PHP Best Practices - Speaker Deck

Slide 1

Slide 1 text

PHP Best Practices MONTREAL | FEB 26, 2020 @afilina

Slide 2

Slide 2 text

Anna Filina ‣ Coding since 1997. ‣ PHP since 2003. ‣ Legacy archaeologist. ‣ Test automation. ‣ Talks and workshops. ‣ YouTube videos.

Slide 3

Slide 3 text

No content

Slide 4

Slide 4 text

What Is This About? ‣ Not talking about nice-to-haves. ‣ Not talking about style. ‣ Real bugs as justification for each point.

Slide 5

Slide 5 text

$sql = 'SELECT * FROM users WHERE email="'.$email.'"'; $this->pdo->query($sql); // abc" OR 1=1 OR email="abc // SELECT * FROM users WHERE email="abc" OR 1=1 OR email="abc"; $sql = 'SELECT * FROM users WHERE email = :email'; $statement = $this->pdo->prepare($sql); $statement->execute([':email' => $email]);

Slide 6

Slide 6 text

$paths = $this->getPaths(); $urls = array_map(function ($path) { return self::URL_ROOT . $path; }, $paths); array_map(): Expected parameter 2 to be an array, string given

Slide 7

Slide 7 text

private function getPaths() { return '[ {"list_products":"/products"}, {"view_cart":"/cart"}, ]'; }

Slide 8

Slide 8 text

private function getPaths(): array { return [ $this->path1, $this->path2, ]; }

Slide 9

Slide 9 text

$paths = $this->getPaths(); $urls = array_map(function ($path) { return self::URL_ROOT . $path; }, $paths); Array to string conversion

Slide 10

Slide 10 text

private $path1 = ['list_products' => '/products']; private $path2 = ['view_cart' => '/cart'];

Slide 11

Slide 11 text

private $path1 = '/products'; private $path2 = '/cart';

Slide 12

Slide 12 text

$urls = array_map(function (string $path) { return self::URL_ROOT . $path; }, $paths);

Slide 13

Slide 13 text

/** * @return array */ private function getPaths(): array

Slide 14

Slide 14 text

composer require --dev vimeo/psalm vendor/bin/psalm --init Detected level 7 as a suitable initial default vendor/bin/psalm src

Slide 15

Slide 15 text

/** * @return array */ private function getPaths(): array ERROR: MixedReturnTypeCoercion - src/TypeMismatch.php:65:16 - The type 'array{0: mixed, 1: mixed}' is more general than the declared return type 'array' ...

Slide 16

Slide 16 text

if ($path === '') { throw new InvalidArgumentException('Is blank'); }

Slide 17

Slide 17 text

function (Path $path) { return self::URL_ROOT . $path; }, $paths);

Slide 18

Slide 18 text

final class Path { private string $path; public function __construct(string $path) { Assert::that($path) ->notBlank(); $this->path = $path; } public function __toString(): string { return $this->path; } }

Slide 19

Slide 19 text

array_map(function (Path $path) { return self::URL_ROOT . $path; }, $paths);

Slide 20

Slide 20 text

/** * @return array */ private function getPaths(): array { return [ new Path('/products'), new Path('/cart'), ]; }

Slide 21

Slide 21 text

public function setPrice(int $price) { $this->price = $price; } $this->setPrice(1.15);

Slide 22

Slide 22 text

Slide 23

Slide 23 text

Strict types.  Strict types. Strict types.

Slide 24

Slide 24 text

private string $stringPath; private Path $voPath;

Slide 25

Slide 25 text

NPEs galore.

Slide 26

Slide 26 text

class Product { public $name; } //... $this->findByName($this->product->name);   TypeError : Argument 1 passed to MyClass::findByName() must be of the type string, null given

Slide 27

Slide 27 text

class Product { public string $name; }

Slide 28

Slide 28 text

class ProductEntity { public $name;  public $price; } final class Product { public string $name; public int $price; //... }

Slide 29

Slide 29 text

return new Product( $product->name, $product->price );

Slide 30

Slide 30 text

if ($product->getLastPrice() !== null) { return number_format($product->getLastPrice()); } TypeError : number_format() expects parameter 1 to be float, null given

Slide 31

Slide 31 text

public function getLastPrice() { return array_pop($this->prices); }

Slide 32

Slide 32 text

$lastPrice = $product->getLastPrice(); if ($lastPrice !== null) { return number_format($lastPrice); }

Slide 33

Slide 33 text

@$array[$foo->a()]; public function a() { trigger_error('my error', E_USER_ERROR); } $array[$foo->a()] ?? 'something else';

Slide 34

Slide 34 text

interface ApiAware { public function setApi(Api $api); } if ($class instanceof ApiAware) { $class->setApi($api); }

Slide 35

Slide 35 text

final class MyClass implements ApiAware { private $api; public function setApi(Api $api): void { $this->api = $api; } public function sendApiRequest() { $product = new Product(); $this->api->sendRequest($product); } }

Slide 36

Slide 36 text

Error : Call to a member function sendRequest() on null

Slide 37

Slide 37 text

final class MyClass { private Api $api; public function __construct(Api $api) { $this->api = $api; } public function sendApiRequest() { $product = new Product(); $this->api->sendRequest($product); } }

Slide 38

Slide 38 text

Dependency injection   is your friend.

Slide 39

Slide 39 text

if (!empty($array)) { return $array[0]; } Trying to access array offset on value of type bool

Slide 40

Slide 40 text

if (empty($airplaneSeat)) { $this->book($airplaneSeat); }

Slide 41

Slide 41 text

empty(""); empty(0); empty(0.0); empty("0"); empty(null); empty(false); empty(array());

Slide 42

Slide 42 text

!== "" !== 0 !== 0.0 !== null === true count(array())

Slide 43

Slide 43 text

0.99 + 0.01 === 1

Slide 44

Slide 44 text

IEEE 754  floating point arithmetic.

Slide 45

Slide 45 text

$amountInCents + 1

Slide 46

Slide 46 text

/** @var PaymentGatewayInterface */ $gateway = $this->getSelectedGateway(); $gateway->preauthorizePayment();

Slide 47

Slide 47 text

How to test?

Slide 48

Slide 48 text

$soapApi = new SoapApi($wsdl, $soapKey, $config); public function __construct(SoapApi $soap) { $this->soap = $soap; }

Slide 49

Slide 49 text

class Order { public function getProducts() { return Product::find($this->productIds); } } Product::shouldReceive('find') ->once() ->andReturn([]);

Slide 50

Slide 50 text

class MyController extends AbstractController { public function myAction() { $doctrine = $this->container->get('doctrine'); } }