php|architect (July 2005)

This copy is registered to: Linn Wilson [email protected]

Cookies and milk. Peanut butter and jam. Nothing goes well together like PHP and the Web... and this year you get both when you come join us at php|works and web|works 2005—two great conferences dedicated to the wonderful world of PHP and advanced Web development. What’s best, you get access to both great conferences for one low price!

Rasmus Lerdorf–Identifying and Preventing XSS Attacks, John Coggeshall–PHP Enterprise Architecture, Wez Furlong–PHP Streams: Lucky Dip, George Schlossnagle–Regex Unlimited, Ilia Alshanetsky–Managing PHP Performance, Derick Rethans–How PHP Ticks, Chris Shiflett–Hands-on PHP (BYOL), Marcus Böerger–Happy SPLing, Dan Scott–LIMIT Yourself to MySQL No More, Daniel Udey–Separating Content and Design, Lukas Smith–Database Abstraction, Paul Reinheimer–REST, Robert Reinhardt–Multilingual Flash, Ron Harwood–Web Games with PHP

Early-bird in effect until August 1st, 2005 Hurry! Space is limited. Prices start at just $349 US!

http://www.phparch.com/works

07.2005

DEPARTM ENT S

FEATURES

6 EDITORIAL

pear upgrade Home_Residence

7 WHAT’S NEW

14 The Interator Pattern

Making Manipulating Object Collections Easy by Jason E. Sweat

10 TIPS & TRICKS

Input Filtering: Part 1 Why Filter? by Ben Ramsey

54 TEST PATTERN Not Just Nouns

25 PHP Library for Permissions Management

A Generic Permissions Management PHP Library by Simone Grassi and Bernhard Gaul

by Marcus Baker

58 PRODUCT REVIEW

FPDF: PDF Generation Library by Peter B. MacIntyre

63 SECURITY CORNER Theory

by Chris Shiflett

35 Change Your Life with Version Control An Introduction to Subversion by Clay Loveless

44 Creating a Simple Image Gallery by Martin Psinas

67 Exit(0);

Forget Viagra, Get a Regex! by Marco Tabini

Download this month’s code at: http://www.phparch.com/code/

ED ITO RIA L

pear upgrade Home_Residence L

ast month, my wife, daughter, and I moved out of our (what we’d come to refer to as ghetto) apartment, and into our first house. I hate moving. I hate packing every little thing I own into boxes, and disassembling the furniture. I hate trying to wedge the n-hundred pound sofa-bed out the all-too-narrow doors, and trying to move the refrigerator without breaking any of the ceramic tiles that make up the kitchen floor (“oops”). Then, after many hours of what seemed like endless stair-climbing, box taping, keep-or-toss decision making, and one too many not-as-fun-as-it-sounds Tetrislike games of van and truck packing (“Can we get the rest in this trip? What if we move this box, and put the chairs in the other truck? I think we need one of those tall skinny pieces.”), the process is reversed, and we’re left with the joyous tasks of unloading, more stair climbing, stacking, new-paint scrape-avoidance, more narrow-door squeezing, trying to remember how to re-assemble the customerassembled furniture, and a basement full of boxes that were poorly labeled (in haste). To top it all off, my genius (and by “genius,” I mean moronic) telephone company somehow couldn’t figure how to reconnect our phone, properly, no matter how many times we “call[ed] back in three hours.” As a result, we spent a full week offline—it took me days to catch up on email. Fortunately, I have wonderful friends and family—some of whom traveled over 1000 km to help us get the house ready (and visit us, of course)—who worked for nothing more than pizza, cold beer a sincere “thank you.” As much as I hate all things related to moving, and am glad it’s over, there’s a great joy that accompanies moving into our first house—our own first house. I see a parallel between upgrading our home, and upgrading my development and production environments. PHP 5.1 is on the horizon, and while I truly hate the stress that upgrading a production environment brings (no matter how well tested), I’m always—ok, usually—left with a similar joy of a successful upgrade, better performance, and new features. As always, we’re developing in exciting times! This month, we have a special treat for you: a chapter from our soon-to-bereleased php|architect’s Guide to Design Patterns, by Jason Sweat. In it, he’ll show you the ins and outs of Iterators in PHP, whether self-constructed, or built on a foundation like PHP 5’s Standard PHP Library (SPL). The piece is literally full of code, and it’s sure to whet your appetite for more design pattern goodness. Security corner is back, rounding out our full lineup of columns, and Peter has reviewed the newest version of FPDF, a library that, if you haven’t used, you’ve probably heard of. Happy reading! Now, I must go back to painting, landscaping, plastering, wiring, cleaning, organizing and unpacking.

php|architect

TM

Volume IV - Issue 7 July, 2005

Publisher Marco Tabini

Editorial Team Arbi Arzoumani Peter MacIntyre Eddie Peloke

Graphics & Layout Aleksandar Ilievski

Managing Editor Emanuela Corso

News Editor Leslie Hill [email protected]

Authors Marcus Baker, Bernhard Gaul, Simone Grassi, Clay Loveless, Peter B. MacIntyre, Martin Psinas, Ben Ramsey, Chris Shiflett, Jason E. Sweat php|architect (ISSN 1709-7169) is published twelve times a year by Marco Tabini & Associates, Inc., P.O. Box 54526, 1771 Avenue Road, Toronto, ON M5M 4N5, Canada. Although all possible care has been placed in assuring the accuracy of the contents of this magazine, including all associated source code, listings and figures, the publisher assumes no responsibilities with regards of use of the information contained herein or in all associated material.

Contact Information: General mailbox: [email protected] Editorial: [email protected] Subscriptions: [email protected] Sales & advertising: [email protected] Technical support: [email protected] Copyright © 2003-2005 Marco Tabini & Associates, Inc. — All Rights Reserved

July 2005

●

PHP Architect

●

www.phparch.com

What’s

?>

NEW phpBB 2.0.16

PHP 5.1 Beta 2 Php.net announces the release of PHP 5.1 beta2. "PHP 5.1 Beta 2 is now available! A lot of work has been put into this upcoming release and we believe it is ready for public testing. Some of the key improvements of PHP 5.1 include: • PDO (PHP Data Objects) - A new native database abstraction layer providing performance, ease-of-use, and flexibility. • Significantly improved language performance mainly due to the new Zend Engine II execution architecture. • The PCRE extension has been updated to PCRE 5.0. • Many more improvements including lots of new functionality & many bug fixes, especially in regards to SOAP, streams and SPL. • See the bundled NEWS file for a more complete list of changes. Everyone is encouraged to start playing with this beta, although it is not yet recommended for missioncritical production use." Check out php.net.

all

the

latest

info

at

phpBB.com has released the latest version of their open source bulletin board package. What's new? Phpbb.com lists the changes as: • Fixed critical issue with highlighting • Url descriptions able to be wrapped over more than one line again • Fixed bug with eAccelerator in admin_ug_auth.php • Check new_forum_id for existence in modcp.php • Prevent uploading avatars with no dimensions • Fixed bug in usercp_register.php, forcing avatar file removal without updating avatar informations within the database • Fixed bug in admin re-authentication redirect for servers not having index.php as one of their default files set Visit phpbb.com for all the latest info.

FUDforum 2.6.14RC2

phpReports 0.4.1

Fudforum.org announces their latest release: "The 2nd release candidate for 2.6.14 is now out, aside from a number of bug fixes few important developments were done as well. • FUDforum can now make use of PDO Database driver for PHP 5.0/5.1 with support for MySQL,PostgreSQL and SQLite backends. • FUDforum can now be installed on systems running PHP 5.1, the few BC changes introduced by this release are now being accommodated. • The temporary table usage is now optional, which means forum install no longer requires this permission to be available."

phpReports report generator has announced the latest release, version 0.4.1. According to the announcement, this release includes:

To grab the latest release or for more info, visit fudforum.org.

AjaxAC 0.4.1 Do you have a project which requires the use of AJAX? Check out the latest release of AjaxAC a "PHP framework which can be used to develop, create, and generate AJAX applications". According the announcement, version 0.4.1 includes: "The ArithmeJax sample application was created. The JavaScript escape() was replaced with encodeURIComponent(). The hook name generator was changed to include __ in front of the hookname due to an IE6 compatibility error. The redundant AjaxAC class was removed and this functionality was moved to the AjaxACApplication class. All examples were updated to reflect the removal of the main AjaxAC class." Grab the latest release from http://ajax.zervaas.com.au/

July 2005

●

PHP Architect

●

www.phparch.com

"The setPageSize(size) and getPageSize() methods were added to the PHPReportMaker object. Now you can specify the page size using code like "$oRpt = new PHPReportMaker(); $oRpt->setPageSize(30);". This method overrides the XML value." Visit http://phpreports.source forge.net/ for more information or to download.

SOLAR 0.5.0 Solar.php announces the latest release of their "simple object library and application repository" version 0.5.0. paul-m-jones.com announces some of the highlights as: • Unit tests for Solar_Base, _Cache, _Error, and _Locale • End-user documentation (not just API docs) for those same classes, plus the overarching Solar class itself For all the highlights, visit solarphp.com.

7

Wha t’s N ew ?>

Check out some of the hottest new releases from PEAR.

XML_RPC 1.3.1 A PEAR-ified version of Useful Inc's XML-RPC for PHP. It has support for HTTP/HTTPS transport, proxies and authentication. This release is security related, and solves the recently discovered, and widespread remote-code-execution vulnerability. All users are strongly encouraged to upgrade immediately.

Translation2 2.0.0beta7 This class provides an easy way to retrieve all the strings for a multilingual site from a data source (i.e. db). The following containers are provided, more will follow: • PEAR::DB • PEAR::MDB • PEAR::MDB2 • gettext • XML • PEAR::DB_DataObject (experimental) It is designed to reduce the number of queries to the db, caching the results when possible. An Admin class is provided to easily manage translations (add/remove a language, add/remove a string). Currently, the following decorators are provided: • CacheLiteFunction (for file-based caching) • CacheMemory (for memory-based caching) • DefaultText (to replace empty strings with their keys) • ErrorText (to replace empty strings with a custom error text) • Iconv (to switch from/to different encodings) • Lang (resort to fallback languages for empty strings) • SpecialChars (replace html entities with their hex codes) • UTF-8 (to convert UTF-8 strings to ISO-8859-1)

Mail 1.1.5 PEAR's Mail:: package defines the interface for implementing mailers under the PEAR hierarchy, and provides supporting functions useful in multiple mailer backends. Currently supported are native PHP mail() function, sendmail and SMTP. This package also provides a RFC 822 Email address list validation utility class.

HTML_QuickForm_advmultiselect 0.4.0 The HTML_QuickForm_advmultiselect package adds an element to the HTML_QuickForm package that is two select boxes next to each other emulating a multi•select.

DB_ldap 1.1.1 The PEAR::DB_ldap class provides a DB compliant interface to LDAP servers.

php|architect Releases New Design Patterns Book We're proud to announce the release of php|architect's Guide to PHP Design Patterns, the latest release in our Nanobook series. You have probably heard a lot about Design Patterns---a technique that helps you design rock-solid solutions to practical problems that programmers everywhere encounter in their day-to-day work. Even though there has been a lot of buzz, however, no-one has yet come up with a comprehensive resource on design patterns for PHP developers—until today. Author Jason E. Sweat's book php|architect's Guide to PHP Design Patterns is the first, comprehensive guide to design patterns designed specifically for the PHP developer. This book includes coverage of 16 design patterns with a specific eye to their applications in PHP when building complex web applications, both in PHP 4 and PHP 5 (where appropriate, sample code for both versions of the language is provided). For more information, http://www.phparch.com/shop_product.php?itemid=96.

July 2005

●

PHP Architect

●

www.phparch.com

8

Wha t’s N ew ?>

Looking for a new PHP Extension? Check out some of the lastest offerings from PECL.

ibm_db2 1.0.2 This extension supports IBM DB2 Universal Database, IBM Cloudscape, and Apache Derby databases.

yaz 1.0.3 This extension implements a Z39.50 client for PHP using the YAZ toolkit.

pecl_http 0.9.0 • Building absolute URIs • RFC compliant HTTP redirects • RFC compliant HTTP date handling • Parsing of HTTP headers and messages • Caching by "Last-Modified" and/or ETag (with 'on the fly' option for ETag generation from buffered output) • Sending data/files/streams with (multiple) ranges support • Negotiating user preferred language/charset • Convenient request functions built upon libcurl • HTTP auth hooks (Basic) • PHP5 classes: HttpUtil, HttpResponse, HttpRequest, HttpRequestPool, HttpMessage

runkit 0.3.0 Replace, rename, and remove user defined functions and classes. Define customized superglobal variables for general purpose use. Execute code in restricted environment (sandboxing).

July 2005

●

PHP Architect

●

www.phparch.com

9

T IP S & T RICKS

Input Filtering, Part 1: Why Filter? by Ben Ramsey

This year has seen an increased focus on PHP security, and this is good for the language, developers, and business community. One phrase that comes to mind when discussing secure coding practices is Chris Shiflett’s mantra of “filter input, escape output.” While we know what this means in a general sense, practical examples elude us, so for the next three months, Tips & Tricks will give practical suggestions for input filtering, chock full of code examples.

F

ilter input. What does that mean? Well, in short, it means what it says, but there’s something deeper hidden behind these words, something sinister. Yes, these words mean user input cannot be trusted. For that matter, no input, regardless of its source— forms, RSS feeds, cookies, etc.—is trustworthy. In fact, the level of distrust in input must be so high that you no longer accept anything from these sources at face value. Always verify the input data to ensure it’s the expected, genuine

July 2005

●

PHP Architect

●

article. But why is this so hard to do? Is it because we innately want to trust people and other sources? Heavens, no! It’s hard because programmers are naturally lazy. Filtering input means writing more code, writing smarter code. For those who wish to finish a project quickly, this is daunting, and so they quickly scribble down some code—if, in fact, code can be scribbled—and deploy a release hoping to catch the problems in later bugfix (sometimes called security)

www.phparch.com

releases. This can, however, cause great problems in the meantime, not the least of which could consist of SQL injection or cross-site scripting (XSS)… or just plain bad data. Ensuring against bad data through filtering input is what we’ll focus on over the next three installments of Tips & Tricks. So, come along with me, and before we’re finished, you’ll be cynical and distrustful with the best of them—no longer able to trust input of any kind—and, thus, security-conscious.

