Shahid beheshti University Studying master on IT Ecommerce at KNTU(virtual) Over 15 courses been TA Over 2 year head of scientific association of computer & electronic faculty still consulting… Over 3 year php developer Senior Software Developer at Atys, Project Manager at i-phone.ir & some Consultant more on available fb.com/UltraWalker , cG8WS-b/in.lnkd
so magical, unstable, 1000way for any simple work! C# come on!! Java old, fat, not optimized, if see somewhere 99% it is because of backward compatibility!
starting a new language in web development php is the most easy one! If we go on details of comparison it would go for ever so lets learn php then u can migrate to each one u like! for web python, ruby, java, php all are perfect.
1995; 18 years ago Last Stable Version: 5.5.5 (October 17, 2013;) Influenced by Perl, C, C++, Java, Smart Language Implementation : C Website : http:/ /php.net New Website(beta) : http:/ /php.net?setbeta=1&beta=1
scripts are interpreted by a PHP Parser(Processor/Engine). PHP is designed for web development but also used as a general-purpose programming language(php cli!) PHP can be embedded directly into html documents!
development we need bunch of things generally called development stack! Name some development stacks There is always a webserver & a DBMS & a serverside language & a framework Development Environment is different from Production Environment Moving from Development env to Production env is called Deployment! Deployment is a really hard work, mostly tuneup, maintain, optimization, caching, training users, delivering functional code, refactoring, packaging, … . some webservers: apache(most famous, worst performance!, easy setup), Nginx(best performance, hard setup), litespeed, tomcat, lighttpd, … . Webserver
even login! U can scrape from other websites U can fetch a lot of data, make a pdf of them and mail that to yourself as an attachment! U can use sites APIs and make awesome apps! FB, Instagram, … U can use Wordpress, Joomla, PrestaShop, …
MB Default time of running script 30 seconds Defaults could be changed in config file (php.ini in windows & php.conf in linux) Defaults also could be changed for a specific script in runtime using ini_set command! PHP info file includes all defaults and could be seen using phpinfo() function!
are difference between a programmer & a developer Developer is Engineer Engineer is Trade Offing most of his life! Dependency, Costs, Learning Curve. Git, Contribute, … .
php open tag! / / ?> —> php close tag /* Comments just like other c family members! */ / /variables are loosely type so $variable = “qwe”; $variable = 123.456; $variable = ‘c’;
if we forget that? / /thinks it is a constant!! <?php define(‘k’,123); ?> <?php echo k; ?> /* so if you get an error on undefined constant is used! means you forgot some $ */
response architecture! Also we saw function for presenting floats number-format And bunch of other function phpinfo, define, defined, rand, getrandmax, … Saw arithmetic operators +, -, *, /, % but forgot to mention composites +=, -=, *=, /=, %=, .= And in the end we saw about scopes! lets test that!
Classes & u don’t want to load all of them every request! so u want to use autoloading and lazyload classes which is perfect. First you should choose a convention like Class.php or Class_Name.inc.php or CClass.php or classCamelCaseNaming.php make your classes in different files using your convention overload the autoload to load the needed file just in cases! Your class loading would be perfect even if you have 1000 of classes! Frameworks with classes and component for every little issue in development are called full stack! usually over 20MB Code!!(long learning curves)
2 functions: require include The include construct will emit a warning if it cannot find a file; this is different behavior from require, which will emit a fatal error. There are 2 other function which are safe to use on an path already used! require_once include_once @ before any command would prevent it from any warning! die or exit would cause parser to skip parsing any more of script!
a webserver! webserver serves filesystem from a apecific address called document_root to webroot /var/www/html/ —> http:/ /localhost/ /Users/UltraWalker/Web/ —> http:/ /localhost:8888/ C:\xampp\htdocs\ —> http:/ /localhost/ C:\wamp\www\ —> http:/ /localhost/ in each folder if permission is allowded webserver looks for default filenames usually index.html, index.php so http:/ /localhost/asd/ if shows sth, there is a file index.html/index.php in the asd folder! urls could be rewrited which is called url_rewriting! Webservers have lots of modules for different situations: mod_rewriting, mod_security, mod_eval, mod_ssl, …
"superglobals", which means they are available in all scopes throughout a script. There is no need to do global $variable; to access them within functions or methods. $GLOBALS, $_SERVER, $_GET, $_POST, $_FILES, $_COOKIE, $_SESSION, $_REQUEST, $_ENV
like constructor, destructor, clone, toString, isset, unset, get, set, autoload What a good structure to use! And understood what a full stack framework means! like Sf, Zf!
