Developer Wallpapers

Desktop Wallpapers - PHP

The future of PHP 6

<div style="text-align: center; font-weight: bold; font-family: arial;">Know what changes are in store for PHP V6 and how your scripts will change
<div style="text-align: left;">
PHP's next edition, V6, includes new features and syntax improvements that will make it easier to use from an object-oriented standpoint. Other important features, such as Unicode support in many of the core functions, mean that PHP V6 is positioned for better international support and robustness.

PHP is already popular, used in millions of domains (according to Netcraft), supported by most ISPs and used by household-name Web companies like Yahoo! The upcoming versions of PHP aim to add to this success by introducing new features that make PHP more usable in some cases and more secure in others. Are you ready for PHP V6? If you were upgrading tomorrow, would your scripts execute just fine or would you have work to do? This article focuses on the changes for PHP V6 — some of them back-ported to versions PHP V5.x — that could require some tweaks to your current scripts.

If you're not using PHP yet and have been thinking about it, take a look at its latest features. These features, from Unicode to core support for XML, make it even easier for you to write feature-filled PHP applications.

New PHP V6 features

PHP V6 is currently available as a developer snapshot, so you can download and try out many of the features and changes listed in this article. For features that have been implemented in the current snapshot

Improved Unicode support

Much improved for PHP V6 is support for Unicode strings in many of the core functions. This new feature has a big impact because it will allow PHP to support a broader set of characters for international support. So, if you're a developer or architect using a different language, such as the Java™ programming language, because it has better internationalization (i18n) support than PHP, it'll be time to take another look at PHP when the support improves.

Because you can download and use a developer's version of PHP V6 today, you will see some functions already supporting Unicode strings. For a list of functions that have been tested and verified to handle Unicode

Namespaces

Namespaces are a way of avoiding name collisions between functions and classes without using prefixes in naming conventions that make the names of your methods and classes unreadable. So by using namespaces, you can have class names that someone else might use, but now you don't have to worry about running into any problems. Listing 1 provides an example of a namespace in PHP.

You won't have to update or change anything in your code because any PHP code you write that doesn't include namespaces will run just fine. Because the namespaces feature appears to be back-ported to V5.3 of PHP, when it becomes available, you can start to introduce namespaces into your own PHP applications.

Example of a namespace

// I'm not sure why I would implement my own XMLWriter, but at least
// the name of this one won't collide with the one built in to PHP
namespace NathanAGood;
class XMLWriter
{
   // Implementation here...
}

$writer = new NathanAGood::XMLWriter();

?>

Web 2.0 features

Depending on how you use PHP and what your scripts look like now, the language and syntax differences in PHP V6 may or may not affect you as much as the next features, which are those that directly allow you to introduce Web 2.0 features into your PHP application.

SOAP

SOAP is one of the protocols that Web services "speak" and is supported in quite a few other languages, such as the Java programming language and Microsoft® .NET. Although there are other ways to consume and expose Web services, such as Representational State Transfer (REST), SOAP remains a common way of allowing different platforms to have interoperability. In addition to SOAP modules in the PHP Extension and Application Repository (PEAR) library, a SOAP extension to PHP was introduced in V5. This extension wasn't enabled by default, so you have to enable the extension or hope your ISP did. In addition, PEAR packages are available that allow you to build SOAP clients and servers, such as the SOAP package.

Unless you change the default, the SOAP extension will be enabled for you in V6. These extensions provide an easy way to implement SOAP clients and SOAP servers, allowing you to build PHP applications that consume and provide Web services.

If SOAP extensions are on by default, that means you won't have to configure them in PHP. If you develop PHP applications and publish them to an ISP, you may need to check with your ISP to verify that SOAP extensions will be enabled for you when they upgrade.

XML

As of PHP V5.1, XMLReader and XMLWriter have been part of the core of PHP, which makes it easier for you to work with XML in your PHP applications. Like the SOAP extensions, this can be good news if you use SOAP or XML because PHP V6 will be a better fit for you than V4 out of the box.

The XMLWriter and XMLReader are stream-based object-oriented classes that allow you to read and write XML without having to worry about the XML details.