10

T IP S & T RICKS

Input Filtering, Part 1: Why Filter?

Why Filter Input? Input is bad. In fact, it’s evil. Just get that through your head, and you’ll be off to a great start. Input is evil because its source cannot be trusted and the type of data expected is not always the type received, and all the client-side validation scripts in the world can’t stop input coming from another source completely invalidated. What do I mean by “another source?” I mean: another form on another Web site that makes use of your form (often referred to as a spoofed form) for some insidious means—or someone or some script posting by any number of alterna-

tive means. Let’s take, for example, the form in Listing 1, which is located at the imaginary URL h tt p: // ex am pl e. ne t /f or m. ht ml . (We’ll continue to come back to this form during the next few months; don’t worry—the code will be included in each column.) Now, this is a form we’ve all seen; it asks for a name and contact information—no doubt, you’ve used a similar form in the past, and there’s nothing wrong with this form, but there are a few assumptions often made about it. One assumption is that the maxlength attribute of the fields pre-

Listing 1 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24

Name:
Street:
City:
State: <select name=”state”> Pick a state... Alabama Alaska Arizona ...
Postal Code:
Phone:
E-mail:


Listing 2 1 2 3 4 5 6 7 8 9 10



Listing 2 1 2 3 4 5 6 7 8 9 10 11 12



July 2005

●

PHP Architect

●

www.phparch.com

vents a user from entering more text than allowed. This is wrong. While a Web browser can correctly prevent a user from doing so through this particular form, there’s nothing to stop the re-creation of this form on another server and using it to submit a much longer string of data. Another assumption is that the user may pick states only from among the options listed in the state drop-down field. Again, this is wrong and for the same reasons. The Web browser might prevent said user from entering other values when using this form, but if recreated, the sky’s the limit. We’re starting to see a pattern emerge. A Web form/application is safe only when used properly. This is obvious. But if used improperly, then processing scripts can receive any and all kinds of input. Still, let’s look at two more assumptions about this form—just for the heck of it. This form has a set number of fields. Does that mean these are the only fields that can be submitted? No! Also, can we assume that the processing script ([process_form.php] in this case) can only receive submissions from this form? The answer, again, is no. The form in Listing 2 illustrates why these assumptions are wrong. This form lives on another server— for example, at http://evil.example.net/form-spoof.html. The first thing to notice about this form is that there are no maxlength attributes. Well, for one, these are hidden fields that don’t use the maxlength attribute, but that’s not important. The fields don’t have to be hidden, and, either way, a devious miscreant may enter as much data as he pleases. Secondly, the state field now has a value of “The Shire.” Wait a minute… that wasn’t in our option list, but it doesn’t matter because it’ll post just fine. Thirdly, this form includes a new field: the junk field. This doesn’t do much now, but consider a server

11

T IP S & T RICKS

Input Filtering, Part 1: Why Filter?

where register_globals is enabled and variables aren’t initialized— think about what it can do. The Referer Question Invariably, the question now arises: But what about the Referer ? Yes, what about it? I can check it, right?

place, so let’s process it }

Now, this snippet of code will properly thwart a form such as the one in Listing 2 from posting to process_form.php , so long as the client includes a Referer header that doesn’t match, but mischievous users aren’t in the business of

Web browser and, thus, can modify any part of the request. In this case, PEAR::HTTP_Request generates a valid POST request, while adding a Referer header. Thus, the script successfully posts to process_form.php because it sends a valid Referer header with a value that process_form.php expects.

“No input, regardless of its source is trustworthy.” Sure, go ahead, but it’ll bite you in the end. It is a common misconception that every request includes a Referer header and that the value of this header always represents the origin of the request. In truth and practice, the origin of the request is always the client. The client can be a Web browser or it can be a script that resides on a server, somewhere. It may or may not choose to include a Referer header in requests. The Referer, when included, may or may not indicate the previously requested parent resource. In fact, some proxy servers have been known to modify or drop the Referer header altogether, thus blocking entire offices and even ISPs from viewing Web sites programmed to check for it. All this amounts to the fact that Referer is highly unreliable as a means of protecting Web applications from outside posting. Furthermore, it is not as important to ensure input comes from a specific place as it is that the input received conforms to expectations. Nevertheless, we’ll take a look at how scripts use Referer to block requests from other sites: if (strcmp($_SERVER[‘HTTP_REFERER’], ‘http://example.net/form.html’) == 0) { // It came from the right

July 2005

●

PHP Architect

●

being foiled by clients. Let’s consider another means of posting and take a look at Listing 3. The code in Listing 3 is similar to that found in Listing 2 in that it posts to process_form.php from a different location and bypasses all the local constraints placed on it (e.g. maxlength and any client-side scripting). However, Listing 3 is different because it doesn’t rely on a

Now You’re Getting It And so, we must filter the input. It’s that simple. We cannot be sure the input comes from the proper location, nor are we sure it is exactly what we want. In fact, we’re pretty sure it’s not. Feeling distrustful yet? Good. Great, even. Do not trust input from users, from anywhere. This is why it’s important to ensure that input received is input expected.

Listing 4 1 2 3 4 5 6 7 8 9 10 11



Listing 5 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23

www.phparch.com



12

T IP S & T RICKS

Input Filtering, Part 1: Why Filter?

The approach we’ll take to filter input is often called a “whitelist” approach (as opposed to a “blacklist” approach). Instead of using a blacklist to tell our script what kind of input we won’t allow (e.g. input coming from somewhere other than form.html, as in the Referer example), we’ll use a whitelist to tell it exactly what to allow. This is actually a much simpler approach because, now, we don’t have to think of the myriad kinds of data an attacker might try to submit to our script. Instead, we need only know what we want to receive and ensure that the received input matches up. Capturing and Taming Input Now, let’s talk about capturing some of this evil input. There are a few places we’ll consider looking for input: $_GET, $_POST, and $_COOKIE . We’ll not look in $_REQUEST , though it does contain the values from each of these superglobal arrays. In short, we want to know the exact scope of the input, so we’ll use the specific superglobal for the location we expect to find it. For example, $_REQUEST[‘name’] could refer to $_GET[‘name’], $_POST[‘name’] , or even $_COOKIE[‘name’], so we want to be sure it’s coming from the correct location, which is POST in this case. Luckily for us, PHP has already done the work of capturing the input. In process_form.php, the values passed by the input from— form.html (or from wherever it was submitted)—are in $_POST . But the data in $_POST, you’ll remember, is still evil data. We must first filter it. There’s more than one way, however, to filter form input, and I won’t pretend that my suggestions are any more than what they are: suggestions. They are not the right way, but they are a way, and these tips are sure to help control input and provide a foundation on which to build. What’s important is to write code with a security-conJuly 2005

●

PHP Architect

●

scious mindset, and part of that mindset includes being wary of input. Now, to keep track of our good data, we’ll store everything that’s considered clean (as in: it conforms to expectations) to the aptly named $clean array, which will somewhat mimic everything that’s in $_POST— without all the evil tendencies. One approach that I often see is a sanitizing function that gets applied to the $_POST array, as seen in Listing 4. While this type of approach removes harmful characters, it does not provide a whitelist solution. Instead, it blacklists potentially harmful characters (control characters) and escapes the input (with htmlentities()), which is not a part of the filtering process. We’re only concerned with filtering the input at this point, so we want the raw data—filtered, but raw. Escaping will take place during the output stage, which isn’t covered here. A whitelist approach defines the valid range of characters/numbers, the acceptable values (of a select field, for example), and the allowed fields. For now, let’s take a look at defining the allowed fields to ensure we receive and process nothing more than expected. Listing 5 gives a whitelist example for defining the allowed fields. First, we use the $white_list array to define the allowed fields. Then, we run the $_POST array through the function using filter() $white_list as a model. What’s returned to the $clean array is the expected input. Anything unexpected is left back in $_POST where it safely remains excluded from the rest of the script. This is a very simple approach

that does not include any further input checking—for now. Though, I hope it is evident how this approach adds a level of flexibility to the filtering process. For example, imagine a $post_white_list , $get_white_list , or even $rss_white_list. Now, it becomes clear that this simple example can expand to filter anything: $post_clean = filter($_POST, $post_white_list); $get_clean = filter($_GET, $get_white_list); $rss_clean = filter($rss, $rss_white_list);

In next month’s column, I’ll revisit this same code and discuss strategies for defining the data type for each field. Wrap Up By now, you should be fully convinced that all input is evil and why it’s important to filter all incoming data. When it comes to input, there are no guarantees as to the origin of the data or the type received. Whether working with GET, POST, cookies, RSS feeds, and the like, always filter input—regardless. Tune in next month when we’ll wrestle more input to ensure input received is input expected.

About the Author

?>

Ben Ramsey is a Technology Manager for Hands On Network in Atlanta, Georgia. He is an author, Principal member of the PHP Security Consortium, and Zend Certified Engineer. Ben lives just north of Atlanta with his wife Liz and dog Ashley. You may contact him at [email protected] or read his blog at http://benramsey.com/ .

www.phparch.com

To Discuss this article: http://forums.phparch.com/238

13

The Iterator Pattern by Jason E. Sweat author of php|architect’s Guide to PHP Patterns

You have probably heard a lot about Design Patterns---a technique that helps you design rock-solid solutions to practical problems that programmers everywhere encounter in their day-to-day work. Even though there has been a lot of buzz, however, no-one has yet come up with a comprehensive resource on design patterns for PHP developers---until today. In this excerpt from Jason E. Sweat's book php|architect's Guide to PHP Design Patterns, you'll learn about the Iterator pattern, whether custom-built, or with PHP 5's new Standard PHP Library.

O

bject-Oriented Programming encapsulates application logic in classes. Classes, in turn, are instantiated as objects, and each individual object has a distinct identity and state. Individual objects are a useful way to organize your code, but often you want to work with a group of objects, or a collection. A set of result rows from a SQL query is a collection. A collection need not be homogeneous either. A Window object in a graphical user interface framework could collect any number of control objects — a Menu, a Slider, and a Button , among others. Moreover, the implementation of a collection can

July 2005

●

PHP Architect

●

www.phparch.com

REQUIREMENTS PHP

5

OS

Any

Code Directory

iterator

vary: a PHP array is a collection, but so is a hash table, a linked list, a stack, and a queue. The Problem: How can one easily manipulate any collection of objects? The Solution: Use the Iterator pattern to provide uniform access to the contents of a collection. You may not realize it, but you use the Iterator pattern every day—it’s embodied in PHP’s array type and rich set of array manipulation functions. (Indeed, given the combination of the native array type in the language and a host of flexible functions designed to work with this native type, you need a pretty compelling reason not to use arrays as your means of manipulating collections of objects.) 14

FEA T URE Here’s native array iteration in PHP: $test = array(‘one’, ‘two’, ‘three’); $output = ‘’; reset($test); do { $output .= current($test); } while (next($test)); echo $output; // produces ‘onetwothree’

The reset() function restarts iteration to the beginning of the array; current() returns the value of the current element; and next() advances to the next element in the array and returns the new current() value. When you advance past the end of the array, next() returns false. Using these iteration methods, the internal implementation of a PHP array is irrelevant to you. Iterator couples the object-oriented programming principals of encapsulation and polymorphism. Using Iterator, you can manipulate the objects in a collection without explicitly knowing how the collection is implemented or what the collection contains (what kinds of objects). Iterator provides a similar interface to different

concrete iteration implementations, which do contain the details of how to manipulate a specific collection, including which items to show (filtering) and in what order (sorting). Let’s create a simple object to manipulate in a collection. (Though this example is in PHP 5, Iterators are not unique to PHP 5 and most of the examples in this chapter work in PHP 4 as well, albeit with a healthy amount of reference operators added). The object, Lendable , represents media such as movies and albums and is intended to be part of a web site or service to let users review or lend portions of their media collection to other users. (For this example, do not concern yourself with persistence and the like.) Let’s start with the code in Listing 1 as the basis for the class and write some tests. To implement the requirements of this initial test, create a class with a few public attributes and some methods to toggle the values of these attributes, such as that in Listing 2. Lendable is a good, generic start. Let’s extend it to track items like DVDs or CDs.

Figure 1

July 2005

●

PHP Architect

●

www.phparch.com

15

FEA T URE

The Iterator Pattern

Media extends Lendable and tracks details about specific media, including the name of the item, the year it was released, and what type of item it is. See Listing 3. To keep things simple, Media has three public instance variables, Media::name, Media::year , and Media::type. The constructor takes two arguments and stores the first in $name and the second in $year . The constructor also allows an optional third parameter to specify type (which defaults to “dvd”). Given individual objects to manipulate, you can now create a container to hold them: a Library. Like a regular library, Library should be able to add, remove and count the items in the collection. Eventually, Library should also permit access to individual items (objects) in the collection (which is shown momentarily in the Sample Code section of this chapter). For right now, let’s build a test case for Library: class LibraryTestCase extends UnitTestCase { function TestCount() { $lib = new Library; $this->assertEqual(0, $lib->count()); } }

It’s easy enough to write a class that satisfies this test: class Library { function count() { return 0; } }

Listing 1 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19

Listing 2 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16

An easy way to implement add() is to piggyback on PHP’s flexible array functions: you can add items to an array instance variable and use count() to return the number of items in the collection. class Library { protected $collection = array(); function count() { return count($this->collection); } function add($item) { $this->collection[] = $item; } }

Library is now a collection, but it provides no way to retrieve or manipulate the individual members of the collection. Let’s move on to the purpose of the article, implementation of the Iterator design pattern. The following UML class diagram shows the GoF Iterator pattern with the Media and Library classes used

July 2005

●

PHP Architect

●

www.phparch.com



Listing 3

Now add some interesting features to the test: class LibraryTestCase extends UnitTestCase { function TestCount() { /* ... */ } function TestAdd() { $lib = new Library; $lib->add(‘one’); $this->assertEqual(1, $lib->count()); } }



1 2 3 4 5 6 7 8 9 10 11 12 13



Listing 4 1

16

FEA T URE Listing 5 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20



Listing 6 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22



Listing 7 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15



Listing 8 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16



July 2005

●

PHP Architect

●

www.phparch.com

to make the example concrete. (GoF is the Gang of Four— Erich Gamma, Richard Helm, Ralph Johnson, and John Vlissides, writers of the famous, and definitive Design Patterns, Elements of Reusable Object-Oriented Software). Your collection class must provide a FactoryMethod to create an instance of your Iterator. Iterator classes define an interface of first() to go to the beginning of a collection, next() to move to the next item in sequence as you iterate, currentItem() to retrieve the current item from the collection as you iterate, and isDone() to indicate when you have iterated over the entire collection.