require(_once) saw their different in preparsing & reaction on missing file Saw @ usage before function to prevent getting any warning or note! Saw die usage in debugging and different of that with exit function!
filesystem on url from an specific address! usually the main folder is named www or htdocs. the file system path before map is called Document_Root In $_SERVER if we say DOCUMENT_ROOT —-mapped—> HTTP_HOST
or has no index file webserver answers if can! Also sometimes webserver config could be rewritten for a specific folder using .htaccess files if webservers allows! Also saw 404 on notfound the file requested, listing on a folder with no index file & 403 on restriction!
Global Arrays which can be accessed anywhere in code! they all start with $_ SERVER, REQUEST, GET, POST, FILES, SESSION, COOKIE SERVER has lots of thing but just some important SERVER_ADDR, REMOTE_ADDR, DOCUMENT_ROOT, HTTP_USER_AGENT, HTTP_HOST, QUERY_STRING, REQUEST_METHOD, REQUEST_URI, SCRIPT_NAME
we reviewed form tag and form submitting scenarios forms submitted methods are GET OR POST and we get inputs by their names in $_POST or $_GET based on method used or $_REQUEST if we don’t know! or we are developing! so isset($_REQUEST[‘sth’]) is obvious.
we saw that GET has url limits so is more limited GET can not submit file! GET is much more insecure! GET needs the values of inputs be encoded!! so we needed bunch of urlencoding & decoding functions: http:/ /us3.php.net/urlencode
key and values through headers we wanted bunch of functions to manipulate headers too:D http:/ /us3.php.net/manual/en/function.get-headers.php we saw what headers have HTTP version, date, server, connection type, content length, accept range, last modified, content type. These were Response headers! not Request headers which webbrowser sends! The last part about Server headers we saw was redirect using headers function: http:/ /php.net/manual/en/function.header.php And we mentioned using this function & MIME Types we can force browser to download instead of opening a format which can!
to our form(3 step) Add input with type of tile Add enctype=“multipart/form-data" to form tag Handle in Server Side We saw php file upload workflow and limits it upload to a temp folder with a temp name then provides u all information u need to move it to a persistent path!
type of file with name ‘picture’ after submitting that we could found the needed info in $_FILES[‘picture’] and the information name, type, size, tmp_name name is the files name from client computer!(image001.png) type is mime type detected: ‘text/css’, ‘text/rtf’, ‘document/pdf’, ‘executable/ exe’, … size is in Bytes so size/1024 -> kB, size/1024*1024 -> MB tmp_name is the generated name for file by php! we use this for persistant storage. after validation based on mimetype & extension —> end(array_explode(‘.’, $_FILES[‘picture’][‘name’])) we try to save if ($_FILES["picture"]["error"] == 0) move_uploaded_file($_FILES[“picture”][“tmp_name”], $newpath); for an unique solution use md5, sha1, time(), rand.
DDBMS, NOSQL, … The most common for now is RDBMS The most common brand in RDBMS is MySQL! RDBMSs have a Daemon Arch so they are services which are run! We should connect to one of them in our script with provided username and pass! After connection we get a link to that connection Using that link we can run queries for updating, inserting, deleting, dropping, … . for mysql we use mysql_* functions for postgresql we use pg_* functions for sqlite3 we use SQLITE::* static functions
for each client using a random number(Session_id) for each client on each request till session tracking is needed on a page by calling session_start! so in a login just we need session_start and saving the id of the founded valid user in some variable in the $_SESSION superglobal. and we can get that id value in any other page if session_start is called in the beggining! for logout again session_start, this time session_unset and then session_destroy. so session is part of ram for each client on the server, and part of a file(cookie) in the browser for a page in a site.
was for mysql with mysql_* function first we should connect then query then loop over results and close the connection in the end. But we saw the Migration problem and we wanted Abstraction. So we got to Abstract Data Objects like PDO which was perfect! It had same interface for 40 RDBMS with just a little slowness which is not important. But we know that in real applications AR/ORM is used which are both based on PDO usually!!
saw was session used for making stateless http, statefull with help of cookies. Php itself handles variables saved on $_SESSION for each user using their session_id. we just use to remember if we authenticated a user or not. sometimes we use it as cache for performance!
