely use the use statement and write something like below.

Query.php

namespace Framework\Database\Mysql;

use lib\Myclass;

class Query{}

However this will error out. Why? Because PHP is trying to find the class located at \Framework\Database\Mysql\lib\myClass. We need to explicitly define that the namespace path is taken from the root of our application so we prepend a backslash and it will work as intended.

namespace Framework\Database\Mysql;

use \lib\myClass;

class Query{}

If you have any questions about namespaces in PHP feel free to ask them in the comments below.

PHP cURL

admin — Tue, 22 Dec 2009 10:09:59 +0000

cURL is a library written in C that enables easy transfer of data in many different protocols including FTP, FTPS, HTTP, TELNET and LDAP. cURL does more than simply download a file. You can store cookies, upload files, use various types of authentication and tunnel all requests through a proxy. The cURL extension has been bundled with PHP since version 4.0.2 and is enabled by default in php.ini. In this tutorial we will look at the uses of cURL and how it compares to file_get_contents() , we will then write a cURL class which we can use to download the source code of a webpage and download a binary file.

cURL vs file_get_contents()

Many PHP scripts require the user to download and then parse the HTML source of a page. When people ask how to do this, the most common reply is to use the file_get_contents() function as it’s a simple one line solution – you just need to set the first argument to webpage you want to download and it will return the source code of it. While it may seem very easy to use, it has many pitfalls.

cURL is significantly faster than file_get_contents() at retrieving the source of a webpage. It took around 2.3 seconds for file_get_contents() to retrieve the source of google.com while cURL only took 0.65 seconds. (source)
Familiarity of code. cURL is implemented in Python, Ruby, Java and many other languages. Your cURL code in PHP will be easily translatable and transferable to other languages, allowing you to save time and money.
cURL allows you to do more. If the webpage were password protected or required a form to be submitted before viewing, this would be possible in cURL. No possible way with file_get_contents().
cURL enables you to remain anonymous while requesting the webpage. You can funnel all cURL requests through one or multiple proxies whereas file_get_contents() will give away the server IP address.

cURL Class

cURL is only available through procedural functions, there is no cURL class in PHP. Hence scripts that utilize cURL can be messy. By writing a simple class wrapper, we can execute a cURL request in one line – yet still have the power and configuration of cURL. The class has two public methods. The first getPage() accepts one argument – the URL of the website. It returns an array of information about the request including the HTML source, content type, time it took to request the page, average download speed and other useful stats. The second downloadFile() accepts two arguments – the url to the file being downloaded and name of the file it should be saved as. The $options attribute holds the cURL options (that we eventually set using curl_set_opt_array()). A full list of options as well as their descriptions are available here.

class curl
{

public $options = array(
CURLOPT_RETURNTRANSFER => true,     // return the web page
CURLOPT_HEADER         => false,    // don't return the headers
CURLOPT_FOLLOWLOCATION => true,     // follow redirects
CURLOPT_USERAGENT      => "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0)", // set a normal looking useragent
CURLOPT_AUTOREFERER    => true,     // set referer on redirect
CURLOPT_CONNECTTIMEOUT => 120,      // timeout
CURLOPT_TIMEOUT        => 120,      // timeout
CURLOPT_MAXREDIRS      => 10,       // stop after 10 redirects
);

public function __construct()
{
}

public function getPage($url)
{

$p = curl_init($url);
curl_setopt_array($p, $this->options );

$content = curl_exec($p);

if(!$content)
{
throw new \Exception(curl_error($p) . ' ERROR CODE ' . curl_errno($p));
}

$header  = curl_getinfo($p);
curl_close($p);

$header['content'] = $content;

return $header;
}

public function downloadFile($url, $filePath)
{
$fp = fopen($filePath, 'w');

$this->options[CURLOPT_URL] = $url;
$this->options[CURLOPT_FILE] = $fp;

$p = curl_init();

curl_setopt_array($p, $this->options);

$file = curl_exec($p);

curl_close($p);

fclose($fp);

}

}

To use the class just instantiate it and call the appropriate methods.

$c = new curl(); $c->downloadFile('http://static.reddit.com/reddit.com.header.png', 'logo.png'); //Will download the reddit header image into a file called logo.png $foo = $c->getPage('http://www.query7.com'); print_r($foo);

Which returns..

Useful Reference

PHP.net cURL page

PHP.net cURL options list

cURL homepage

PHP Regular expresssion URL Router

admin — Tue, 23 Jun 2009 20:30:30 +0000

In this tutorial we will create a PHP URL router. The developer using the router will be able to define these routes with regular expressions, these will then map to a file, class and method which will be called – very similar to Django’s routing. By using regular expressions to define our URLs we get maximum customizability. /class/method/ based URL routing is too restrictive sometimes. We will assume the user is using an apache or similar web server with mod_rewite enabled. You can adapt this router and use it in your web application or framework.