“Use the Iterator pattern to provide uniform access to the contents of a collection.”

In the next section, we are going to create the LibraryGofIterator class as an example of a direct implementation of the GoF Iterator design pattern—see Figure 1. Sample Code The first step in implementing the GoF Iterator pattern within Library is to write a new test case for the new concrete Iterator. Since each test method will be manipulating a Library filled with Media instances, you can employ the UnitTestCase::setUp() method to populate a variable with a Library in a known state for each test. (For the purposes of this article, treat UnitTestCase as a generic unit testing suite. The associated code does, however, serve to illustrate how Library should perform.) Start by adding the Library::getIterator() method as a FactoryMethod for instances of the LibraryGofIterator class. class IteratorTestCase extends UnitTestCase { protected $lib; function setup() { $this->lib = new Library; $this->lib->add(new Media(‘name1’, 2000)); $this->lib->add(new Media(‘name2’, 2002)); $this->lib->add(new Media(‘name3’, 2001)); } function TestGetGofIterator() { $this->assertIsA($it = $this->lib->getIterator() ,’LibraryGofIterator’); } }

Here’s the implementation. class Library {

17

FEA T URE

The Iterator Pattern

// ... function getIterator() { return new LibraryGofIterator($this->collection); } }

The getIterator() method passes the Library’s $collection to the constructor of the new concrete iterator. This technique has two important implications: each iterator is independent, so multiple iterators can operate at the same time. Additionally, the iterator operates on the collection as it existed at the time the iterator was requested. If another item is added to the collection at any time later, you must request another iterator to display it (at least in this implementation). Continue enhancing the test suite by adding assertions to the TestGetGofIterator() method to match the Iterator design pattern. The isDone() method should only be true if you’ve iterated over the entire collection. If the iterator’s just been created, isDone() should obviously return false to indicate it’s okay to iterate. class IteratorTestCase extends UnitTestCase { function setup() { /* ... */ } function TestGetGofIterator() { $this->assertIsA($it = $this->lib->getIterator() ,’LibraryGofIterator’); $this->assertFalse($it->isdone()); } }

tional items remain to be iterated over. class IteratorTestCase extends UnitTestCase { function setup() { /* ... */ } function TestGetGofIterator() { $this->assertIsA($it = $this->lib->getIterator() ,’LibraryGofIterator’); $this->assertFalse($it->isdone()); $this->assertIsA($first = $it->currentItem(), ‘Media’); $this->assertEqual(‘name1’, $first->name); $this->assertFalse($it->isdone()); } }

It’s critical that LibraryGofIterator receives the $collection in the constructor (see the minimal implementation of Library above) and returns the current() item of that array from the currentItem() method. class LibraryGofIterator { protected $collection; function __construct($collection) { $this->collection = $collection; } function currentItem() { return current($this->collection); } function isDone() { return false; } }

What should happen in the next iteration? The next() method should change what item is returned by the currentItem() method. This test captures that expected behavior:

As usual with Test Driven Development (TDD), implement the simplest possible code that satisfies your test case:

class IteratorTestCase extends UnitTestCase { function setup() { /* ... */ } function TestGetGofIterator() { $this->assertIsA($it = $this->lib>getIterator(), ‘LibraryGofIterator’); $this->assertFalse($it->isdone()); $this->assertIsA($first = $it->currentItem(), ‘Media’); $this->assertEqual(‘name1’, $first->name); $this->assertFalse($it->isdone());

class LibraryGofIterator { function isDone() { return false; } }

So, what should happen during the first iteration. currentItem() should return the first Media object added in the IteratorTestCase::setUp() method and isDone() should continue to be false, since two addiListing 9 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21



July 2005

●

PHP Architect

●

www.phparch.com

$this->assertTrue($it->next()); $this->assertIsA($second = $it->currentItem(),

Listing 10 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25



18

FEA T URE

The Iterator Pattern

‘Media’); $this->assertEqual(‘name2’, $second->name); $this->assertFalse($it->isdone()); } }

Piggybacking again on PHP’s array functions, use next() on the array. class LibraryGofIterator { protected $collection; function __construct($collection) { $this->collection = $collection; } function currentItem() { return current($this->collection); } function next() { return next($this->collection); } function isDone() { return false; } }

The third iteration looks much like the others, except the isDone() method must return true . You also want next() to indicate success of moving to the next iteration. With small modifications to the [next()] and [isDone()] methods, all of the tests pass. (See Listings 4 and 5). There’s just one problem with the Iterator test case: it doesn’t reflect how iterators are typically used. Yes, it tests all of the features of the Iterator pattern, but application code uses the Iterator in a much simpler way. So, the next step is to write a test to run more realistic code. class IteratorTestCase extends UnitTestCase { protected $lib; function setup() { /* ... */ } function TestGetGofIterator() { /* ... */ } function TestGofIteratorUsage() { $output = ‘’; for ($it=$this->lib->getIterator(); !$it>isDone(); $it->next()){ $output .= $it->currentItem()->name; } $this->assertEqual(‘name1name2name3’, $output); } }

Listing 11 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21



July 2005

●

PHP Architect

●

www.phparch.com

So far, the implementation of Iterator copies an array (the collection) and uses PHP’s internal pointer to track the iteration. You can also implement the Iterator by keeping track of the collection index by yourself. This requires a new accessor method in Library to fetch an object by key. class Library { // ... function get($key) { if (array_key_exists($key, $this->collection)) { return $this->collection[$key]; } } }

Also, you’d pass $this (the library itself) to the constructor instead of $this->collection (the array containing the Media collection) in the Library::getIterator() method. The “external” iterator would then just track a pointer internally to know which element of the Library collection it’s currently referencing, and would use the reference to the Library passed in the constructor to call the get() method to retrieve the current object. The implementation seen in Listing 6 assumes that your collection array is indexed starting with 0 and is completely sequential. A Variant Iterator API While the foregoing code is a complete implementation of the Iterator pattern as described by GoF, you may find the four-method API a bit cumbersome. If so, you can collapse next() , currentItem(), and isDone() into just next() by having the latter either advance and return the current item from the collection or return false if the entire collection has been processed. Listing 7 shows one way to write a test for this variation of the API. Notice the simplified control structure for looping. next() returns an object or false , allowing you to perform the assignment inside the while loop conditional. The next few examples explore variations of the Iterator pattern using the smaller interface. As a convenience, change the Library::getIterator() method to a parameterized FactoryMethod so you can get either the four-method iterator or the two-method iterator (next() and reset() from that single method). class Library { // ... function getIterator($type=false) { switch (strtolower($type)) { case ‘media’: $iterator_class = ‘LibraryIterator’; break; default: $iterator_class = ‘LibraryGofIterator’; } return new $iterator_class($this->collection); } }

19

FEA T URE

The Iterator Pattern

Here, Library::getIterator() now accepts a parameter to select what kind of iterator to return. The default is LibraryGofIterator (so the existing tests still pass. Passing the string media to the method creates and returns a LibraryIterator instead. This is some code to implement [LibraryIterator]: class LibraryIterator { protected $collection; function __construct($collection) { $this->collection = $collection; } function next() { return next($this->collection); } }

Oops! The dreaded test failure! What caused this? Somehow, the first iteration was skipped—that’s a bug. To fix the error, return current() for the first call of the next() method. Listing 12 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19



Listing 13 1

July 2005

●

PHP Architect

●

www.phparch.com

The code in Listing 8 corrects our logic error and provides a streamlined while loop iterator. Filtering Iterator With Iterators, you can do more than just present each item of the collection, you can also select which items are presented. Let’s modify the Library::getIterator() to allow two additional iterator types (Listing 9). The LibraryAvailableIterator class should only iterate over items that have a status of “library” (recall that the checkOut() method changes the status to “borrowed”). The test in Listing 10 creates a new Media instance and stores it in the variable $dvd . The first highlighted assertEqual() assertion verifies that the new item is present when iterating with LibraryAvailableIterator. Next, the test uses the checkOut() method and verifies that the new item is missing from the display. The code to implement filtering (Listing 11) is very similar to the LibraryIterator::next(), except filtering is done prior to returning the item. If the current item does not match the filter criteria, the code returns $this->next() instead.

Listing 14 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20



Listing 15 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22



20

FEA T URE

The Iterator Pattern

Sorting Iterator An iterator can do more than show all or a portion of the collection. An iterator can also show the collection in a specific order. Let’s create an iterator that sorts the Media in the collection by release date. For a test (Listing 12), add some Media instances with dates older that those of the items added in the setUp() method. If the iterator works, these older items should be sorted to the beginning of the iteration. This test uses the items in each iteration slightly differently: instead of just appending the $name values in a string, a string is formed from both the $name and $year properties, which is then appended to an $output array. The implementation of LibraryReleasedIterator is nearly identical to LibraryIterator, except for one

additional line in the constuctor. class LibraryReleasedIterator extends LibraryIterator { function __construct($collection) { usort($collection, create_function(‘$a,$b’, ‘return ($a->year - $b->year);’)); $this->collection = $collection; } }

The usort() statement sorts the $collection array prior to iteration. You can avoid copying all of the other code for the class by simply inheriting from the LibraryIterator class itself. Is it possible to use an external iterator to accomplish this same sorted iteration? Yes, but you must pull a few tricks to accomplish it. See Listing 13. Key here is the creation of a utility function for per-

“Iterator couples the object-oriented programming principals of encapsulation and polymorphism.” Listing 16 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18



Listing 17 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24



July 2005

●

PHP Architect

●

www.phparch.com

forming the sort. The sorting function needs to have access to the collection so it can fetch members for comparison. However, because the generated function is used in a usort(), you don’t have the option of passing the collection as an additional parameter. Instead, you can use the trick shown in the code block above to store a reference to the collection inside the function prior to calling it with usort(). What you’re sorting is the list of keys for the collection. When usort() is complete, the keys will be sorted in order by the year attribute of each object in the collection. In the next() method, an object in the collection is accessed via the get() method, but indirectly through the $sorted_keys mapping. If you recall the external version of the GoF-style iterator, arrays with gaps or strings in the keys could be problematic. This same trick could be used for a simple external iterator to alleviate the problem of gaps in the sequence of keys. SPL Iterator No article on the Iterator design pattern and PHP would be complete without discussing the “Standard PHP Library” (SPL) iterator. The while loop structure used so far is very compact and usable, but PHP coders may be more comfortable with the foreach structure for array iteration. Wouldn’t it be nice to use a collection directly in a foreach loop? That’s exactly what the SPL iterator is for. (Even though this article has been written entirely for 21

FEA T URE

The Iterator Pattern

PHP 5, the following SPL code is the only code that works solely in PHP 5, and then only if you’ve compiled PHP 5 with SPL enabled. Harry Fuecks wrote a nice article introducing the SPL and covering the SPL iterator; http://www .sitepoint.com/ article/php5-s tan see dard-library .) Using SPL is essentially a completely different way to implement iteration, so let’s start over with a new unit test case and a new class, the ForeachableLibrary, and Listing 14. ForeachableLibrary is the collection that implements the SPL Iterator interface. You have to implement five functions to create an SPL iterator: current() , next(), key() , valid(), and rewind(). key() returns the current index of your collection. rewind() is like reset(): iteration begins at the start of your collection. See Listing 15. Here we just implement the required functions working on our $collection attribute. (If you don’t implement all five functions and you add the implements Iterator to your class definition, PHP will generate a fatal error.) The tests pass, and everything is happy. There’s just one problem: the implementation is limited to one style of iteration—sorting or filtering is impossible. Can anything be done to rectify this? Yes! You can apply the Strategy pattern and delegate the SPL iterator’s five functions to another object. Listing 16 is a test for PolymorphicForeachableLibrary. The only difference between this case and the test for SplIteratorTestCase is the class of the $this->lib attribute created in the setUp() method. That makes sense: the two classes must behave identically. Listing 17 contains PolymorphicForeachableLibrary . Library is extended to get the collection manipulation methods. The SPL methods are added, too, all delegating to the $iterator attribute, which is created in rewind() . Below is the code for the StandardLibraryIterator. The code in Listing 18 should look familiar: essentially, it’s a copy of the five SPL functions from the ForeachableLibrary class. The tests pass. OK, the code is more complex now, but how does it support additional iterator types? Let’s add a test for a “released” version of the iterator to see how additional iterator types work in this design. The test case in Listing 19 should look familiar, too, as it’s very similar to the previous “release” iterator, but using the foreach control structure to loop. The new iteratorType() method (Listing 20) lets you switch which style of iterator you want to use. (Since the iterator type isn’t chosen during the instantiation of the object and because you can choose a different iterator type on-the-fly by calling the iteratorType() method again, the code is actually implementing the

July 2005

●

PHP Architect

●

www.phparch.com

Listing 18 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24



Listing 19

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17



Listing 20 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27



22

FEA T URE

The Iterator Pattern

State pattern, rather than the Strategy pattern.) class ReleasedLibraryIterator extends StandardLibraryIterator { function __construct($collection) { usort($collection, create_function(‘$a,$b’, return ($a->year - $b->year);’)); $this->collection = $collection; } }

Iterator class as a base class for the libraries’ iterators? Of those, how many define the five required methods in the same capacity? Perhaps implements Foreachable would have been a less intrusive name. If you choose to use the SPL, you should investigate the other supported iterators, like RecursiveArrayIterator and numerous other flavors.

You can easily implement ReleasedLibraryIterator by extending StandardLibraryIterator and overriding the constructor to add the sorting of the incoming array. And with that you have a working PolymorphicForeachableLibrary. Issues Iterators are a nice way to standardize working with collections of objects in your applications. The examples here have been based on arrays, but the ability to work on non-array based collections with an identical interface is powerful. The ability to use collections in the foreach control structure is indeed cool. The only unfortunate issue with the SPL implementation is the significant potential for namespace clashing with “Iterator ”. How much PHP 4 object-oriented code has some sort of an

About the Author

?>

Jason has been an IT professional for over ten years. He is currently an application developer and intranet webmaster for a Fortune 100 company. He has written several tutorials and articles for the Zend website, and has recently contributed to the Wrox “PHP Graphics” handbook. He is also the author of “php|architect’s Guide to PHP Patterns. He resides in Iowa with his wife and two children. Jason can be contacted at [email protected] ..

