[SMD] - 8L0G5PH3R3 » PHP Programming

Installing OAuth extension in XAMPP for Mac OS X

SMD — Fri, 03 Jun 2011 22:42:48 +0000

Installing via PECL didn’t really work out for me. So, here is what I did:

Install Xcode if you don’t have it

Download & install XAMPP for Mac developer package

You will need the PHP header files. Create a symlink:
ln -s /Applications/XAMPP/xamppfiles/lib /Applications/XAMPP/xamppfiles/include

Download the module here: http://pecl.php.net/get/oauth

Unpack

Run phpize:
sudo /Applications/XAMPP/xamppfiles/bin/phpize

Configure with the following command:
sudo MACOSX_DEPLOYMENT_TARGET=10.6 CFLAGS='-O3 -fno-common -arch i386 -arch x86_64' LDFLAGS='-O3 -arch i386 -arch x86_64' CXXFLAGS='-O3 -fno-common -arch i386 -arch x86_64' ./configure --with-php-config=/Applications/XAMPP/xamppfiles/bin/php-config

Run sudo make

Copy the module to your extension directory
sudo cp modules/oauth.so /Applications/XAMPP/xamppfiles/lib/php/php-5.3.1/extensions/no-debug-non-zts-20090626/

Enable the module by adding this to your php.ini:
extension=oauth.so

Restart apache and run phpinfo() to see if it’s working

OSX : Installing MongoDB and the PHP MongoDB driver.

SMD — Fri, 07 Jan 2011 09:30:16 +0000

1) Grab the latest 64-bit version for OSX from MongoDB website.

2) Untar the file
tar -zxvf mongodb-osx-x86_64-1.6.5.tgz

3) I use XAMPP for OS X, need to create a location for it to store databases.
sudo mkdir -p /Applications/XAMPP/xamppfiles/var/mongodb
sudo cp -r bin/* /Applications/XAMPP/xamppfiles/bin/

4) Create configuration file, name it mongodb.conf and put it at /Applications/XAMPP/xamppfiles/var/mongodb.
# Store data alongside MongoDB instead of the default, /data/db/ dbpath = /Applications/XAMPP/xamppfiles/var/mongodb

# Only accept local connections bind_ip = 127.0.0.1

5) Run MongoDB deamon with this command
sudo /Applications/XAMPP/xamppfiles/bin/mongod --config=/Applications/XAMPP/xamppfiles/var/mongodb/mongodb.conf

6) Test if it’s running http://localhost:28017.

7) To install Mongo PHP driver, compile the driver from the latest source on GitHub.
tar zxvf mongodb-mongodb-php-driver-.tar.gz cd mongodb-mongodb-php-driver- sudo /Applications/XAMPP/xamppfiles/bin/phpize ./configure sudo make install

8 ) Copy compiled module to PHP extension directory.
/Applications/XAMPP/xamppfiles/bin/php -i | grep extension_dir cp modules/mongo.so /Applications/XAMPP/xamppfiles/lib/php/php-5.3.1/extensions/no-debug-non-zts-20090626

9) Load the extension on PHP startup, add a line to php.ini:
extension=mongo.so

10) And you are good to start Mongo! Cheers.

PHP Security Talk at MyGOSSCON 2010

SMD — Wed, 10 Nov 2010 19:59:20 +0000

Slide from my recent presentation at MyGOSSCON 2010

PHP Security

View more presentations from Sumardi Shukor.

A big thank you to those who attended my presentation. Big applause to the organizer.

Sayonara PHP4?

SMD — Sat, 07 Jul 2007 08:46:50 +0000

As a PHP Developer, I think it’s time to move forward to PHP5.

Today, I checked GoPHP5.org initiative:

PHP developers cannot leverage PHP 5′s full potential without dropping support for PHP 4, but PHP 4 is still installed on a majority of shared web hosts and users would then be forced to switch to a different application. Web hosts cannot upgrade their servers to PHP 5 without making it impossible for their users to run PHP 4-targeted web apps, and have no incentive to go to the effort of testing and deploying PHP 5 while most web apps are still compatible with PHP 4 and the PHP development team still provides maintenance support for PHP 4. The PHP development team, of course, can’t drop maintenance support for PHP 4 while most web hosts still run PHP 4.

It is a dangerous cycle, and one that needs to be broken. The PHP developer community has decided that it is indeed now time to move forward, together. Therefore, the listed software projects have all agreed that effective February 5th, 2008, any new feature releases will have a minimum version requirement of at least PHP 5.2.0. Furthermore, the listed web hosts have agreed that effective February 5th, 2008, they will include PHP 5.2 (or a more recent version) in their service offer.

It is our belief that this will provide web hosts reason to upgrade and the PHP development team the ability to retire PHP 4 and focus efforts on PHP 5 and the forthcoming PHP 6, all without penalizing any existing project for being “first out of the gate”.

There’re some of the big open source projects such as Drupal, PHPMyAdmin and MediaWiki support this initiative. They throw out PHP4 supports for the latest release of their project.

So, the time has come. We have to move forward to PHP5. Lets focus our efforts to PHP5 and forthcoming PHP6! Go PHP5!

MySQL Case Sensitive On Linux

SMD — Wed, 04 Jul 2007 16:45:14 +0000

A good rule to remember. MySQL are case sensitive only table and database identifiers and only on platforms with case-sensitive filenames (Linux/Unix). So, If you’re developing a system. Do remember. MySQL are case sensitive. An example:

Bad Practice:
select * from Project

Good Practice:
SELECT * FROM project

Ref: Identifier Case Sensitive

Inspekt Build Available

SMD — Thu, 07 Jun 2007 05:37:55 +0000

Yesteday, I presented a full-day tutorial on SQL Injection & Session Hijacking In PHP Programming which seems to have been well received by those who attended. And today, I would like to present to you a new Inspekt Build available to be downloaded at Google Code.

What is Inspekt?

Inspekt acts as a sort of ‘firewall’ API between user input and the rest of the application. It takes PHP superglobal arrays, encapsulates their data in an “cage” object, and destroys the original superglobal. Data can then be retrieved from the input data object using a variety of accessor methods that apply filtering, or the data can be checked against validation methods. Raw data can only be accessed via a ‘getRaw()’ method, forcing the developer to show clear intent.
- From Inspekt

It supports PHP4 & PHP5. More info at http://code.google.com/p/inspekt/

- Sample Basic Usage

PHP Loves JSON

SMD — Fri, 18 May 2007 18:31:51 +0000

JSON is a format for communication between the server-side (PHP, JSP, ASP, etc…) and the client-side (javascript). The magic of it is that the response from the server-side can be easily converted to an object via the use of the eval() function. eval() (can be “evil”) is a function that gives you the possibility to execute some code in javascript from a string. To use eval() is not a good idea.

How can you JSON from PHP?

If you are using PHP 5.2.x and above, you can simply use PHP built-in function, json_encode() and json_decode(). This is an example how it works:

$i = array(
array(“id” => 1, “name” => “sumardi”),
array(“id” => 2, “name” => “hassan”),
array(“id” => 3, “name” => “ruby”)
);

echo json_encode($i);

And it will echo :

[{"id":1,"name":"sumardi"},{"id":2,"name":"hassan"},{"id":3,"name":"ruby"}]

How to JSON on Client-Side?

Use the eval() function on the Server-Side JSON text response. And then you can call JSON like this:

for(var i = 0; i < json.length; i++)
{
console.info(json.id + ” ” + json.name);
}