Presentation is loading. Please wait.

Presentation is loading. Please wait.

Web Scripting [PHP] CIS166AE Wednesdays 6:00pm – 9:50pm Rob Loy.

Published byAnis Rice Modified over 8 years ago

Similar presentations

Presentation on theme: "Web Scripting [PHP] CIS166AE Wednesdays 6:00pm – 9:50pm Rob Loy."— Presentation transcript:

1 Web Scripting [PHP] CIS166AE Wednesdays 6:00pm – 9:50pm Rob Loy

2 Agenda Presentations Presentations Overview of existing pages and functionality Overview of existing pages and functionality SQL sort SQL sort Creating mysql tables Creating mysql tables PHP security infrastructure PHP security infrastructure Mid-term Project Mid-term Project In class work: Sessions In class work: Sessions

3 Lab 3 Create folder “class5” Create folder “class5” Copy week4 files into week5 Copy week4 files into week5 Update index.php to display all the information. The information should be displayed in an format. Update index.php to display all the information. The information should be displayed in an format. Update update.php to allow age to be updated Update update.php to allow age to be updated Send email to rob.loy@scottsdalecc.edu with URL to input form file before 6pm on October 10. Send email to rob.loy@scottsdalecc.edu with URL to input form file before 6pm on October 10.rob.loy@scottsdalecc.edu

4 Sort DB records SELECT * FROM persons ORDER BY fname ASC; SELECT * FROM persons ORDER BY fname ASC; SELECT * FROM persons ORDER BY fname DESC; SELECT * FROM persons ORDER BY fname DESC; The ORDER BY keyword is used to sort the result-set by a specified column. The ORDER BY keyword is used to sort the result-set by a specified column. The ORDER BY keyword sort the records in ascending order by default. The ORDER BY keyword sort the records in ascending order by default. If you want to sort the records in a descending order, you can use the DESC keyword. If you want to sort the records in a descending order, you can use the DESC keyword. http://www.w3schools.com/sql/sql_orderby.asp

5 phpMyAdmin

6 mySQL Data Types Numeric Numeric Float Float Integer Integer String String Char Char Varchar Varchar Text Text Date Date http://dev.mysql.com/doc/refman/5.0/en/data-types.html

7 Create mySQL Table Structure Name each field Name each field Select a Type Select a Type Assign a length for VARCHAR or CHAR types Assign a length for VARCHAR or CHAR types Design default values Design default values Determine if NULL values allowed by using NULL checkbox Determine if NULL values allowed by using NULL checkbox Pick one field as ID and select INT type and A_I checkbox Pick one field as ID and select INT type and A_I checkbox

8 PHP Global Variables $_POST $_POST $_GET $_GET $_SESSION $_SESSION $_COOKIES $_COOKIES http://www.php.net/manual/en/reserved.variables.php

9 Cookies A cookie is a small file that is stored on the client computer when visiting a website. Stored on the client computer Stored on the client computer Lifespan set when created Lifespan set when created Work well with large sites that use several Web servers Work well with large sites that use several Web servers No good if the client has disabled cookies No good if the client has disabled cookies Can be edited since they reside on the client system Can be edited since they reside on the client system

10 How to use Cookies // Set a cookie for one hour setcookie("TestCookie", “YAY", time()+3600); // Get cookie information echo $_COOKIE["TestCookie"];echo $HTTP_COOKIE_VARS["TestCookie"]; // Delete cookies setcookie ("TestCookie", "", time() - 3600);setcookie ("TestCookie", ""); http://php.net/manual/en/function.setcookie.php

11 Sessions Sessions are a combination of a server-side cookie and a client-side cookie, where the client-side cookie is simply a reference id to the information stored in the server-side cookie. Server-size cookie can store large amounts Server-size cookie can store large amounts Data is stored on the server Data is stored on the server Only last until the user closes their browser Only last until the user closes their browser

12 How to use Sessions // Have to start session before any output session_start(); // Set the variable for page session $_SESSION['favcolor'] = 'green'; // Get the session variable information echo $_SESSION[‘favcolor’]; // Finally, destroy the session.unset($_SESSION[“favcolor”]);session_destroy(); http://php.net/manual/en/function.session-start.php

13 IMPORTANT NOTE To use cookie-based sessions, session_start() must be called before outputting anything to the browser.