To Discuss this article: http://forums.phparch.com/233

Available Right At Your Desk

All our classes take place entirely through the Internet and feature a real, live instructor that interacts with each student through voice or real-time messaging.

What You Get

Your Own Web Sandbox Our No-hassle Refund Policy Smaller Classes = Better Learning

Curriculum

The training program closely follows the certification guide— as it was built by some of its very same authors.

Sign-up and Save!

For a limited time, you can get over $300 US in savings just by signing up for our training program! New classes start every three weeks!

http://www.phparch.com/cert

July 2005

●

PHP Architect

●

www.phparch.com

23

FEA T URE

PHP Library for Permission Management

F E A T U R E

by Simone Grassi and Bernhard Gaul

A generic library to manage permissions is what you would want for many projects. It should have a generic interface to populate the permissions database and manage permission needs so that they can be easily personalized. To achieve this, we created a PHP library generic enough to satisfy the needs of most projects and also provided a Flash user interface to manage permissions that is ready for deployment with any web project.

W

hether you need certain functionality for a big software house or single developer, you want to find good libraries that you can use, directly, via Application Programming Interfaces (APIs) without having to modify the code. This is possible by using Object Oriented development and Pattern Design, which are both commonly used to create re-usable code for common tasks.

REQUIREMENTS PHP

4.x

OS

Tested in Linux

Other Software

Apache, MySQL, Flash plug-in

Code Directory

permissions

July 2005

●

PHP Architect

●

www.phparch.com

What Do We Need to Manage? The first objective of our library is to be able to manage permissions for many different types of projects. The main elements are users and permissions. As far as users are concerned, you usually need to manage groups and roles. Permissions are created as a flat list whereby each application using the library shall be able to have its own, independent permissions list. Those permissions must then be applied to objects (e.g. read or write permission on a specific document). To do this effectively, an entity category of objects was introduced, that allows grouping objects by type. So, we end up with: • Users, groups and roles • Permissions • Objects and object categories Users can be part of one or more groups, and each group can have a parent group, to allowing the cre25

PHP Library for Permissions Management

ation of group hierarchies. Later, we will see why we need roles and how they associate permissions to objects. In an application that requires permissions, you will usually have many different objects to which these permissions may be applies. Each object will probably have a unique key (database primary keys) within its category. If we use object categories it will allow us to apply permissions to single objects by specifying the object category as well as the unique id of the object. The permissions database will use the same unique id of the object that is used in the application database. Our library assumes that these unique identifiers are integers. Permissions to Users and Groups A user can be assigned permissions, directly. If, for example, a READ permission is assigned to a user, directly, he will be granted this permission in any case, on all objects of any possible object category. Groups, on the other hand, are useful in different ways: first to allow the creation of hierarchies, using subgroups; second, if a set of permissions is assigned to a group then every user associated with the group will be granted those permissions. It will be enough to change the permissions assigned to the group to change those associated with the individual users. How do you associate permissions with users and groups? There are three different possible ways: • Directly: the assigned permission is valid on

FEA T URE all objects of all categories • Relative to a category of objects: the permission applies to all objects that are part of this category of objects. • Relative to a single object: valid only for the specific object within a specific category The objective is to satisfy the requirements of different scenarios. As an example, let’s imagine we have an application that manages users’ access to documents within different folders. In this scenario, there are at least two categories of objects: documents and folders. Assignment of a permission, directly to a user or group of users, is useful, for example, to allow the administrator to have write permissions on all folders and documents (that is on all objects of all categories of objects). Assigning permissions to a single category of objects allows, for instance, assigning read and write permissions to a single user on all folders, creating a sort of folder administrator. Finally, assigning permissions on a single object allows gives specific access—like read or write—on a single folder (e.g. a specific user may only access a specified folder with write permission). Permissions can be assigned to groups in the same way as to users—that is directly to the group, relative to a specific category of objects, or to a single object. This allows the creation of permission profiles, and users associated with a given group will inherit this profile (there could be, for instance, a group of folder administrators or document administrators).

Figure 1

July 2005

●

PHP Architect

●

www.phparch.com

28

FEA T URE

PHP Library for Permissions Management

Why Groups are Not Enough? We have seen that we can assign permission to both users and groups (in a general way, to all objects, only on a category of objects or on a single object). For many projects, though, this will not be enough. What is needed is the possibility to assign a set of permissions to a user or group, on a specific object or category of objects. To account for this need, we introduced the concept of roles. Take a simple example: within a sample application where users use and manage folders and documents, there could be the need for a publisher role, defined as a user allowed to “publish” documents—adding docu-

“The first objective of the library is to be able to manage permissions for many different

types of projects.”

object_id_description_fieldname field stores a description (or title) of the object. The use of those fields allows the developer to retrieve information about a single object, directly from the table created by the application that uses the permission library. The Library Like many other libraries, our permissions implementation is a single class and can be used by “client”-software through a single API. All data is stored in a database (we used MySQL), and PEAR::DB_DataObject is used as DB Abstract Layer which makes it easy to move the library to other databases. Configuration is simple, and a few parameters are enough to enable DataObject to communicate with the DB. An Example Application: Folders and Documents The code included with php|architect allows you to see the library in action. The example implementation shows permissions management in a small application. All we need to manage are folders and documents. We have users, and each of them has different needs. To accommodate these needs, we will use the different capabilities of the library. The first thing that example.php (see the zip file that accompanies this article) needs to do is instantiate the class: $auth = &new authorization_manager($username);

Passing the username is sufficient; it allows the class to retrieve permissions information about that user. Still, you can see the API in action:

ments to folders. A publisher would need to have access permission on all folders to create new documents within them. This role could be assigned to all folders, in which case the role is assigned to the user relative to a category of objects (the folder category). Or, a user could be defined as publisher for just a single folder. In this case, the role is assigned to the user only on the specific object (the folder that is part of the category folders). As you can see from Figure 1, the difference between groups and roles is how those entities are related to users. A user is part or not part of a group, but a role is assigned to a user relative to an object category (or relative to a single object). Note that Figure 1 does not show the “object”. This entity is undefined, as every application will have their own entities that will act as objects. We provided 3 fields, though, to associate object categories with objects: object_id_table, object_id_fieldname and object_id_description_fieldname . For each object category, object_id_table is the name of the table that stores the objects that are part of this category. The object_id_fieldname field stores the name of the field that is the primary key of the object table. Finally, the

July 2005

●

PHP Architect

●

www.phparch.com

while ($doc_db->fetch()) { $docs[$i][‘document_name’] = $doc_db>document_name; // ... $i++; }

This while statement loops over a query, of all documents matching the query conditions. Within the while , an array is prepared, it contains the document_id , document_name and information about permissions. As you can see, to determine if the current user has READ permission, we just call authorize(). The first parameter is the requested permission, and the second parameter is the object category (OBJECT_TYPE_DOCUMENT ). The object id, in this situation, is the document_id. The API would return true if the current user has this permission, false otherwise. In the example, you can see two tables: in the first, a list of folders; in the second, a list of documents from the current folder. The permissions are represented by RWA (read-write-add elements) for folders and RW (read-write) for documents. When the letter x is present, it means the current user does not have this permission.

29

FEA T URE

PHP Library for Permissions Management

Changing the user, by using the drop-down menu, you can see how different permissions are assigned to different users. See the database entries to fully understand how this is implemented, with groups, roles, and direct permissions. Let’s see, user by user, how permissions are assigned. The superuser user has direct permission to READ, WRITE and ADD_ELEMENTS on everything.

Listing 1 (cont’d)

Listing 1 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71

Folder & Document permission example List of Folders



July 2005

●

PHP Architect

The developer user has permissions on documents inside source folders. This is implemented by assigning the publisher role to this user. The folderadmin user has all permissions on all folders. This is made possible by assigning the publisher role to the user, but not to a specific object. It is assigned to the folders object category. This gives the user permissions on all folders. Note that this user has