Quick Note: This is taken straight out of one of my applications. I have a singleton registry object called $core which you’ll see referenced many times. I suggest you make your own or use global variables.

.htaccess

First of all we need to create a .htaccess file in the root directory of your project. We turn the RewriteEngine on, and then declare a rule to route everything except images/js/css through our index.php file. So even if the person goes to www.yoursite.com/directory/file.php , rather than executing that file it will execute our index.php instead.

RewriteEngine on RewriteRule !\.(js|ico|txt|gif|jpg|png|css)$ index.php

If your building a framework or application you’ll probably have some ini/bootstrapping code that you want to run here. The router itself is procedural so include it at the bottom of index.php.

Declaring the Routes

We define our routes in an array called $urls (naming matters). You can declare these anywhere before the router is included. In the array key we declare our regular expression. I’ve listed a couple as examples below. The first matches to the root – as if someone went to www.yoursite.com. This gets mapped to application/views/blog.php , then the index() method in the blog class is executed. The second is slightly more complex and captures a value called slug. This value is then passed as a parameter in the individual_post() method when it is executed.

$urls = array( // "Regex to match" => "path_to_file.php___className___functionName", "(^[/]$)" => "application/views/blog.php___blog___index", // No captured values "(/post/(?P \w.*)$)" => "application/views/blog.php___blog___individual_post", );

The Router Itself

The operation of the router itself is pretty simple:

Figure out the URI the user requested

Try and match one of the defined regular expressions to that URI

If it does match, see if there are any captured matches (eg. our slug name above)

If there are matches, call the appropriate method and pass them as a parameter

First we need to figure out the URI. For example if they went to www.yoursite.com/blog/first-post/ , we would just want to capture the /blog/first-post/ so it matches our regular expressions. The code below does that with a series of str_replace()s.

$already_there = str_replace('index.php', '', $_SERVER['SCRIPT_NAME']); $slightly = str_replace($_SERVER['SCRIPT_NAME'], "", $_SERVER['REQUEST_URI']); $uri = '/' . str_replace($already_there, '', $slightly);

We will then iterate through our defined URL routes/regular expressions and try to get a match.

foreach($urls as $regex => $mapper) { if (preg_match($regex, $uri, $matches)) {

$matches is an array that is populated when a URL pattern is matched. If we are capturing a value (eg. slug in the above example) then there will be a key called ‘slug’ and the value it captured in the array. If there is only one item in the $matches array, then there the user didn’t try to capture any values in their regular expression so we don’t need to pass any arguments in the method that we call. We simply explode the $val variable to get the filename, class name and method name, then call it.
If however we iterate across a key that isn’t numeric, then we know there is a value that is getting captured. We simply get that and pass it as an argument when we call the method.

foreach($matches as $key => $val) { if(count($matches) == 1) { $foo = explode("___", $mapper); //Include the view they specified include($core->settings->application_path . $foo[0]); //Instantiate a new class they specified $bar = new $foo[1](); //Call the function they specified $bar->$foo[2](); } //Make sure the key is not numeric - some extra garbage preg_match() gives us. if(!is_numeric($key)) { //Split the value they defined up into sections $foo = explode("___", $mapper); //Include the view they specified include($core->settings->application_path . $foo[0]); //Instantiate a new class they specified $bar = new $foo[1](); //Call the function they specified $bar->$foo[2]($val); //echo $key . ' -> ' . $val . ''; } } break;

Theres also a place to indicate to the user that there we no matches – it’s up to you if you want to give a custom error page, 404, whatever.

} else { //echo "A match was not found."; } }

PHP Autoload

admin — Sat, 30 May 2009 12:33:59 +0000

In large PHP applications you typically see a “classes” directory that only contains classes which are used throughout the application (database, session management, forms etc..). A problem quickly appears: Everytime you wanted to use one of the classes, you would be forced to include() it at the top of the page. __autoload() solves this by automatically including the definition file when a class is called.