Things removed

In addition to having new features, PHP V6 will not have some other functions and features that have been in previous versions. Most of these things, such as register_globals and safe_mode, are widely considered "broken" in current PHP, as they may expose security risks. In an effort to clean up PHP, the functions and features listed in the next section will be removed, or deprecated, from PHP. Opponents of this removal will most likely cite issues with existing scripts breaking after ISPs or enterprises upgrade to PHP V6, but proponents of this cleanup effort will be happy that the PHP team is sewing up some holes and providing a cleaner, safer implementation.

Features that will be removed from the PHP version include:

• magic_quotes
• register_globals
• register_long_arrays
• safe_mode

magic_quotes

Citing portability, performance, and inconvenience, the PHP documentation discourages the use of magic_quotes. It's so discouraged that it's being removed from PHP V6 altogether, so before upgrading to PHP V6, make sure that all your code avoids using magic_quotes. If you're using magic_quotes to escape strings for database calls, use your database implementation's parameterized queries, if they're supported. If not, use your database implementation's escape function, such as mysql_escape_string for MySQL or pg_escape_string for PostgreSQL. Listing 2 shows an example of magic_quotes use.

Using magic_quotes (discouraged)

// Assuming magic_quotes is on...
$sql = "INSERT INTO USERS (USERNAME) VALUES $_GET['username']";
?>

After preparing your PHP code for the new versions of PHP, your code should look like that in Listing 3.

Listing 3. Using parameterized queries (recommended)

// Using the proper parameterized query method for MySQL, as an example
$statement = $dbh->prepare("INSERT INTO USERS (USERNAME) VALUES ?");
$statement->execute(array($_GET['username']));
?>

Now that support for magic_quotes will be completely removed, the get_magic_quotes_gpc() function will no longer be available. This may affect some of the older PHP scripts, so before updating, make sure you fix any locations in which this functions exists.

register_globals

The register_globals configuration key was already defaulted to off in PHP V4.2, which was controversial at the time. When register_globals is turned on, it was easy to use variables that could be injected with values from HTML forms. These variables don't really require initialization in your scripts, so it's easy to write scripts with gaping security holes. The register_globals documentation provides much more information about register_globals. See Listing 4 for an example of using register_globals.

Using register_globals (discouraged)

// A security hole, because if register_globals is on, the value for user_authorized
// can be set by a user sending them on the query string
// (i.e., http://www.example.com/myscript.php?user_authorized=true)
if ($user_authorized) {
   // Show them everyone's sensitive data...
}
?>

If your PHP code uses global variables, you should update it. If you don't update your code to get prepared for newer versions of PHP, consider updating it for security reasons. When you're finished, your code should look like Listing 5.

Listing 5. Being specific instead (recommended)

function is_authorized() {
   if (isset($_SESSION['user'])) {
       return true;
   } else {
       return false;
   }
}

$user_authorized = is_authorized();
?>

register_long_arrays

The register_long_arrays setting, when turned on, registers the $HTTP_*_VARS predefined variables. If you're using the longer variables, update now to use the shorter variables. This setting was introduced in PHP V5 — presumably for backward-compatibility — and the PHP folks recommend turning it off for performance reasons. Listing 6 shows an example of register_long-arrays use.

Using deprecated registered arrays (discouraged)

   // Echo's the name of the user value given on the query string, like
   // http://www.example.com/myscript.php?username=ngood
   echo "Welcome, $HTTP_GET_VARS['username']!";
?>

If your PHP code looks like that shown in Listing 6, update it to look like that in
 Listing 7. Shut off the  register_long_arrays setting if
 it's on and  test your scripts again.

Using $_GET (recommended)

   // Using the supported $_GET array instead.
   echo "Welcome, $_GET['username']!";
?>

safe_mode

The safe_mode configuration key, when turned on, ensures that the owner of a file being operated on matches the owner of the script that is executing. It was originally a way to attempt to handle security when operating in a shared server environment, like many ISPs would have. (For a link to a list of the functions affected by this safe_mode change, Your PHP code will be unaffected by this change, but it's good to be aware of it in case you're setting up PHP in the future or counting on safe_mode in your scripts.

PHP tags

Microsoft Active Server Pages (ASP)-style tags — the shorter version of the PHP tags — are no longer supported. To make sure this is not an issue for your scripts, verify that you aren't using the <% or %> tags in your PHP files. Replace them with and ?>.