●

www.phparch.com

72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140

Folder Name Permissions

Document Name Permissions 30 PHP Library for Permissions Management no permission on individual documents. Even if a user has permission to an object category, he does not automatically receive the same permission on objects within this category. The publisher user is a bit different from the folderadmin. He has the role of publisher on all folders, but this role gives only READ and ADD_ELEMENT permissions. So, the publisher can add elements and access all folders, but cannot modify the folder itself (lmoving the folder elsewhere, for example). The viewer user has READ permission on all. This permission is granted through group membership. Viewer is part of the GROUP_VIEWERS group, which is given READ permission on both object categories (folders and doc- Figure 2 FEA T URE uments). Figure 2 shows the list of users. superadmin is selected, and the relative permissions, directly assigned to this user are shown. Figure 3 shows a more complex use of permissions, as used in a real application. The Flash GUI shows the object category information. For each of them, you can see which permissions are assigned to users, through roles, groups or directly. In Figure 3 CORE_SCRIPT is the selected object category. No users or groups have relations with CORE_SCRIPT. Only the Agenda Main Administrator Role has been assigned to (at least) one user, relative to CORE_SCRIPT. We have seen how to assign permission in many different ways, directly to users, using roles, and through groups. This scheme grants flexibility and can be adapted to many applications with good initial planning. The developer must determine which permissions will be needed within his application, differenciating between object categories, groups, and roles. Again, it’s important to define the correct list of permissions. After this scheme is created it’s straightforward to add authorize() calls in your code to let your code reflect the planned permission scheme. Authorize: Our Application User Interface The current user needs to be identified to the library when the application begins execution. After this, requests for the permissions of the current user can be made via a single method, called authorize(). Every kind of authentication can be used to identify the user, the user table is very general, and can be shared with your preferred authentication library. The authorize method can be called in three different modes: Authorize(PERMISSION_DEFINE) : This specifies only the requested permission. Authorize returns true only when the current user has this permission, but not when it is only relative to an object or on an object category. The user must own the permission outright (for each object type). This is typically used to create “super” users. A u t ho r i z e( P E RM I S S IO N _ D EF I N E ,O B J E CT _ T Y PE ) : Determine if the current user has been granted the PERMISSION_DEFINE permission on a specific category of objects (called OBJECT_TYPE). For example, a user could Figure 3 NO TE: The Flash client is provided as compiled file only, but some implementation details, such as the application model for validating input fields using regular expressions, can be found on Bernhard’s homepage at http://www.bgxcomponents.com. July 2005 ● PHP Architect ● www.phparch.com 31 PHP Library for Permissions Management have WRITE permission on all documents (given that we have a category of objects that includes all types of documents)—this will grant WRITE permission on all documents, but not on other categories of objects, like folders, assuming we defined folders as a different category of objects. Authorize(PERMISSION_DEFINE,OBJECT_TYPE,OBJECT_I D): You can determine if a given user has access to a single, specific object. To do this, you must specify both the object category (OBJECT_TYPE) and the unique id of the object (OBJECT_ID). The OBJECT_ID is unique only in the set of objects included in the OBJECT_TYPE category of objects. Common GUI for a common Library So far, we’ve only talked about building a good library that provides for the needs of many different applications, but what about administering the data? A common GUI, pre-built and easy to deploy, would be very helpful. Again, the objective is to provide a ready-made package you can plug into your own application. We decided to provide this in form of a single, compiled Flash file that communicates with the server via XML. Reasons to use Flash For simple forms (e.g. an ordering form, or even shopping cart solutions) stateless HTML based GUIs that are (re-)constructed and downloaded with every data exchange are fine. For more complex applications like our permissions editor, however, a solution that can maintain state on the client and could also take care of some of the more complex GUI components needed, like editable tree structures, would be a distinct advantage. Flash provides rich, platform independent client capabilities within a lightweight vector-based, easily downloadable and well distributed runtime environment. While Flash has always been very well known for its graphic and animation capabilities, for our permissions application it was more Flash’s extensive scripting Dynamic Web Pages www.dynamicwebpages.de sex could not be better | dynamic web pages - german php.node FEA T URE capabilities that were key. In particular, Flash allows: • data to be organized in such a way that only small chunks need to be loaded as the user requests them • the use of complex data objects such as user-permission trees on the client • client-side state retention • the creation of complex form based GUIs • binding data to a large set of readily available GUI components like lists, combos, and trees that can also be customized • the tracking of changes, client side, and submission of only data that has changed (e.g. when saving) Flash has evolved into a true rich internet application architecture, meaning parts of the business logic can reside on the client while exchanging data only with the server. Client-Server Communication The API used to communicate between the Flash client and the server application is generic so that the Flash client could be swapped for any other client that can send and retrieve data via HTTP and understands XML. How is this done? On the client side, we have created a PHP page to which predefined QueryString and Form parameters can be sent to request certain types of data (e.g. users filtered by a search parameter) in XML format. The page can also receive data to be saved to the database. For our Flash file, we have provided an external settings file which you can use to specify the exact URL for the different calls. By default we assume that the Flash file resides in the same directory as the xml_creator.php page that processes the calls, but you could change the URL to whatever suits you. The XML_API.doc file describes the calls that can be made to the server. You can try them out by simply entering the URLs into the address field of your browser. This document also describes the structure of the XML that is returned for each call. The client is expected to populate an appropriate GUI with the submitted data, and handle changes. To submit changes to the server, an XML string has to be sent as a form parameter to a PHP page that will handle the save request. Within this XML document are sections for changed, new and deleted data. When notifying of new or changed data, the whole object (e.g. a user or group definition) is sent, but in the case of a deletion, we send only the ID of the object in question. This way you get a very lightweight communication model for data exchange, requiring only the minimum data to be sent at a time. news . scripts . tutorials . downloads . books . installation hints July 2005 ● PHP Architect ● www.phparch.com 32 PHP Library for Permissions Management FEA T URE Client Customizations With the settings.xml file from which Flash reads the URL definitions for the commands, you can also control the appearance of the client (to some extent). Primarily, you can cjamge all of the labels that appear in the GUI, allowing you to change the language from English to whatever you need. There are also some CSS-like style definitions for the graphical appearance that you could change, and finally regular expression validations for various field types. For example, you might want to change the input requirement for passwords from “^[a-zA-Z0-9]+$” to something else. Conclusion The presented library should suit many applications, allowing an immediate and easy implementation via the permissions API. Authentication types are not predefined and can be created as needed. A flexible and easily deployable Flash GUI is provided (in the code archive) to administer the permissions library database, using a generic XML “gateway” that could be used to create other front ends if needed. July 2005 ● PHP Architect ● www.phparch.com EDITOR’S NOTE: The code provided by the authors, for this article, is very extensive, and the submission contains binary files (the Flash client, for example). As such, we have decided to refrain from printing the entire code, and have instead included it only in the code archive (zip file) that accompanies this article. About the Author ?> Simone is about to start a PhD at Trinity College in Dublin on Model-Driven Architectures next Obtober. Bernhard is a multimedia developer and general user interface specialist based in Dublin. To Discuss this article: http://forums.phparch.com/231 33 NEXCESS.NET Internet Solutions 304 1/2 S. State St. Ann Arbor, MI 48104-2445 http://nexcess.net PHP / MySQL SPECIALISTS! Simple, Affordable, Reliable PHP / MySQL Web Hosting Solutions P O P U L A R S H A R E D H O S T I N G PAC K A G E S MINI-ME $ 6 95 SMALL BIZ $ 2195/mo /mo 500 MB Storage 15 GB Transfer 50 E-Mail Accounts 25 Subdomains 25 MySQL Databases PHP5 / MySQL 4.1.X SITEWORX control panel 2000 MB Storage 50 GB Transfer 200 E-Mail Accounts 75 Subdomains 75 MySQL Databases PHP5 / MySQL 4.1.X SITEWORX control panel 16 95 /mo 900 MB Storage 30 GB Transfer Unlimited MySQL Databases Host 30 Domains PHP5 / MYSQL 4.1.X NODEWORX Reseller Access NEXRESELL 2 $ We'll install any PHP extension you need! Just ask :) PHP4 & MySQL 3.x/4.0.x options also available 59 95 /mo 7500 MB Storage 100 GB Transfer Unlimited MySQL Databases Host Unlimited Domains PHP5 / MySQL 4.1.X NODEWORX Reseller Access : CONTROL php 5 4.1.x P O P U L A R R E S E L L E R H O S T I N G PAC KA G E S NEXRESELL 1 $ NEW! PHP 5 & MYSQL 4.1.X php 4 3.x/4.0.x 128 BIT SSL CERTIFICATES AS LOW AS $39.95 / YEAR DOMAIN NAME REGISTRATION FROM $10.00 / YEAR PA N E L All of our servers run our in-house developed PHP/MySQL server control panel: INTERWORX-CP INTERWORX-CP features include: - Rigorous spam / virus filtering - Detailed website usage stats (including realtime metrics) - Superb file management; WYSIWYG HTML editor INTERWORX-CP is also available for your dedicated server. Just visit http://interworx.info for more information and to place your order. GENEROUS AFFILIATE PROGRAM UP TO 100% PAYBACK PER REFERRAL 30 DAY MONEY BACK GUARANTEE FREE DOMAIN NAME WHY NEXCESS.NET? WE ARE PHP/MYSQL DEVELOPERS LIKE YOU AND UNDERSTAND YOUR SUPPORT NEEDS! WITH ANY ANNUAL SIGNUP ORDER TODAY AND GET 10% OFF ANY WEB HOSTING PACKAGE VISIT HTTP://NEXCESS.NET/PHPARCH FOR DETAILS Dedicated & Managed Dedicated server solutions also available Serving the web since Y2K FEA T URE Change Your Life with Version Control: An Introduction to Subversion F E A T U R E by Clay Loveless Imagine a world in which you work harmoniously with other developers, never fearing that your code changes will overwrite theirs—or worse, that their changes will overwrite yours. A world where all of your modifications are backed up, and where you can always perform an “undo” operation when your code tweaks take a turn for the worse. Sound like a dream come true? Welcome to the Subversion-managed life. I f you’re not already using a version control system to manage your work, you may be one of many developers with a nagging “Man, I need to take time to figure that out” thought in the back of your mind. The one that pops to the forefront every time you see a line like the following, in an open-source project you’re hacking on: $Id: index.php 3128 2005-05-01 22:02:26Z clay $ Or, you may be a developer who’s been working for a while without using a version control system, and you think “Hey, I work alone and I get by just fine without that stuff. What’s the big deal?” Change to workflow management is something that simply gives a lot of developers the shivers. No one wants to time testing out new ways to work—if you’re already overworked, adding new steps to your workflow is just going to make everything take longer, right? In this article we’ll explore why taking the time to integrate version control into your work is worth the effort. In doing so, I’ll introduce you to Subversion, a version control tool that is rapidly gaining favor with the open source development community. What is Version Control? Version control is the process of keeping track of changes that are made by one or more parties, to a collection of files. July 2005 ● PHP Architect ● www.phparch.com The art of software development is often made up of a series of exploratory events. You may know the requirements of the project or task you’re working on— you know what you ultimately want to achieve—but getting from the beginning of a project to the end may require some (or lots of) trial-and-error style exploration. Version control tools are designed to help you keep track of the small, incremental changes you make along the way, similar to the idea of leaving a trail of breadcrumbs behind you as you venture deep into the forest of your project. By making use of version control, REQUIREMENTS PHP 4.3 OS Any supported by Subversion Other Software Subversion 1.0 or later, PEAR::VersionControl_SVN Code Directory subversion RESOURCES URL htt p:// sub ver sio n.t igr is. org / i URL htt p:// svn boo k.r ed- bea n.c om/ 35 FEA T URE Version Control: An Introduction to Subversion you can always find your way back if you realize that you’ve gotten lost. Beyond keeping a basic record of changes, version control systems also provide mechanisms to merge changes made by more than one person to the same file or files. It is this ability to manage concurrent changes by members of development teams that the magic of version control really starts to kick in. Why You Need Version Control You may be like me—I resisted the idea of version control when I first learned about it. I started off working in want an easy way to help you out by contributing patches to your code. How do you manage all the helpful input and integrate it into your work? All of these issues can be addressed effectively by integrating a version control regimen into your workflow. Introducing Subversion, Heir Apparent to CVS The Concurrent Versions System (CVS) is the de-facto standard version control tool. CVS, which has been around in various incarnations since the late 1980s, “The art of software development is often made up of a series of exploratory events.” web development as a self-taught independent contractor, and since I worked alone, I figured I did not need to use a tool that was designed to help teams of programmers work together. I had a little system of creating a copy of a file before I veered off in a radical new direction, and I knew that I could always go back to that saved version of the file if didn’t like where the new direction took me. There are a few problems with this approach. First, what if you have made some changes in your “new direction” version that you want to keep, but you want to discard some changes? It’s hard to remember exactly everything you changed so that you can carry only the changes you want back to your saved backup. Next, what if you forget to make enough backup copies? Often, the exploration of a new approach to solving the programming problem will involve a number of small branches that may seem too small to be worth saving entire backup copies of the files you’re working on. The sense of security you had when you made your original backup copy is eroded when you realize you didn’t have just one branch from the main development, but you’ve really made several branches. How about the bugs you introduced during all that fiddling around with the code? Before I got hooked on version control, I spent many long hours backtracking through multiple-undo operations, hoping that my editor wouldn’t crash while I was stepping backwards through changes to find where I’d goofed up. On the positive side, what if what you’re working on becomes The Next Big Thing? When other developers line up to help, they will want to be able to see how you got to the current state of the project, and they will July 2005 ● PHP Architect ● www.phparch.com evolved from a series of UNIX shell scripts written to solve the problem of merging the work of multiple developers working together on a project into a central copy of the work that combined the input from each developer into a unified whole. The container that holds this central copy, as well as the history of changes to it, is known as a repository. Like many solutions that evolve organically as the problem definition clarifies itself, CVS was patched and extended in order to meet new requirements as they came up. Features such as secure network connections to a repository server and versioning of binary files (such as images), in CVS, behave almost as though they were afterthoughts, and require the user of the system to remember special incantations in order to use those features properly. After more than a decade of CVS use as the primary solution to the version control problem, the requirements of a complete version control workflow were well-known. In early 2000, a group of developers began work on a new version control system called Subversion, whose primary goal was re-imagining CVS’ solution to the version control concept from the ground up, without any of CVS’ quirks and design flaws. Subversion can handle several aspects of versioning a project that CVS cannot; for example: • Subversion tracks changes to directories and files; CVS can only track changes to files. • Subversion allows flexible access and authentication policies over HTTP, HTTPS, and SSH. • Subversion can track metadata properties 36 Version Control: An Introduction to Subversion related to the files and directories in a repository, in addition to changes to the files and directories themselves. • Subversion tracks revisions as they relate to an entire project, not only as they relate to individual files within a project. While there are many version control tools available today, whose implementations improve upon the concepts pioneered by CVS, Subversion is the only free, open source solution designed specifically to duplicate CVS’ use in a development workflow. Conceptual Overview: What are we trying to do? There are a variety of ways to take advantage of Subversion: command-line tools, GUI applications, integrated solutions that provide access to Subversion as part of a larger application, and web-based Subversion interfaces. We’ll cover all of those methods, but before we dive into the details of basic svn usage, let’s describe what we’re really trying to accomplish with Subversion, and version control in general. First, we need a place to store the code for the project we’ll be tracking with version control—that place is called the repository. A Subversion repository can be created locally on your development machine, on your development server, or it can be provided for you as part of Subversion repository hosting service. Some version control novices are confused by the concept of the repository, since they are used to only having one copy of the code for their projects stored in a local directory where they make edits, and a web server that the files are uploaded to when edits are complete. If you find the repository idea confusing, you’re not alone; I found the concept of an invisible, allknowing repository the most difficult to get a grasp on when I first began working with version control tools. Think of the repository as a refrigerator—you store a pizza in the fridge, take it out and “work on it” by eating a slice or two, and then put the modified pizza back in the fridge. A repository is similar in that you keep your code in the repository, and you checkout a copy of the code to work on it. (A repository isn’t exactly the same as a refrigerator—the repository keeps copies of all previous versions of the project, enabling you to go back to any specific revision if you need to. I wish my fridge let me do that with pizza!) If you are not working on a project that already lives in a Subversion repository, you will first need to import the