Example

We have a simple application with the index.php file in the root directory and a directory called classes that contains numerous classes.
classes/time.class.php

class time { function fn1() { echo 'hello world'; } }

The code below shows what we’d need to do if we didn’t have autoload. While that code doesn’t seem so bad, imagine writing includes on each of your 30-40 files. It would get messy and very hard to maintain. Another option would be to have a single file that all of your classes are included in, there include that one file in each of your functional scripts but you could expect a performance loss as every one of your classes would be included on the page – even if it wasn’t needed.

index.php

include('classes/time.class.php'); $time = new time(); $time->fn1(); //Returns hello world

The __autoload() function accepts one parameter – the name of the class that is being instantiated. We pass this so we know what file to include.

index.php revised

function __autoload($class_name) { include('classes/' . $class_name . '.class.php'); } $time = new time(); $time->fn1(); //Returns hello world

A More Complex Example

Large projects and frameworks often have classes split up into groups – extensions, modules and core components. When instantiating a new class, we don’t want to have to declare what group it belongs to. We can build this right into our autoload function, and also check if the file/class exists.

function __autoload($class) { if(file_exists('core/' . $class . '.class.php')) { include('core/' . $class . '.class.php'); } if(file_exists('extensions/' . $class . '.class.php')) { include('extensions/' . $class . '.class.php'); } if(file_exists('modules/' . $class . '.class.php')) { include('modules/' . $class . '.class.php'); } }

Easy RSS Consumption with Simple Pie in PHP

admin — Sun, 01 Feb 2009 06:16:06 +0000

Introduction

RSS Feed consumption has always been a stick point in PHP. Simple Pie is a library that works with both PHP4 and PHP5 that enables you to easily parse and save RSS feeds. Today I’ll show you some common uses of Simple Pie and explain how it runs.

Simple Pie requires:

PHP 4.3.0 or higher

cURL Enabled.

zLib (Caching?)

As well as a few other PHP modules that will be enabled in a vanilla PHP install. To run the compatibility test, upload the un-compressed archive to your server and navigate to www.yourname.com/pathtosimplepie/compatibility_test/sp_compatibility_test.php .

Finding the RSS Feed

The first thing we need to do is include SimplePie and then make a new SimplePie feed.

include('path/to/simplepie.inc');

$feed = new SimplePie('lastkarrde.com');

Simple Pie has a very useful ‘auto feed discovery’ feature. If you give it a plain URL, such as Query7.com, it will automatically find the RSS feed. Of course you can specify the path to the .xml file or Feed Burner page if you wanted to. Although the feed has been pulled we need to do call on another function, handle_content_type, to ensure that the feed has the correct mime type and encoding.

$feed->handle_content_type();

Parsing the RSS Feed

Now that all of the configuration/setup is done (all 3 lines of it) we can parse the feed on our page. We use a foreach loop to iterate through all of the items. Simple Pie’s functions make everything easy! As you can see below we simply echo the date, content and title of each item in the RSS feed.

foreach($feed->get_items() as $item){ echo '
' . $item->get_title() . '
'; echo '
' . $item->get_date() . '
'; echo '
' . $item->get_content() . '
'; }

Extra Data from the Feed

In the above example we only got the permalink, title, date and content from each feed item. Simple Pie provides alot of other functions that are used in the same way. Some of the more useful ones are.

get_author(s) – Get the author(s) of the post item (if set).

get_description – Gets a summary of the post content, rather than the whole post like get_content() does.

get_source - Returns the source site of the feed. This is particularly useful if you are parsing multiple feeds and displaying them on one page.

get_title – Returns the title of the entire RSS feed, wouldn’t be called in the loop.

Parsing Multiple Feeds onto one Page

With Simple Pie, this is painfully easy. When declaring a new instance of the Simple Pie class, we pass an array of websites rather than a string. Instead of..

$feed = new SimplePie('lastkarrde.com');

We would use

$sites = array('query7.com', 'digg.com', slashdot.org'); $feed = new SimplePie($sites);

Caching

Simple Pie comes with an easy to use and very effective caching system. By default it caches each feed for 60 minutes, then it automatically discards it and pulls a new copy of the feed. This is great for a ‘typical user’ who just wants to use Simple Pie for a few things but for someone who knows the feed they are monitoring updates every 2 hours.. or every 20 minutes you need to change the length of caching time. This is done with the set_cache_duration() function. You specify it after you have pulled the feed, but before you display any information onto the page. You can also change the location of where the feed is cached with the set_cache_location() function. Both are demonstrated below.

$feed = new SimplePie('query7.com'); $feed->set_cache_duration(1800); //Value in seconds, 1800s = 30 minutes $feed->set_cache_duration('/home/user/simplepie/customcache'); //Full path to cache //Continue with display code here.

As you can see Simple Pie makes parsing RSS feeds really easy. You don’t have to parse them directly onto the page, you can just as easily put database INSERTs into the loop rather than echos and display them from the database at a later date. Simple Pie is an open source project so you don’t need to worry about any fees or license agreements.

If you have any questions about Simple Pie, feel free to post them below.

Tutorial: Automated Site Backup with PHP and FTP

admin — Sun, 25 Jan 2009 11:24:31 +0000

In this tutorial we are going to make a PHP script that archives your website into a .tar file, then automatically moves it to an external FTP server for safe keeping. We can then setup a cron for this script which will execute it automatically every day/week/month , however frequent you want it. This will only work on Linux servers however that shouldn’t be a problem as most hosts run Linux.