page in RAM in a hierarchical way called DOM. It loads all assets CSS, JS, Images, Flashes, Iframes, It’s own extensions! Browser have a CSS Selector Engine to do selections of css and paint, … . Browser have a JS Parser Engine(like V8) to parse all js files that page have and also injected by extensions or us(grease monkey). So we can modify DOM in anyway we like! JS libraries like JQuery, Prototype,… also provide a selection style like what we have in CSS(like ‘p div > .asd’, ‘#wqe’, …) In server side also we have libraries to provide such selection style using xpath which is better than string manual parsing. So instead of just requesting a page using Guzzle,Curl,file_get_content & manual parsing the response string! we can use Goutte & select anything we like! (Scraping, Testing(Functional, Acceptance)) Exercise: automate the workflow of providing user & pass for faculty wireless net as a browser extension(just JS)!
Reseller, SharedHosting, ControlPanel(Cpanel, DirectAdmin, Kloxo, Webmin, …) Sometimes there is a phpinfo sometimes is not! u can ini_set in runtime for each script but even that has limits! Varnish(Squid), APC(Eaccelerator), Redis(Memcache), XCache, CDN, should be asked to be installed usually are not!
in context Git How to keep up with new technologies Waterfall, Spiral, Prototype, Incremental, RAD, … RUP, Docs, Agile Manifesto, DesignPatterns, Solid Principles, Refactoring, Best Practices, Code Smells, DRY. YAGNI, … Scrum as an Agile framework! stories, scenarios, point for them(login example)(planning poker!) TDD(trust in code), BDD, Functional, Acceptance, Integration, KATA, … Zero Config, Convention over Configuration, Well Tested(Reliable), Full stack, loosely coupled, Scaffolding, Component based, … Technology & Languages Stack!!!
U wanna learn fast then choose a lite one Hot is always an interesting bad idea! Expert developers do not like magics! They like documents written with other experts! Chosen one? stick to that till become expert! then move on.
all the app config controllers -> all of apps’ logic data extensions messages migration models -> all of apps’ models runtime tests vendor views -> all of apps’ views
in project Users, Tweet, Tags, Comments, Likes Making a table for tweet in mysql using phpmyadmin for now! (Naming Conventions) Generate Model using Gii Modifying Validations in Model Generate CRUD using Gii Cleaning Generated Actions Testing app so far, Remained: User, Login, Relations, Tag, Like, Comment, …
/ Gii Extends CActiveRecord Have a static function called model Have a bunch of common functions tableName, rules, relations, search So we introduced Validation(scenario based), Relations(AR feature)
/ Gii Extends Controller which is in protected/Components and Controller itself extends CController Have bunch of functions filters, accessRules, action*, loadModel, performAjaxValidation So we introduced ACL(whitelist), layout, theme, actions, querying!
we did in iteration 2 for each other entity User, Login, Relations, Tag, Like, Comment, … Make table and relations Generate Model & Modify Rules, … Generate Controller & CRUD & Customize them
are provoking index.php with a parameter “r” that stands for route in the future we gonna make them more friendly but still each url will stand for a Module(optional), a Controller & Action! index.php?r=module/controller/action changing url will happen in urlmanager component in the config(protected/config/main.php) Module is optional! Default controller could be set in config if not is “site”! Default action is set as a property in controller if not is “index”! so after generation demo app localhost/demo/ —> site/index
All components we defined in config could be accessed in all the actions like db -> some times for plain query! request -> for getting parameters manually! user -> for authentication & session works! params -> for bunch of read only configs log -> for enabling & disabling in rare scenarios cache -> for performance tuning
Making the table for the entity Generating the model using Gii Customizing the Rules & Relations functions Generating the CRUD using Gii Customizing the Actions & their Access in controller
different kinds required, filter, match, email, url, unique, compare, length, in, numerical, captcha, type, file, default, exist, boolean, date, safe, unsafe http:/ /www.yiiframework.com/doc/api/1.1/CValidator can we write our own validator? sure! in 3 step Write a class with name C*Validator which extends CValidator Overload the validateAttribute function($object, $attribute) Set the * validator in rules of the model But before write one check extensions usually people already wrote a good one for your scenarios. You can find Yii’s default validators code in yii-1.1.*/framework/ validators/
attribute I needed for a model like captcha? Some other things about models: attributeLabel is the function which is creating all the labels in all cruds and forms so in future for translation in all views we gonna change that a bit! in controllers for searching a specific model with the id we use the already existing function loadModel but we can use AR functions pretty easy in this style: ModelName::model()->findBy* which * is Pk, Attribute, Attributes, SQL http:/ /www.yiiframework.com/doc/api/1.1/CActiveRecord
in the create & update action you will see a new model is instantiated then if it is submitted we do the property settings & validating and the last save and redirect if it is not submitted we render the action with empty model or in update scenario with already filled model, so for any middle work we should add code manually before render or before save like password changing or hashing, captcha, … we can add error to model manually! $model->addError(‘attribute’,’the specific error’) but the good way is to add a suitable rule. but we should add another condition to the saving if if(!$model->hasErrors() && $model->save()) remember save calls validate and that validate all the rules! never use a die on errors in action OR omit the summaryErrors from view!!!