project that you want to track revisions on. If you’re starting work on a new project, it’s a good idea to import an initial directory structure for the project to establish a starting point. The checked-out copy of the code is called a working copy. Just like when you’re working on a non-version July 2005 ● PHP Architect ● www.phparch.com FEA T URE controlled project, you often need to do any or all of the following tasks while making edits: make changes to one or more lines of code in files already in the project, add new files to the project, copy files from one directory to another, move files around, and possibly even delete files or directories entirely. When you’re finished making changes to your working copy, you tell the repository about the changes you’ve made by performing a commit operation. Occasionally you may find that you need to stop working on the project for awhile to handle something else before you’ve been able to commit your changes. When you get back to working on the project (hours, or even days or weeks later), you’ll probably want to take a moment to figure out the status of the changes you made during the last session to you can determine exactly where you left off. If you will be working on a project with others, or even just making custom modifications to an open source project that is housed in a Subversion repository, you will want to make sure that your working copy is current before each editing session. To do that, you will need to perform an update operation, which will pull down anything that has changed from the repository since your last editing session. When updating your working copy on a project that is being worked on by multiple developers, you may find that someone else has made changes to files that you’ve been editing. In that event, you’ll need to merge the changes you’ve made with the changes the other developers working on the project have made. Sometimes the changes you’ve each made will be to different sections of the same file, in which case merging is an easy task. There are times, however, when you find that you’ve each been working on the same section. In those instances, you’ve got a conflict that you will need to resolve. If the series of events I’ve described above sounds somewhat similar to your work flow process, now, integrating Subversion into your routine will be a piece of cake. Basic Subversion Setup & Workflow If you’ve followed me this far, we only have a few small steps to take to get you up and running using Subversion to manage your projects. As I mentioned there are several Subversion-aware tools available to make it easy to manage your work, in a repository. All tools are based on the fundamental svn command-line tool, so for now we will focus on converting the conceptual narrative above into usable commands with svn . First, let’s assume that we’ve got Subversion example.com installed on our server at https://svn.example.com/ . The main Subversion website offers detailed installation instructions, as well as 37 Any more, and we’d have to take the exam for you! We’re proud to announce the publication of The Zend PHP Certification Practice Test Book, a new manual designed specifically to help candidates who are preparing for the Zend Certification Exam. Available in both PDF and Print Written and edited by four members of the Zend Education Board, the same body that prepared the exam itself, and officially sanctioned by Zend Technologies, this book contains 200 questions that cover every topic in the exam. Each question comes with a detailed answer that not only provides the best choice, but also explains the relevant theory and the reason why a question is structured in a particular way. The Zend PHP Certification Practice Test Book is available now directly from php|architect, from most online retailers (such as Amazon.com and BarnesandNoble.com) and at bookstores throughout the world. Get your copy today at http://www.phparch.com/cert/mock_testing.php Version Control: An Introduction to Subversion links to several pre-packaged installers for a wide variety of platforms. I will also assume (and suggest!) that you have the latest stable version installed, Subversion 1.1. You also need to consider the access methods you want to allow to your repository. Repositories, and directories within repositories, may be controlled with FEA T URE and the path where we’d like the repository to live on the server. Two file storage types are available for a repository: BerkeleyDB and the filesystem type. As of the upcoming Subversion 1.2, fsfs is the default and recommended type of repository storage, so if you’re starting a new repository it’s a good idea to get started with what will be the standard, going forward. Finally, “The repository keeps copies of all previous versions of the project, enabling you to go back to any specific revision if you need to.” an access control list (ACL). You can use an ACL to set whether projects are read-only, publicly readable but require authentication for writing, or totally private, where read and write operations require valid authentication. Authentication can be secured via SSL or SSH, or “non-secured,” meaning that authentication credentials can be required, but will be transmitted in plaintext over the network. Server-based repositories can be set up using any or all of the following methods: • svn:// : A non-secured protocol which does not require anything other than the standard Subversion installation. Network access is facilitated via the svnserve daemon. • svn+ssh://: Secured protocol which uses system accounts for authentication, and upon successful login, spawns an svnserve process as the authenticated user. • http:// : A non-secured access method that utilizes HTTP for communication. Requires Apache2 with Subversion modules installed. • https:// : Secured access method using HTTP and SSL. Requires Apache2 with Subversion and mod_ssl modules installed, plus an SSL certificate. (May be a self-signed certificate or a certificate issued by any SSL vendor. Try out a GoDaddy.com SSL cert if you feel your project might meet the requirements for their free open source SSL certificate.) If you choose either the http:// or https:// method, make sure you set your repository’s permissions so that the directory is owned by the Apache2 user. Begin by creating a repository, if you do not already have a repository available: $ svnadmin create —fs-type fsfs /var/lib/svn The svnadmin create command does not generate any output upon success. The options we’ve passed to the command specify a filesystem-only type of file storage, July 2005 ● PHP Architect ● www.phparch.com please modify the repository path of /var/lib/svn as needed to fit your environment. Now, let’s create a test project with an empty file structure. $ mkdir tmpdir && cd tmpdir $ mkdir -p testproj/trunk testproj/branches testproj/tags $ svn import . https://svn.example.com —user exampleuser \ —password examplepass \ —message “Project starter layout” $ cd .. && rm –R tmpdir The empty directory structure that you’ve given to your test project follows the standard layout suggested by the Subversion documentation. This layout is generally adhered to by most Subversion users. The purpose of the directories in an empty project structure break down like this: • trunk : The main thread of current development in the project. • branches: Experimental development branches that may eventually be merged into the project trunk. • tags : Directory for saving, or “tagging”, copies of the project at a particular point in time, such as version releases, site launch milestones, etc. So now you’ve got a shell for your project in the repository. The next thing to do is to check out the project into your working area, where you can add files, test your changes, and generally, just hack away. $ svn checkout https://svn.example.com/testproj \ —user exampleuser —password examplepass \ ~/sandbox/testproj A testproj/branches A testproj/tags A testproj/trunk — Checked out revision 1. What just happened? You checked out your test project from the repository, and saved a working copy of the project in your “sandbox” development area. The letter 39 FEA T URE Version Control: An Introduction to Subversion A in front of each directory indicates that the directory was added to your working copy. If you are actually using an https:// -based repository, the above output would also include a prompt for acceptance of the remote server’s certificate credentials. After seeing the first svn command with username and password arguments, you may be wondering if you’ll have to use those arguments with every command. The good news is: No! While the above example shows the username and password as part of the command, by default Subversion only requires this on the first command. Subversion will attempt to cache the credentials used to access the repository, and will use them transparently for future operations. (Note: the svn+ssh:// method does not attempt to cache credentials.) If you are using a shared machine, you may be concerned about the security risks of credentials caching. Cached credentials are stored in ~/.svn/auth (or %APPDATA%/Subversion/auth if you’re using Windows) in a permission-protected state which allows only the user who issued the command that cached the credentials to read them. In other words, other users on the machine will not be able to access your credentials— just make sure you log out of your session before leaving the machine unattended! If you are still concerned about the security of Subversion’s default credentials-caching behavior, you can disable authentication caching for single commands by adding the —no-auth-cache option, or by disabling caching permanently in the Subversion run-time config file that lives alongside the auth/ directory mentioned above. See the Subversion manual’s section on “Client Credentials Caching” for more details. With a working copy of our test project checked out in our “sandbox,” it’s time to get started—working just like you normally would. Using the testproj/trunk directory, create files as needed, add directories as needed, and conduct your development as usual. The notion of version control comes back into play when you’re ready to commit a version of what you’re working on. In our test project, let’s assume that we’ve copied in a couple of standard files that you may find in many projects: README , COPYING and INSTALL. Put those files in your trunk directory, either by creating new files or copying them in from another project. Now, let’s see what we’ve got: $ svn status ? README ? COPYING ? INSTALL What that tells you is that Subversion sees that there are some files in a version-controlled directory (your working copy) that it doesn’t know about. To tell Subversion that you want to track revisions on these files, you need July 2005 ● PHP Architect ● www.phparch.com to formally add them to your test project. $ svn add README A README $ svn add COPYING A COPYING $ svn add INSTALL A INSTALL Now Subversion knows about these three files, and will display an A instead of a question mark if you perform another svn status operation. Now that your working copy knows that these files should be tracked, you can commit them to the repository. $ svn commit –m “Adding basic info & doc files to project” Sending README Sending COPYING Sending INSTALL Transmitting file data ... Committed revision 2. Note that since we were committing all of the files that we added, we did not need to specify what files we were committing in the svn commit command. The message Adding basic info & doc files to project will be recorded in the repository log along with your username and a timestamp. Please make a habit of writing something informative in your commit messages— you never know if the project you’re tinkering with will become the next phpMyAdmin. If that happens, other developers will appreciate your efforts in documenting your changes. A sentence or two will do! Don’t be lazy and commit a series of changes with a message stating fixed some bugs—that kind of message won’t help you or anyone else if and when it’s time to backtrack through the log. How do you know when to commit a version, or revision? That’s a good question, and one whose answer may vary on a case-by-case basis. For example, you may be learning version control techniques to become a participating member of a multi-developer project. If that is the case, find out from the project leaders what their repository commit policy is, if any. A good rule of thumb is to commit a revision when you get to a point where you feel you would not like to have to re-do what you’ve done, much like the decision you make on when to hit Save in your editor. Another good rule is to try to commit changes that actually work. If you feel like you must (or should) commit a revision that you know is broken in some way, make a point to note what is broken clearly in your commit message. If you find that you need to commit some of the files that have changed in your current working copy, but you’re not ready to commit them all—or if it does not make sense to commit all current changes under one commit message—then you need the —targets command option. This option allows you to reference a file that lists out all of the files in the working copy that should be included in the current commit operation, 40 FEA T URE Version Control: An Introduction to Subversion and therefore tagged with that commit message. A handy way to make use of this feature is to keep an alias to a file called svn, which resides in the home directory, somewhere close at hand (I keep mine in the Mac OS X dock—adjust this suggestion to your operating system of choice). That way, you can quickly open the ~/svn file and add a list of files that you want to commit. Using this technique, every —targets commit can look like this: $ svn —targets=~/svn –m “Added new maintainer to package.” Create files and directories, add them to the project with svn add , and commit. Repeat. Make changes, commit with useful log messages, repeat. Keep up this routine, and it will pay dividends later. A few things that strict adherence to this allow you to do: Look back on the long, strange trip. It’s a fairly common practice to build ChangeLogs out of repository commit messages. Detailed commit messages, combined with svn log , can give you a nice overview of the progression of a project’s codebase. How’d we get here? Dig back into the past to find out what specific changes were made to a file to get to the current state. For example, svn diff -r10 index.php will compare the current revision (also known as HEAD ) of index.php with revision 10 of index.php. Abort, Abort! svn revert can let you back out of all changes you’ve made since the last revision was committed. Working and Playing Well with Others So far, the techniques we’ve covered outline the benefits and basic usage of Subversion for an individual. The main points to know when using Subversion as part of a development team are how to merge changes and resolve conflicts, and the importance of svn update. When working with a group, it is important to remember to run svn update in your working copy at the start of every editing session. (If you’re working on a particularly active project, it may make sense to run it several times during a single editing session.) svn update updates your working copy with the current revisions in the repository. Often, running svn update will be a smooth operation. The command will put out a list of changed files that it has updated in your working copy, new files that have been added, and possibly files or directories that have been deleted. Subversion will note these changes in your working copy by listing the related files, prefixed with U, A or D, respectively. However, on occasion svn update will pull changes from the repository that affect files that you have been editing in your working copy. In these instances, those files will be denoted with a G, for mer ged, or a C, for conflict. When you see a G , it means that Subversion July 2005 ● PHP Architect ● www.phparch.com noticed that you’d been making changes to the same file, but your changes did not overlap the changes made to the version in the repository, so Subversion automatically merged your changes in with the new revision. In the event of a conflict, that means you and another developer were working on the same section of code within a file. To bring the world back into harmonious balance, you will need to manually review the differences between your edits and those of your colleague. Subversion tries to make this process easier by creating a few extra files in your working copy. Let’s say that you’ve been making changes to the opening paragraph of your project’s README document, while another developer has been making changes to the same section. When you run your svn update command, something like the following will occur: $ svn update C README Updated to revision 3. $ ls -1 README README.mine README.r2 README.r3 The three additional files alongside README are called conflict markers. At this point, you have three choices: Manually compare README.mine with README.r3 , and if necessary, README.r2. README.r3, in this example, is the revision you just pulled from the repository. README.mine reflects your current changes, and README.r2 reflects how README looked before any editing started by either party. When you’re done manually examining the files, make edits to README, as appropriate. Copy one of the three conflict markers over README. Run svn revert README to discard your changes. After completing one of the above three choices, you should then run svn resolve to let Subversion know that you feel you’ve taken care of the conflict. At the risk of stating the obvious, it is important to realize that when Subversion successfully merges your working copy file with a changed file from the repository, what you’re left with may very well not be a functional file. In my (very) early days of understanding version control concepts, I wondered “How does the merge operation know if the changes from the repository should be merged with my changes?” The answer, of course, is that the tool doesn’t know—it’s just a tool, not an omniscient guardian angel. All that happens when Subversion automatically and “successfully” merges your working copy with the newly retrieved version of a file is that Subversion feels comfortable that the lines that another developer changed in the file are not in the immediate vicinity of the lines you are in the middle of changing. Hence, the guideline is to make sure you pay close 41 FEA T URE Version Control: An Introduction to Subversion attention what’s taken place whenever you perform an svn update operation, and double-check any merges or conflicts that the output of the command warns you about. Fun for the Whole Team When working as part of a diverse group that may include more than developers—or if you, yourself, prefer to stay away from command-line tools—there are a wide range of tools that have Subversion support builtin. A short and by no means complete list: • BBEdit: Version 8.1 of the venerable Mac editor offers built-in Subversion support. http://barebones.com/ • SVN for Macromedia Dreamweaver: Thirdparty plugin available in free and commercial versions. Currently Windows-only. http://grafxsoftware.com/ • psvn.el: Subversion interface for emacs, for the hard-core among us. http://xsteve.nit.at/prg/vc_svn/ • TortiseSVN: Standalone Windows GUI client for Subversion. http://tortisesvn.tigris.org/ • SCPlugin: Contextual Menu plugin for Mac OS X that adds Subversion support to the Mac OS X Finder. http://scplugin.tigris.org/ While it may be a challenge, it is worthwhile to try to integrate Subversion usage into an entire team, including copywriters, graphic designers, and yes, even marketing folks. A historical record of an entire project (not just the code portion) in one place is an extremely valuable resource if you can get buy-in on the concept from an entire team. Leveraging Subversion in Your Projects So, what’s all this got to do with PHP, seeing as this is a PHP magazine? From the beginning, Subversion has offered very tight integration with Perl, Python and Java. Subversion also comes with C libraries that can add Subversion functionality in applications such as those mentioned in the previous section. Until recently, Subversion integration with PHP has been lacking. There are two PHP packages available to make it easier to take advantage of a Subversion repository in your projects. PEAR::VersionControl_SVN: An OOP wrapper svn for the command. http://pear.php.net/package/VersionControl_SVN ext_svn: A PECL extension for Subversion. Uses the svn client libraries to add native Subversion functionality to PHP. Available from CVS only as of this writing. http://cvs.php.net/pecl/svn/ July 2005 ● PHP Architect ● www.phparch.com In addition to basic repository browsing functionality (See the cool FlexySvn for an example of that: http://newweb.akbkhome.com/svn.php), these packages can be used to add robust version control capability to web applications. For example, imagine a message board templating system that allows forum administrators to tweak templates with a browser interface, but saves those changes to a server-side working copy of the forum’s distributed template set. The web interface could also trigger periodic svn update commands to a publiclyreadable repository to merge distribution-level template changes with customized templates. A number of CMS applications offer some form of internal versioning, but none of those custom-built versioning systems allows external editing of those versioned documents. With the integration of Subversion capability, a CMS application could be extended to allow content editing from within its interface, or via Subversion, with changes accessed again through a server-side, PHP application-triggered repository checkout. (Note: svn export might be a better command to trigger in that type of scenario.) The VersionControl_SVN package is well documented with examples for each method it offers—please see the online documentation at the PEAR website for more ideas on how to integrate Subversion into your applications. Start Tracking Changes Today! I know that adding version control to your working process can be a chore that does not seem like it is worth the effort. However, I hope that I’ve shed some light on what benefits await you if you take the time to integrate Subversion into your work. Don’t waste time getting on the bandwagon—put down this magazine and jump online and Google for “Subversion hosting.” There are a number of services that offer relatively inexpensive repository hosting, and many of those offer free trial periods. Try out what you’ve learned, immediately, without getting bogged down in the details of setting up your own repository server. Good luck, and don’t forget to commit your work, often! About the Author ?