FreeType 1 and GD 1

The PHP team is removing support for both FreeType 1 and GD 1, citing the age and lack of ongoing developments of both libraries as the reason. Newer versions of both of these libraries are available that provide better functionality. For more information about FreeType and GD

ereg

The ereg extension, which supports Portable Operating System Interface (POSIX) regular expressions, is being removed from core PHP support. If you are using any of the POSIX regex functions, this change will affect you unless you include the ereg functionality. If you're using POSIX regex today, consider taking the time to update your regex functions to use the Perl-Compatible Regular Expression (PCRE) functions because they give you more features and perform better. Table 1 provides a list of the POSIX regex functions that will not be available after ereg is removed. Their PCRE replacements are also shown.

Installing PHP6 (For beginners)

Installing PHP6 (For beginners)

Hello all, you might have read that PHP6 is under and has been under development for the past few months. Well after hacking around some code trying to get some DirectoryIterator unicoded and ready for php6, I have ran into the problem of compiling php6.. So I figured, might as well give an idea to anyone who feels like on how to install (compile) php6.

Notice that I will be using the command:

• su -c "command"

Which is because some system do not have sudoers setup yet (yes it does still exist)

Ok, before reading this, here's a couple usefull links:

http://php.net/
http://php.net/anoncvs.php (Most used here)
http://snaps.php.net/
http://cvs.php.net/
http://site.n.ml.org/info/flex/
http://icu.sourceforge.net/download/3.6.html


Hello all, you might have read that PHP6 is under and has been under development for the past few months. Well after hacking around some code trying to get some DirectoryIterator unicoded and ready for php6, I have ran into the problem of compiling php6.. So I figured, might as well give an idea to anyone who feels like on how to install (compile) php6.


There is also a numerous amount of tools you'll have to install before you might become able to try to compile PHP6.

• autoconf: 2.13
• automake: 1.4+
• libtool: 1.4.x+ (except 1.4.2)
• bison: 1.28, 1.35, 1.75, 2.0 or higher
• flex: 2.5.4
• re2c: 0.9.11+

Of course, all this information can be found on the php's page (http://php.net/anoncvs.php )

Also, the coolest part of this (The heart of php6 imho - else than andrei and sara (joking))) is that package you'll have to install:
http://icu.sourceforge.net/download/3.6.html

You can start by executing the following commans:

• mkdir ~/development; cd ~/development
• wget ftp://ftp.software.ibm.com/software/globalization/icu/3.6/icu4c-3_6-src.tgz

+ ^ This is for linux of course

• tar -xzvf icu4c-3_6-src.tgz
• cd icu; cd source
• su -c "mkdir /usr/local/icu"
• ./configure --prefix=/usr/local/icu && make && make install

^ You might get an error related to zlib (Version to low, I strongly suggest to update it if
you get the error)

So what? You are done with ICU compiling ? Let's move on shall we ?

So before installing php6, you have to download it. You can choose from various places, first
you can simply look at http://snaps.php.net (Which are frequent snapshots of the cvs repository) and get the latest php6 snap or you can simply make an anonymous checkout (for those who dont' have a username here's how to do that)

It is also recommended that you put these configurations into your ~/.cvsrc file:

• cvs -z3
• update -d -P
• checkout -P
• diff -u

Then you are ready to go for your anonymous cvs checkout

(Username: "cvsread" and password "phpfi")

• cvs -d :pserver:cvsread@cvs.php.net:/repository login
• cvs -d :pserver:cvsread@cvs.php.net:/repository checkout php6

The previous commands will execute a cvs checkout (Get the code) and store it into ~/development/php6

Once you have installed all the tools stated above, did your checkout, and all is square here comes the second part.

You'll have to execute the following commands (Using apache2 for this example):

1. cd php6
2. ./buildconf
3. sudo "mkdir /usr/local/php6"
4. ./configure --prefix=/usr/local/php6 --with-icu-dir=/usr/local/icu --with-apxs2=/usr/bin/apxs2

(Just using apxs2 as an example)
^ You can of course add more options as such as --with-mysql=/usr/bin (if mysql is in bin)
--with-phar --with-bz2. Just see the command "./configure --help" for a list of options.

