Populating a drop down list control <select> from a php array is easy, the following function would do it with a breeze. Assuming an array of IT companies: $companies = array( ‘Microsoft’ => 1, ‘Google’ => 2, ‘Apple’ => 3 ); Feed it as a parameter to the php function below: function generateSelect($name = ”, …
Checkboxes is probably one of the most frequently used form controls which come handy in dealing with one to many relationships. The multiple selective nature of HTML form checkboxes require a convenient way for PHP to process multiple checkbox values, ideally in a single array. By default, each and every HTML input control including checkboxes …
PHP: Checkbox Array in Form Handling – Multiple Checkbox Values in an Array Read More »
To successfully run a query with text data containing single quotes ‘ as well as other SQL reserved punctuations, AND to prevent SQL injections, you will always want to escape the text values before using them in a SQL query. In PHP 4.0, we are stuck with mysql_real_escape_string. With PHP 5.0, mysqli:prepare and mysqli::real_escape_string are …
SQL injection is a typical code injection attack that exploits weaknesses of application in the database layer. SQL injection vulnerability is created when one scripting or programming language is embedded in or used as input in another with failure to verify the legality or filter for potential dangerous codes. SQL injections are possible when input …
As Web becomes one of the most fundamental means of communication and information delivery nowadays, and as its usage reaches population level in regards to that when the televisions prevailed, the protection of it has never been so critical. SANS institute in association with US government and various other weighty contributors, most of whom IT …
Top 25 Most Dangerous Web Programming Errors, Loopholes and Bad Habits Read More »
Pure HTML is static text files with dead content that want everything but to change. However by the help of a service scripting language such as PHP, HTML can be dynamic and changes every time you make a different request to the server. PHP is born with HTML rendering in mind. So it’s plain easy …
The last time I end up with hundreds of HTML files with PHP codes dispersed in them. Tried to rename them all to .php but failed. To use them and enable the php code within, I have to run the HTML files as PHP. How Apache web server works in resolving .php requests Apache gets …
It’s sometimes cumbersome to handle uploaded files — checking if it is really uploaded, moving and renaming. Why not writing all these chores into a class and make our own file upload script? First we are going to create a simple class to handle uploaded files and move them to some place we designate for …
PHP: File Upload Script (HTML Form + PHP Handler Class) Read More »
While there are a lot of methods for you to resize images with php, we will be using extension gd this time. Make sure you or your hosting company has installed it in the php distribution by running <?php if (extension_loaded(‘gd’)) { // return true if the extension’s loaded. echo ‘Installed.’; } else { if …
Creating a rather simple custom CMS on my client’s server, everything seems ok until I start testing out some of my ready made proprietary PHP classes. The problem is that I make things in PHP5 and all the classes are in PHP5 format. Quickly searched and scanned through some old tutorials for PHP4 about creating …
Scratching your head for a mystic error in your SQL query? No matter how you look into it, it just seems right and should by the God’s name work as you have wished. But it doesn’t and keeps pumping out annoying SQL syntax errors. Don’t panic, I have a few tips on this that might …
String is probably the most used data type in PHP as it is a templating language in nature. PHP string counts for a big part of your coding. Not to mention most of us use PHP to do what it does the best — serving web pages, involving a lot of strings all the way. …
PHP String Length function to Get Length of Strings in PHP Read More »
PHP Arrays are collections of items identified and ordered by index. Array length is just the number of elements it contains. For an array: <?php $greetings = array( ‘Good morning!’, ‘Good afternoon!’, ‘Good evening!’ ); ?> The length of array in PHP code above is simply the number of strings contained in it, in this …
PHP Array Length Function to Get Length of Arrays Read More »
You can see dynamic URLs everywhere on the web with busy interactive sites. Variables and their values are passed from one page to another in this way. Or more precisely, a page served in PHP (a single file php script) can accept external input in the form of a dynamic URL such as http://www.asite.com/[email protected]&subject=hi&body=bye. In …
How to pass variable values in URL from page to page with PHP? Read More »
As a result of the spreading SEO awareness and how Google works, it is always recommended to use as less dynamic URLs as possible for your site. If one must, try using as less variables in the dynamic URL as possible. A dynamic URL is one with a question mark that passes dynamic variables to …
How to build a php query string without question mark Read More »
This is just that easy to do as picking up a dollar on the ground. You can, of course write your own function to parse a string that looks like a URL and return various parts such as the domain, directory, requested file and possible data fields. However, PHP has come with exactly the function …
How to parse a URL in PHP to get the domain / host name Read More »
As opposed to best practices, we may as well take this as a collection of worst practices of PHP programming. I have been a PHP coder for 1 and a half years. Not an expert myself, but I learn as much as I can and try to code to the highest standard possible. Below are …
It’s easy to make a simple scraper script in PHP but it’s also easy for data-centric sites to detect and keep out suspiciously continued page accesses done in large amounts and a small period of time. There are usually 2 ways for a site to detect possible scraping activities. One is to make sure the …
Pretend your scraper script as a browser when scraping in PHP Read More »
The other day I was testing and playing with SimpleXML to process some XML documents when I came to a problem — I realized that I needed to delete a node before dumping the XML object to text. However if you are familiar with SimpleXML, it doesn’t come with a down right way to remove …
It is known that you have to make sure nothing’s already sent to output to perform a successful http header modification. As such, in PHP, you will keep an eye on possible white spaces before the use of header() function to modify delivery headers. For example, <?php header(‘…’); ?> this tiny snippet would fail if …
Warning: session_start(): Cannot send session cookie – headers already sent Read More »