> Clay Loveless has been developing web applications with PHP since 1997’s PHP/FI 2.0b6. A New York University-trained actor, Clay now works from California as an independent internet solutions consultant under the name Killersoft (http://www.killersoft.com). He is also actively involved in maintaining Pearified.com. Clay is a husband, father of a very cool one year old son, and a dedicated Boston Celtics fan. Reach Clay via clay @killers oft.co m. To Discuss this article: http://forums.phparch.com/232 42 FEA T URE Creating a Simple Image Gallery by Martin Psinas This is version 2.0 of an older, much more rustic image gallery that was previously published on codewalkers.com. I was amazed at how many people actually took interest in it, and even more amazed at how many bugs it had after getting carried away and sloppy with hasty improve- ments. I eventually became fed up with how un-manageable the code had become, and it finally got to the point that I abandoned the project, putting all development on hold until deciding (recently) to start again from scratch. M ther developing the scripts for use with larger galleries and/or high-traffic websites. At the time of writing, this article assumes you are using PHP version 5.0.4 along with GD version 2.0.28 (although it should run on a few older versions of PHP as well). ost of the philosophy behind the original project remains the same. I wanted an image gallery that doesn’t require a database, or an administration script; simplicity is the key. All storage will be handled by the file-system. Each directory will be a category (or sub-category, depending on the hierarchy), and the images will be sorted within these categories no different than you would organize them on your personal computer. Everything else, i.e. thumbnails, pagination, etc will be handled by the code. So when all is said and done, you should be able to transfer any directory of images to your web server, along with the scripts that we’re going to write and your gallery will be up and running without any required configuration. Editing the gallery is as simple as renaming folders, adding/deleting images, etc. I do not claim that this is the only approach, or even the best approach to construct an image gallery; it is a simple approach without too many bells and whistles. The code provided in this article is intended “as-is” for small to medium sized galleries; however, additional notes are provided near the end of the article for fur- July 2005 ● PHP Architect ● www.phparch.com Components The four scripts that we’re going to write are: • config.php – optional configuration options • imgsrc.php – the code for handling the images • gallery.php – the code for displaying the REQUIREMENTS PHP 5.0.4 OS Windows/Linux Other Software GD Library 2.0.28 URL http://www.boutell.com/gd/ Code Directory imagegallery 44 FEA T URE Creating a Simple Image Gallery image gallery • styles.css – a style sheet for the gallery The first step is come up with a layout of how we want our gallery to look. Our gallery will consist of five main components: The container is exactly what the name implies, a container for the other sections. The breadcrumb menu will always be displayed at the top of the gallery, whether we’re displaying categories, thumbnails, or a combination of both. This way we can always find our way back from whence we came. The category display is a section that will display categories vertically, if applicable Each category will be displayed as a thumbnail of the first image inside of that category, along with a count of how many images and sub-categories are inside. If the category doesn’t have any images (but does have sub-categories), we’ll just display a default thumbnail. The image navigation menu will allow us to navigate the many different pages of thumbnails. We will actually display this menu both above and below our thumbnails. And finally, the thumbnail display section will display our thumbnail images. Take a look at Figure 1 to get a better grasp on how the layout will be displayed. Pretty, isn’t it? The Set Up The first script, config.php, will consist of two parts: optional configuration options (Listing 1), and advanced configuration options (Listing 2). This code in Listing 1 should be pretty self-explanatory. We set up some nice default values, so altering these constants is completely up to you. Pay attention to the comments in my code as well, for further explanation. We start Listing 2 by assigning the server path to our main images folder. The default setting grabs the current working directory, and replaces back-slashes with forward-slashes to avoid conflicts between Windows and Linux servers. The path should always begin with a slash, but never end with one. It is recommended that you change this path to a folder outside of the public web-tree. The reason for this is because all calls to images will be going through imgsrc.php, which is the script that draws watermarks on our images. If someone visiting your gallery were to change the URL in their browser, they could potentially access your images, directly, to avoid the watermarks. However, if your images were stored in a non-public folder, this would not be possible. In the TYPE constant, we are defining what MIME types our script is allowed to work with. This will prevent our script from trying to mess around with files it shouldn’t, such as logs left behind from FTP programs or the image gallery scripts themselves. We have to seri- July 2005 ● PHP Architect ● www.phparch.com Listing 1 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 Listing 3 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 Listing 6 1 2 3 4 5 6 7 8 9 10 11 12 13 14 Listing 16 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 a:link, a:active, a:visited { color: #000080; font-family: verdana; font-size: 13px; font-weight: bold; text-decoration: none; } a:hover { color: #000080; text-decoration: underline; } img { border: 1px #CCC solid; } td { text-align: center; } td.category { text-align: left; border: 1px #DDD solid; } #main { margin: 0 auto; border: 1px #000 solid; background-color: #C0C0C0; } #navigate_categories { text-align: left; width: 100%; color: #000; border-bottom: 1px #000 solid; background-color: #FFF; font-family: verdana; font-size: 13px; } #display_categories { width: 100%; color: #000; background-color: #C0C0C0; font-family: verdana; font-size: 13px; } .navigate_images { text-align: center; width: 100%; color: #000; background-color: #FFF; font-family: verdana; font-size: 13px; } #display_thumbnails { border: 1px #CCC solid; width: 100%; background-color: #FFF; } Future Improvements The imagejpeg(), imagegif() and imagepng() functions all accept an optional 2nd parameter which would store permanent copies of both full sized and thumbnail images in the specified location. You could take advantage of this to use fewer resources as PHP would- 52 FEA T URE Creating a Simple Image Gallery n’t have to re-draw the images every time a page is requested. You would also need to modify imgsrc.php to first check if permanent copies exist, output them accordingly if they do, or create them if they don’t (and delete the originals). You’d obviously have to consider file permissions when adding this functionality. Adding the option to config.php for whether or not to store permanent copies would also be recommended in case you change your mind down the road. If you have an extremely large directory structure, you might consider caching the directory tree, perhaps in a session variable, so PHP isn’t re-gathering that information every time a new page is requested. Having PHP handle all image calls could allow for easy implementation of anti-leeching, preventing any websites that you don’t approve of from linking directly to your images. Nobody likes a bandwidth moocher. To support image descriptions, search functionality or the like, you would probably be better off converting the whole thing over to MySQL (which is obviously not the direction I am intending to go). In my vision, you would simply add an image description to the properties of an image on your local machine, and then have PHP read from that. I have nothing against databases, I’m just not a die hard “everything needs to have a database!” guy. Conclusion I would love to hear from anyone using my gallery, as it is a really good feeling to know it is out there being used. I also welcome any feedback or modifications regarding the code. The open source community has done nothing but great things for my life and I am happy to contribute. Please direct all questions or help/troubleshooting requests to either the codewalkers.com tutorials forum, or the php|architect forum. For all other inquires, you may contact me by e-mail at: [email protected]. About the Author ?> Martin Psinas, a.k.a. notepad, a.k.a. tapeworm is a volunteer administrator at codewalkers.com. He is also the author of the soon to be published “1337 h4x0r h4ndb00k” ISBN: 0672327279. Martin has been involved with computers since the summer of ’98, he is a freelance contract hacker by night, and during the day, he is a web developer for a local internet company based in central Illinois. To Discuss this article: http://forums.phparch.com/230 Award-winning IDE for dynamic languages, providing a powerful workspace for editing, debugging and testing your programs. Features advanced support for Perl, PHP, Python, Tcl and XSLT, on Linux, Solaris and Windows. Download your free evalutation at www.ActiveState.com/Komodo30 TE ST PA TT ER N T E S T P A T T E R N Not Just Nouns by Marcus Baker Your classes are your nouns and your methods are your verbs. The rule certainly is easy to apply, as you can just underline all of the nouns and verbs in your requirements document. There, object oriented design is easy! You are probably wondering what all of the fuss is about when such a simple rule is available. L et’s try out the noun/verb rule. Sometimes, when writing articles like this, my imagination needs a bit of a helping hand. I want to open up this project for tender and so write a formal requirements document. Here it is... “I, a person, will drink a beer when writing”. By our noun/verb rule this leads naturally to these classes... class Person { function drink($beer) { } } class Beer { } And already we have problems. Should Person have the drink() method or should the Beer class be rewritten as: class Beer { function drunkBy($person) { } } For that matter, the noun “Person” could have been “Drinker”, and “Beer” could have been “Drink”. Maybe these words are just the whim of the requirements writer? I bet two different sponsors on the same project will never choose the same set of terms. And the language affects our decisions, terribly. If a class is called Drinker then having a drink() method makes perfect sense. If a class is called Person , then should it really have a drink() method just for our rather unusual July 2005 ● PHP Architect ● www.phparch.com application? Person is going to end up a pretty big class if that is the rule, as people do quite a number of actions. To make things worse, where to place that method is vitally important to the architecture of the project. Take a look at Figures 1 and 2. In the first case, our Person class can see the Beer class as it is going to manipulate it. This is shown by the arrow. If Person is a central class in our application, and Beer is comparatively peripheral, this is bad news. If the Beer class changes for any reason, our Person will have to change, too. Having a central part of the system at the mercy of the fringe libraries is going to cause us endless rewriting with each minor change. The situation in Figure 2 is probably superior, and yet that wasn’t the one suggested by the wording on our initial statement. Is it just our lack of design experience that is getting us stuck and leading us into “analysis paralysis”? I don’t think so. I think we have already gone wrong. REQUIREMENTS PHP Any OS Any Other Software None Code Directory nouns 54 TE ST PA TT ER N Not Just Nouns The Business of Automation Let’s conduct a thought experiment. Imagine we are observing a production line through a camera. We are hoping analyze and model the processes of a car plant with the intention of improving it. The camera image is currently frozen and we are examining the scene. Straight away, we can see a car in different states of assembly. We can see engines and wheels, and various people associated with these parts. We can see all sorts of tools that help to make a car, such as wrenches and robots, and we can exactly catalogue every component of a car in excruciating detail. We can also work out what things have been done to the car, and can probably match them up with the tools. Can we then create a car assembly plant to order? We probably could, but we would have done it the hard way. Trying to understand a car plant like this is reverse engineering. You know there is an underlying plan, but you are trying to discover the cause from the effect. The resulting model is flat and fragile. There will be lots of part hierarchies, or composite patterns, if you rightly shy away from inheritance. I doubt every application has at its core the Composite pattern, but that is what we will get when looking at still images. What processes are important? How does the car plant react when something goes wrong, for example? How does the system adapt to build a truck? Or a plane? We haven’t really captured any of the important information. Luckily, our camera is really a video camera that is stuck on freeze frame. Let’s switch it to full motion and observe again. We immediately see a much richer picture. We can see the workers actually affecting changes on the vehicles as they move around the plant. We can see not just the assembly of the cars, but also which responsibilities belong to which workers and also how the workers themselves move around. Some of them probably do multiple jobs, for example. More obvious with full motion is something deeper still, the workflow of the plant. Rework loops and allocation of personnel are much clearer when we can see adaptation in context. We can see the main paths and also the exceptional circumstances. When something different happens, we can compare and see consequences. These are probably the real secrets of designing car plants, ones that are much more visible when we can see the motion. We lose almost all of the real insight when we view a problem statically. Software is not written to catalogue parts, it’s there to solve tomorrow’s problems. As programmers, we solve problems by creating a system that changes things automatically. We are also in the business of automation. The Power of Story Back to beer. We went wrong as soon as we identified July 2005 ● PHP Architect ● www.phparch.com theFigure nouns. 1 They are passengers, not the forces that Person Beer +drink() Figure 2 Person Beer +drunkBy() Figure 3 Data MoreData God EvenMoreData LessInterestingData CannotEvenRememberWhatThisWasFor drive the design. The design is driven by the verbs. Allocating these verbs is the tricky bit, as we have seen above, but it’s not so tricky with the cinema-like approach of the car plant observations. If we watch a headlight being assembled, we can observe a number of tasks, all being performed by the same person. The person that crimps the wires is also the person who ensures the insulation is correct. This makes sense. The headlight assembler has a skill set and a tool box associated with electrics, but we don’t need to know that beforehand. All we have to do is observe the single thread of the headlight assembly and look for how the actions are grouped. We look for roles. This following of a single thread with central characters is one of the oldest forms of communication there is. It’s called a story. This tradition reintroduces the vital ingredient of the flow of events back into our requirements gathering. If we want to understand the principle characters in a system, rather than be given a dry listing of objects, we want to be told a good story. Let’s illicit our requirements in that form… “Marcus is writing an article, but is feeling a touch of 55 TE ST PA TT ER N Not Just Nouns writers’ block. By raising his blood alcohol level, he can restart the flow of words. A beer is a possible source of blood alcohol when imbibed. There is a delay before it takes effect, so it is normally ingested before he starts writing the article.” and avoid dry lists of data. Sadly, we are shaped by our early experiences into being unwitting accomplices in our own demise: we often ask for data centric descriptions. Our first ever program was small. We could hold all of “ Software is not written to catalogue parts, it’s there to solve tomorrow’s problems.” We can do very much more than agonize over a UML diagram now. We can actually write some prototype code: $marcus = new Writer(); $marcus->imbibe(new Beer()); $article = $marcus->write(); We hardly have to think about where to place methods, because the tasks the objects have to perform are informed by the names of their roles... class Writer { ... function imbibe($drink) { $alc = $drink->getAlcohol(); $this->alcohol += $alc; } } Another problem with gathering requirements as mere descriptions is that you will get someone else’s interpretation of the appropriate abstractions. The concept of a drink dominated our first sentence, but it turns out that the drink is a mere container for something else: its role is to deliver alcohol. Whatever the exact words chosen with a story approach, this essential fact would not get missed. Programmers Love Data There are only two possible reasons why a project should have poor requirements. The first is the customer wrote them, and the second is the developer accepted them. Now, people writing formal documents are far more prone to a flat descriptive style. A formal document gets in the way of story telling, because the stories never escape the author’s head. The programmer reads them later and has to reverse engineer. When gathering requirements it is vital to use the richest possible communication medium. Face-to-face verbal communication is best. A phone conversation should be the bare minimum. Think interactive. The output of requirements gathering should be the transfer of knowledge from the expert to the developer. Any document is just a side effect. With direct contact, we have the opportunity to thrash out the real processes July 2005 ● PHP Architect ● www.phparch.com the data, if not the code, in our minds eye. This perfect vision was part of our early intoxication with programming. Unfortunately, it’s an expectation that doesn’t hold up well in the professional world. Partly the sheer scale of most problems is beyond what we can keep track of. Mainly though, it’s that data is often the least important part of a