14 Security model LOGIN PAGE SECURED PAGE If username and password combination are in DB then “TRUE” else “FALSE” TRUEFALSE SELECT * FROM users WHERE username=‘bob’ AND password =‘mypass’; Not logged in

15 Security test if ($_SESSION[“status”] !== “Active”) {header(“Location:login.php”);} if (mysql_num_rows($object) == 1) { $_SESSION[“status”] = “Active”; } login.php secure.php

16 Questions?

17 Lab 4 Make sure clas files are working for : Make sure clas files are working for : index.php index.php signin.php signin.php signout.php signout.php Username (rob) and Password (.rob) Username (rob) and Password (.rob) Send email to rob.loy@scottsdalecc.edu with URL to input form file before 6pm on October 17. Send email to rob.loy@scottsdalecc.edu with URL to input form file before 6pm on October 17.

18 Mid-term Project Create folder called project1 Create folder called project1 Create mySQL table that has at least 5 fields Create mySQL table that has at least 5 fields SELECT all records from the table SELECT all records from the table Create a web form that has INSERT and UPDATE functionality for the table Create a web form that has INSERT and UPDATE functionality for the table Add a two-way sort functionality Add a two-way sort functionality At least TWO fields have to be required and display error messages At least TWO fields have to be required and display error messages Send email to rob.loy@scottsdalecc.edu with URL to file before 6pm on October 24. Send email to rob.loy@scottsdalecc.edu with URL to file before 6pm on October 24.

Download ppt "Web Scripting [PHP] CIS166AE Wednesdays 6:00pm – 9:50pm Rob Loy."

Similar presentations

PHP: Date() Function The PHP date() function formats a timestamp to a more readable date and time.

PHP: Date() Function The PHP date() function formats a timestamp to a more readable date and time.
Copyright © 2003 Pearson Education, Inc. Slide 8-1 The Web Wizards Guide to PHP by David Lash.

Copyright © 2003 Pearson Education, Inc. Slide 8-1 The Web Wizards Guide to PHP by David Lash.
PHP II Interacting with Database Data. The whole idea of a database-driven website is to enable the content of the site to reside in a database, and to.

PHP II Interacting with Database Data. The whole idea of a database-driven website is to enable the content of the site to reside in a database, and to.
PHP Hypertext Preprocessor Information Systems 337 Prof. Harry Plantinga.

PHP Hypertext Preprocessor Information Systems 337 Prof. Harry Plantinga.
By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.

By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.
Manipulating MySQL Databases with PHP. PHP and mySQL2 Objectives Connect to MySQL from PHP Learn how to handle MySQL errors Execute SQL statements with.

Manipulating MySQL Databases with PHP. PHP and mySQL2 Objectives Connect to MySQL from PHP Learn how to handle MySQL errors Execute SQL statements with.
Intermediate PHP & MySQL

Intermediate PHP & MySQL
Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.

Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.
Lecture 3 – Data Storage with XML+AJAX and MySQL+socket.io

Lecture 3 – Data Storage with XML+AJAX and MySQL+socket.io
© Yanbu University College YANBU UNIVERSITY COLLEGE Management Science Department © Yanbu University College Module 6:WEB SERVER AND SERVER SIDE SCRPTING,

© Yanbu University College YANBU UNIVERSITY COLLEGE Management Science Department © Yanbu University College Module 6:WEB SERVER AND SERVER SIDE SCRPTING,
Session 5: Working with MySQL iNET Academy Open Source Web Development.

Session 5: Working with MySQL iNET Academy Open Source Web Development.
Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.

Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.
Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.

Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.
MySQL in PHP – Page 1 of 17CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: MySQL in PHP Reading: Williams &

MySQL in PHP – Page 1 of 17CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: MySQL in PHP Reading: Williams &
CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.

CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.
PHP Hypertext PreProcessor. Documentation Available www.php.netwww.w3schools.com SAMS books O’Reilly Books.

PHP Hypertext PreProcessor. Documentation Available SAMS books O’Reilly Books.
NMED 3850 A Advanced Online Design January 26, 2010 V. Mahadevan.

NMED 3850 A Advanced Online Design January 26, 2010 V. Mahadevan.
Web Programming: Client/Server Applications Server sends the web pages to the client. –built into Visual Studio for development purposes Client displays.

Web Programming: Client/Server Applications Server sends the web pages to the client. –built into Visual Studio for development purposes Client displays.
CS 3630 Database Design and Implementation. Your Oracle Account UserName is the same as your UWP username Followed Not case sensitive Initial.

CS 3630 Database Design and Implementation. Your Oracle Account UserName is the same as your UWP username Followed Not case sensitive Initial.
269200 Web Programming Language Week 7 Dr. Ken Cosh Security, Sessions & Cookies.

Web Programming Language Week 7 Dr. Ken Cosh Security, Sessions & Cookies.

Similar presentations

Ads by Google