^ Also, if the make is dying because of some flex problems, you can use the command
"apt-get install flex-old" or simply get the source at: http://site.n.ml.org/download/20030401085856/flex/flex-2.5.4a.tar.gz

1. then ,if it all went well of course, you type:
2. make && su -c "make install"

If it all went well, then you should have the php6 files all ready to be used in /usr/local/php6
Just give a look at it to see if you have new directories, etc.

If you used the --with-apxs(2) options, you should already be set with the apache load_modules et all. You might notice that it said LoadModule php5 well don't worry that's all good you'll just need your libphp6.so which is usually well placed when using --with-apxs.

If you are not sure, just look at your /etc/apache2/httpd.conf and /etc/apache2/mods-enabled/php5.load files to see if you have it pointing to libphp6.so (Which it probably is)

So are you ready ? Last command line command:
- su -c "apache2ctl restart"

If you do not get an error, you should be able to go to your web directory
(Here I am using /var/www on my development box) and add a file with this content:

phpinfo();
?>

If you are lucky and it all went well, then you will see "PHP Version 6.0.0-dev" with probably a million warnings. Well it is installed, you can start fiddling around and testing.

Hope this helps a couple people (Even though a lot of you probably gave me hints during this crusade)

PHP Paging Code: Break up records into pages

<!--
============= Connection.php =================
//-->
<?
$server = "localhost";
$user = "root";
$pass = "";

$OpSe = mysql_connect($server, $user, $pass ) or die(mysql_error()):
$OpDb = mysql_select_db("DATABASE_NAME",$OpSe) or die(mysql_error());
?>

<!--
============= Paging.php =================
//-->
<style type="text/css">
a.spage:link{
border: 1px solid #000000;font-family:verdana; font-size:10px;padding-top:1px; padding-bottom:2px;padding-left:4px;padding-right:4px;color:white;font-weight:bold;text-decoration:none;background-color:#ffffff; color:#000000;
}

a.lspage:link{
border: 1px solid #000000;font-family:verdana; font-size:10px;padding-top:1px; padding-bottom:2px;padding-left:4px;padding-right:4px;color:white;font-weight:bold;text-decoration:none; color:#000000;
}
</style>
<?
// set record display per page....
$PP = 10;
//---------------
isset($_GET["st"]) && $_GET["st"]!="" ? $st=$_GET["st"] : $st=0;
?>
<table border="1">
<tr bgcolor="#999999">
<td><b>Field1 Date</b></td>
<td><b>Field2 Date</b></td>
<td><b>Field3 Date</b></td>
<td><b>Field4 Date</b></td>
</tr>
<?
$query ="SELECT field1, field2, field3, field4 FROM TABLE_NAME LIMIT ".$st.",".$PP;
$rs = mysql_query($query) or die(mysql_error());
while($row = mysql_fetch_array($rs)){
?>
<tr bgcolor="#CCCCCC">
<td><?=$row["field1"]?></td>
<td><?=$row["field2"]?></td>
<td><?=$row["field3"]?></td>
<td><?=$row["field4"]?></td>
</tr>
<?
}
?>
</table>
<table border="0" cellpadding="0" cellspacing="0" width="99%" align="center">
<tr>
<td width="1%">
<? if($st>=$PP){?>
<a href="?st=<?=$st-$PP?>">Pre</a>
<? }?>
</td>
<td align="center">
<?
// Do not change below this line-----------------------------------------
$total--;
$pgv = $total/$PP;

if($pgv>1)
$pg_a = explode(".",$pgv);
else
$pg_a = $pgv;

if($pg_a[1]>0)
$pg = $pg_a[0]+1;
else
$pg = 0;

if($pg=="")$pg = $pgv;
$selpage = $st / $PP;
$selpage++;
$selpage = (int) $selpage;
for($ploop=1,$stl=1 ;$ploop<=$pg;$ploop++,$stl+=$PP){
echo ' <a href="?st='.$stl.'" class="';
echo $ploop==$selpage ? "spage" : "lspage";
echo '">'.$ploop.'</a> ';
}
// Do not change above this line-----------------------------------------
?>
</td>
<td align="right" width="1%">
<? if($st<$total-$PP){?>
<a href="?st=<?=$st+$PP?>">Next</a>
<? }?>
</td>
</tr>
</table>