actions crud generates are create > _form update > _form admin > _search (administration) index > _view (simple listing) view so if we change something in _form view it will change in both create & update we have to place a condition if(Yii::app()->controller->action->id==“update”) if(Yii::app()->controller->action->id==“create”) http:/ /www.yiiframework.com/doc/guide/1.1/en/basics.controller
some predefined functions which filter requests! like accessing an action!! An action can have multiple filters. The filters are executed in the order that they appear in the filter list. A filter can prevent the execution of the action and the rest of the unexecuted filters. Using the plus and the minus operators, we can specify which actions the filter should and should not be applied to. Coding a filter is so easy like public function filter*($filterChain) after doing the logic we can call $filterChain->run() or do throw some exceptions like 404, 403, … ! http:/ /www.yiiframework.com/doc/guide/1.1/en/basics.controller#filter http:/ /www.yiiframework.com/doc/api/1.1/CException http:/ /www.yiiframework.com/doc/api/1.1/CHttpException
function called accessRules() which returns an array which accessControlFilter will use.(all controllers have this function and the filter corresponding to that except siteController!!!!) array form was pretty easy & in whitelist format the last rule deny all * -> everyone(guest&loggedin) @ -> just loggedin ! -> just guest in soon future we see for admin check: Yii::app()->user->isAdministrator
web app Mostly coded in html can be written in any template engine can contain any script using Yii::app()->clientScript->registerScript -> inline js Yii::app()->clientScript->registerCss -> inline css Yii::app()->clientScript->registerScriptFile Yii::app()->clientScript->registerCssFile Yii::app()->clientScript->registerCoreScript -> preincluded jquery, jquery.ui, … => As seen in framework/web/js/packages.php http:/ /www.yiiframework.com/doc/api/1.1/CClientScript http:/ /www.yiiframework.com/doc/guide/1.1/en/basics.view
=> $this->pageTitle=“…”; Then the array of BreadCrumbs => $this->breadcrumbs= Then the array of SideBarMenu => $this->menu= Then registering client scripts for this specific view Then bunch of html along with Beautiful Widgets http:/ /www.yiiplayground.com/ —> zii Widgets + jquery & jquery ui http:/ /yiibooster.clevertech.biz/ —> bootstrap 2 + bunch of ui widgets http:/ /ybe.demopage.ru/ -> X editable http:/ /yiiwheels.2amigos.us/ -> bootstrap 3 + bunch of ui widgets http:/ /bootswatch.com/ -> bootstrap themes both 2,3 http:/ /semantic-ui.com/ -> most hot ui kit in open-source nowadays.
very configurable Admin -> all columns, sortable, filterable, pagination, … View -> all rows can be styled and also formatted using CFormatters Index -> by changing _view we can make a totally perfect listing, also sortable, paginable, … Can be shown in different configs for different users like user itself sees most of it’s profile attributes admin sees them all! user’s friends most of them but not as the user itself others see just email if not logged in won’t even see the page exists! http:/ /www.yiiframework.com/doc/api/1.1/CFormatter
Template! Make some defaults and conventions Ideally u should need min change just on scarce scenarios!! Just use scaffold for repeated tasks Make Admin with Theme and everything Make Reports Trough Email & others!
yii extensions Peek Yii2 Beautifulness comes with CSS & ClientSide Scripting Other Yii Special Topics Remember Roadmap? Highest Level of Expertness : Contribution
ultrawalker
shogogg
manfredsteyer
vinceamstoutz
fadis
yukukotani
simas
susisu
hirokunimaeta
oniak3ibm
syumai
.jpeg){kind=avatar}
atzzcokek
danielsogl
katiecoart
bluesmoon
emna__ayadi
letsgokoyo
kimpetersen
eileencodes
addyosmani
pauljervisheath
jct
hatefulcrawdad
smashingmag
techseoconnect