First we’ll setup some variables to allow for easy editing.

$dir = '/path/to/file'; // Directory to backup. $filename = 'backups/backup' . date("MdY") . '.tar'; //path to where the file will be saved. $ftp_server = 'urlToFTPServer.Com'; //External FTP server $ftp_user_name = 'ftpUsername'; //External FTP server username $ftp_password = 'ftpPassword'; //External FTP server password

Now we need to archive the site. We’re going to wrap an if statement around it so if for some reason it doesn’t archive, the FTP part of the script won’t try and copy it over to another server. The system function executes a system command, here we are calling tar cvf which will archive our $dir (directory) and save it to the path specified in $filename.

if(system("tar cvf $filename $dir")){

We’ll then connect to the FTP server itself. Because we set variables, if we need to change servers, it’s very easy to implement.

$conn_id = ftp_connect($ftp_server); $login_result = ftp_login($conn_id, $ftp_user_name, $ftp_user_password);

If it connects to the server, then we can move our backup across. We give it the same name as the archive on our own server and store it in a /backups directory.

if (($conn_id) || ($login_result)) { $upload = ftp_put($conn_id, 'backups/' . date("MdY") . '.tar', $filename, FTP_BINARY); }

Once that is done, we can close the FTP stream as we don’t need to use it anymore.

ftp_close($conn_id); } //Initial if statement

All thats needed to do is automate this script. For this we use something built into the Linux Operating System called a Cron Tab. Crons will automatically run a script at a time you specify. We can set it up to run every time at the same day so you have a daily backup. You can make this more frequent or less frequent depending on how often the data of your site changes. Making a cronjob in cPanel is alot easier than if you didn’t have cPanel. But both are fairly straight foward.

PHP/jQuery Todo List Part 2

admin — Mon, 08 Dec 2008 04:24:00 +0000

This is part 2 of a 2 part series on making a Todo List with PHP and enhancing it with jQuery’s AJAX

In part 1 of the tutorial, we covered the PHP and MySQL side of things. In this part we will be enhancing it with jQuery’s AJAX and manipulation functionality. The to-do list will degrade fine – if the user has Javascript disabled, the application will still work. All changes occur in the index.php file.

There are two parts to the script. One handles the posting of new posts, while the other handles posts being deleted. We’ll start with adding new posts.

//When the button with an id of submit is clicked (the submit button) $("#submit").click(function(){ //Retrieve the contents of the textarea (the content) var formvalue = $("#content").val(); //Build the URL that we will send var url = 'submit=1&content=' + formvalue; //Use jQuery's ajax function to send it $.ajax({ type: "POST", url: "process.php", data: url, success: function(){ //If successful , notify the user that it was added $("ul").before("
You just added: " + formvalue + "
"); } }); //We return false so when the button is clicked, it doesn't follow the action return false; });

The url part confuses some people. What we are doing is sending a request to the process page, we need to include some data with that request. In process.php there was the line

if($_POST['submit']){

It checks to see if $_POST['submit'] isn’t null (has a value). If it is null (has no value), then it means that the form hadn’t been submitted, by sending any value, in our case submit=1, we are telling process.php that the button had been clicked so it should run the rest of the PHP script. The rest of the PHP script calls for the content, which we also send in the url (content= ‘ + formvalue). Instead of sending anything, we only want to send the value of the form (The stuff inside the textarea – that the user wants to submit). By returning false at the end, it prevents the submit button from carrying through with its action=”process.php”. If it did, it means the page would refresh when the information was sent which is exactly what we don’t want.

The code that handles the deletion of posts is similar.

//Check to see if an anchor link was clicked (The delete link) $("a").click(function(){ //Save the link in a variable called element var element = $(this); //Find the id of the link that was clicked var noteid = element.attr("id"); //Built a url to send var info = 'id=' + noteid; $.ajax({ type: "GET", url: "delete.php", data: info, success: function(){ element.parent().eq(0).fadeOut("slow"); } }); //We return false so the browser doesn't actually follow the link return false; });

When we were displaying the posts in process.php we echo’d the id of the post in the anchor tag. We are then getting this id element.attr(“id”) and building the URL. So when the AJAX call is sent, it will be something like delete.php?id=POSTID. If the AJAX call is successful, then we need to hide the list item.

element.parent().eq(0).fadeOut("slow");

In that bit of code, we select the element (anchor tag) that was clicked. We then find it’s parents and take the first one using eq(0). It’s ‘first’ parent is the list item its in (
) and we fade that out slowly.

Demo: http://lastkarrde.com/q7todo/

Download: http://lastkarrde.com/files/q7todo.zip

You can read the first part of the series at PHP + jQuery Todo List Part 1