business. Like all of the fiddly little components in a car plant, data is a passenger. The core value will still be on data management rather than the data itself. For example, people are hired on the basis of their skills, not a photographic memory. The side effect of this is the data changes format all the time and is the least stable factor in modeling a business. If we naively model the data first and then try to write code to operate on it, as with our early programs, we will probably end up with something like Figure 3. If you were worried about the core depending on less stable modules in Figure 1, Figure 3 must have you panic stricken. Even minor changes to the business will ripple through the data, in turn causing major rewrites to the central class every time. You’d have a class that is already complex, and thus, extremely difficult to change. This way of writing software is called “data centric design,” and usually starts with the transposition of nouns into database tables. It can be quick to write, but is not robust. Listen for Roles If you are making use of objects, then you probably want their flexibility. A role based decomposition, rather than the structural decomposition of the data approach, distributes the information to those objects that need it most. Our headlamp assembler in our imaginary car plant has all the knowledge of headlamps, but no one else does. A different type of headlamp for a different model car will have negligible impact on the plant as a whole, even if the fitter needs retraining. Even abstraction won’t damage our encapsulation. We could use the same person to fit the ignition system. After all, they have the same electrical skills and both roles share the same tools. We can call this new 56 TE ST PA TT ER N Not Just Nouns role an electrician. This is an effective abstraction, as an electrician can be substituted for a headlamp assembler without change to any other part of the system. If your design is based around the physical headlamp, dropping in a different headlamp could have far reaching consequences… say, on the bodywork. A role is a noun too, of course, but it’s a very specific type of noun, usually ending in “er.” They hardly ever appear in documents, so you cannot underline them even if you wanted to. You have to tease them out. You have to talk. Use Cases or Less None of this is new, and established object oriented methodologies are often built around stories. Extreme Programming ( http://extremeprogramming.org) actually calls them “user stories,” for example, although it leaves it up to the programmer to make use of these. The Rational Unified Process (RUP, see http://www30 6. ib m. co m/s of tw ar e/ awd to ol s/ ru p/i nd ex .h tm l ) builds requirements analysis around “use cases”, which are just a formal format for a customer story. These fundamental artifacts include an explicit role-based decomposition, calling the roles “actors” in this case. For smaller in-house projects, where the stakeholders July 2005 ● PHP Architect ● www.phparch.com sit near the developers, this much documentation is too much. The developers can absorb the expert knowledge as day to day events unfold. If they are not directly within earshot, then social meetings exchanging war stories can fill the gap. If you manage such a project, then you might want to organize semiformal gatherings in the company’s interest. Make sure that the experts are comfortable, and you seed such sessions with open ended questions, such as “what happens next?” and “how can that happen?”. Of course, you will have to get colleagues to loosen up a bit. Perhaps a beer would help. About the Author ?> Marcus Baker works at Wordtracker (www.wordtracker.com ) as Head of Technical, where his responsibilities include the development of applications for mining Internet search engine data. His previous work includes telephony and robotics. Marcus is the lead developer of the SimpleTest project, which is available on Sourceforge. He's also a big fan of eXtreme programming, which he has been practising for about two years. To Discuss this article: http://forums.phparch.com/235 57 R E V I E W PR O DUCT R EV IE W PDF Generation Library P R O D U C T by Peter B. MacIntyre H ave you ever wanted to make dynamic PDF files for your web customers? This month’s review will be covering the latest release of the FPDF library for PHP. Most of my reviews so far have been to look at screen shots of the development environment of the tool or product in question. This review will be looking at more code examples and some rudimentary examples of what can be accomplished with the FPDF library. I usually introduce the product with a little quote from their web site, so let’s not stray too far from our comfort zone–here is what the FPDF library web site has to say about its own product. generate PDF files with pure PHP... F from FPDF stands for Free: you may use it for any kind of usage and modify it to suit your needs. FPDF has other advantages: high level functions. Here is a list of its main features: “FPDF is a PHP class which allows to July 2005 ● PHP Architect ● www.phparch.com • Choice of measure unit, page format and margins • Page header and footer management • Automatic page break • Automatic line break and text justification • Image support (JPEG and PNG) PRODUCT INFORMATION PHP 4+ OS Any Product Version 1.53 Price FREE! Web Address http://www.fpdf.org 58 PR ODU CT R EV IE W FPDF: PDF Generation Library • Colors • Links • TrueType, Type1 and encoding support Page compression FPDF requires no extension (except zlib to activate compression) and works with PHP4 and PHP5.” As you can see, this library thinks quite highly of itself. So, let’s get into it and see what it can actually do. First Things First Let’s first take a look at how to install this library. To be clear this is not a library in the true sense of the term in that you have to adjust your php.ini file and re-start your web server to make it work. This is a class library and by that definition all you need to do is to add a require call to the script that will be using the FPDF class. To install this class, simply download the file and un-compress it in its own folder at the top level of your web server. For example, on Windows with a standard Apache install, you would place the files in a folder called FPDF under the htdocs folder. Putting the class definition files at this level will allow you to make use of the library from any web project more easily. With the installation complete, let’s look at a starting example. The following PHP code should generate a standard, simple text output to the web browser of your choice in PDF format (and since I hate the “Hello World” examples, I am say- Figure 1 ● The output of this code running on my local server is shown in Figure 1. As you can see, after the fpdf.php file is required, a new object instance is created. Then, a page is created in the class, a font and a cell is defined. Finally, the generated material is sent to the browser with the Output() method call. The only half-difficult thing to look at in this code is the cell call and its features. The cell is a defined area on the PDF page, with coordinates starting on the top left of the page. The cell definition then creates a cell with a width of 70 millimeters and a height of 10 millimeters. These dimensions can be adjusted in the creation of the class, but we are using the defaults here. The other measurement options are points, centimeters, and inches. So, What Else..? Now, let’s take this to the next stage and show you some more of what this product can do for you. Let’s add some headers and footers to the page and add a second page to show you how this can all be done. At the same time, the code will create two columns on the page. Since this tool is object based, it lends itself to be extendible as any class can be extended in PHP. I mention this because the page header and page footer methods are automatically called when the AddPage() method is called. They are empty ancestor methods by default, so we have to Figure 2 July 2005 ing “Greetings Architect Readers!” instead). Keep in mind that this is a PDF generation library and therefore your browser should have the Acrobat Reader installed on it at the least. PHP Architect ● www.phparch.com 59 PR O DUCT R EV IE W FPDF: PDF Generation Library extend them and add content to them. Then, the code will be called as before. Two other methods are also defined so that the columns can be controlled. Listing 1 shows this code for you with a header and footer defined, and the column managing methods. This code also defines the overall PDF page parameters in this line of code: $pdf=new myPDF(‘P’,’mm’,’Letter’); Here, we are defining a portrait (‘P’) style page, with measurements in millimeters (‘mm ’), and the Letter page size. The output from Listing 1 is as shown in Figure 2. This sample code was taken and modified from the on-line tutorial at the FPDF web site. There are some other samples up there, with even more in that web site’s forum section. I have just scratched the proverbial surface, here and the additional samples on the web site will give you lots more to think about and show you what is really possible. Summary FPDF is a very stable and extendible product. The fact that it is open source is certainly an added bonus. The help and samples that are available on the web site are a great supplement to learning. If you want to generate dynamic PDF documents in PHP, then this is the answer. I give this product 4.5 out of 5 stars. About the Author ?> Peter MacIntyre lives and works in Prince Edward Island, Canada. He has been and editor with php|architect since September 2003. Peter’s web site is at http://paladin-bs.com July 2005 ● PHP Architect ● Listing 1 1 86 www.phparch.com 60 CLASSROOMS VIRTUAL Online Training Courses from php|architect Zend PHP Essentials Our introductory PHP course, Zend PHP Essentials, was developed for us and Zend Technologies by PHP expert Chris Shiflett, co-founder of the PHP Security Consortium. This 19-hour course provides a thorough introduction to PHP development, with particular care to "doing things right" by covering security, performance and the best development techniques. Rather than cramming as much theory as possible, PHP Essentials provides a thoroughly practical approach to learning PHP—thus ensuring that each student will be able to write good PHP code in a real-world setting by the end of the course. Zend PHP Certification Training Zend Professional PHP Development If you want to become a Zend Certified Engineer, this course is the best preparation tool that you'll ever find! Designed by some of the same Subject Matter Experts who also helped write the exam itself, this course covers every single topic that is part of the exam. The Zend PHP Certification Training (course) provides a complete overview of the exam, and doubles as an excellent refresher course in PHP for any developer. This is our advanced course for the professional PHP developer. This course picks up from where PHP Essentials ends and provides a thorough, in-depth analysis of advanced features found in both PHP 4 and PHP 5, including object-oriented programming and design patterns, XML development, regular expressions, encryption, e-mail manipulation, performance management and advanced databases. Course Description Zend PHP Essentials • Covers PHP 4 and PHP 5 • July 12 • Provides a thorough practical • August 8 introduction to PHP • September 5 • Covers security and performance 7 Sessions 19 Hours 3 Weeks YES - $769.99 US ($999.99 CAD) Zend PHP Certification Training • Covers every topic in the exam • Provides an excellent refresher course for PHP at all levels • July 6, • August 1 • September 1 7 Sessions 19 Hours 3 Weeks YES Zend PHP Essentials $644.99 US ($838.99 CAD) • July 7, • August 11 • September 6 7 Sessions 19 Hours 3 Weeks YES Zend PHP Essentials $769.99 US ($999.99 CAD) • Covers advanced PHP 4 and PHP 5 topics Zend Professional • Perfect for going "beyond the PHP Development basics" and learning the true Start Dates Duration Tutoring Prerequisites Cost power of PHP • All our courses are delivered entirely online using an innovative system that combines the convenience of the Internet with the unique experience of being in a real classroom. • All sessions take place in real time, and the students can interact directly with the instructor as if they were in a real classroom either via voice or text messaging. • In most cases, our system requires no software installation and works with the majority of operating systems and browsers, including Windows, Mac OS and Linux, as well as Internet Explorer, Firefox and Safari. • All courses include a generous amount of homework and in-class exercises to ensure that the students assimilate each topics thoroughly. • Tutoring is available (via e-mail) throughout the duration of the entire course. • Each class includes a complete set of recordings that the students can peruse at their leisure. For more information, visit our website at http://www.phparch.com/phptraining or call us toll-free at (877) 630-6202 (416-630-6202 outside Canada and the U.S.) S E C U R I T Y C O R N E R SE CUR ITY COR N ER Security Corner Theory by Chris Shiflett Welcome to another edition of Security Corner. This month’s topic is “theory,” an important characteristic of the web application security discipline. Professional PHP developers tend to be pragmatic, and this pragmatism helps them solve problems quickly and directly. However, without a strong theoretical foundation, developers often produce solutions that are slow, unreliable, hard to maintain, or insecure. As a language, PHP is often criticized for the shortcomings of its developers. Of course, those of us within the community know that these criticisms have little merit. Rather than bemoan the ignorance of the naysayers, however, I want to discuss theory as it relates to developing secure PHP applications. I was in Vancouver recently to give a talk at PHP West called the PHP Security Audit HOWTO. The positive response has been overwhelming, which is unusual—I typically receive very little feedback from any of my talks (or articles, for that matter). While trying to determine the reason for the increased positive response, I have decided that it is mostly a result of the talk being more pragmatic than my others. Rather than giving sound theoretical advice, the talk mostly consists of me explaining specific strings that you can search for in your PHP July 2005 ● PHP Architect ● code in order to focus on common points of failure and quickly locate potential security weaknesses. Many slides simply list a collection of related strings to search for, and I discuss the common mistakes that I have observed the most. As a result of this observation, I have decided to write a brief explanation about why theory is important to security. I am not trying to convince you to be less pragmatic. On the contrary, I want you to embrace your pragmatism while still adhering to some theoretical practices that have been known to have practical effects. Remember, being stubborn has nothing to do www.phparch.com with being pragmatic. Defense in Depth One of my favorite security principles is Defense in Depth. This principle asserts that redundant safeguards have value. Stated differently, you can never be too safe. The idea is pretty simple, but let me give you a practical example. If I am writing an application that lets users register, I might have a form that accepts a username, password, and email address. If I only allow alphanumeric usernames, I can enforce this in my input filtering: Once assured that I have a valid username, I might store it in the user’s session: Knowing that session data is stored on the server, I know that it’s pretty trustworthy, at least compared to data coming from the client or some other external source. Therefore, I might choose to greet the user on each page: If you are a regular reader of Security Corner, you should know that output must always be escaped: Astute readers might already be questioning me, noting that htmlentities() is going to have no effect on an alphanumeric string. The username has no special characters that need to be escaped, so this extra work is useless. The truly pragmatic developers might even be disgusted by such an approach. The time it took to write those extra few lines of code could have been applied to solving the next problem. These arguments and criticisms all have merit, and that is often the dilemma I am faced with when discussing the theoretical aspects of security. History has demonstrated that theoretical weaknesses often yield real vulnerabilities in time, and this is the primary reason why adhering to theoretically sound practices can save you from attacks that are either unknown or which do not yet exist. In this particular example, there are situations that can yield a cross-site scripting vulnerability if the escaping is not performed. For example, the session data store might be compromised (a trivial task in many cases), so that $_SESSION[ ‘username’] is no longer the filtered username but rather some tainted data. If the seemingly useless escaping step is taken, it can potentially save the day. This is the idea of Defense in Depth, and this demon- July 2005 ● PHP Architect ● www.phparch.com strates the general idea of theoretical security. Complex systems can behave in unknown ways, and there is a great deal of value in checking this behavior and enforcing certain restrictions, even when your effort seems redundant and wasteful. Never Correct Invalid Data There is another principle of security that points out the dangers of modifying invalid data in an attempt to make it valid. (It is not as well known as Defense in Depth, most likely because there is no standard name for it.) This goes against the natural instinct of many PHP developers, and it requires a strong commitment to theory in order to fully appreciate. The idea is simple—input filtering is an inspection process, not a modification process. I see developers using many techniques that conflict with this principle. For example, you might want to be sure that $_GET[‘id ’] is an integer: Is this safe? The answer isn’t so straightforward. In this particular example, there is no vulnerability introduced. However, it does hide malicious attempts, so you aren’t kept aware of the fact that your application is being attacked. You could correct this by first inspecting the data and logging all data that fails your inspection, but then you might as well use that as your input filtering. (Doing both is a good Defense in Depth strategy, but only because the intval() function should have no affect.) A better example of trying to correct invalid data is when developers manually attempt to eliminate file traversal vulnerabilities: The idea here is simple. For every reference to the parent directory, it is replaced with a reference to the current directory. However, imagine that $_POST[‘filename ’] contains the following: .../.../.../.../.../etc/passwd This would be easy to identify as invalid input. However, because an attempt is made to correct the invalid data, $clean[ ‘filename’ ] becomes the following: ../../../../../etc/passwd This particular vulnerability could have been resolved by performing the same string replacement until a reference to the parent directory is no longer found (using 64 SE CUR ITY COR N ER a while loop, for example), but the point is that it’s dangerous to try to correct invalid data. It’s always safer to inspect the data and ensure that it abides by your rules. If it does not, then it’s better to force the user (or other external system) to supply you with valid data rather than try to correct the invalid data. Doing otherwise heightens your risk, and a mistake can be disastrous. Frequent Debates There are other debates that I observe quite frequently within the community, and it’s almost always a result of someone being stubborn. For example, a common debate is whether htmlentities() is really any safer than just replacing angled brackets with their HTML entities: This particular example has another problem, because it fails to filter input ($_POST[ ‘username’ ]), but the escaping is also sub-par. This is difficult to prove, because examples that exploit this approach are complex. When I want to explain to someone why they should not echo the raw $_POST[‘username’], I can supply a simple example that they can understand: “><script>alert(‘XSS’) Chris Shiflett is an internationally recognized expert in the field of PHP security and the founder and President of Brain Bulb, a PHP consultancy that offers a variety of services to clients around the world. Chris is a leader in the PHP industry, and his involvement includes being the founder of the PHP Security Consortium, the founder of PHPCommunity.org, a member of the Zend PHP Advisory Board, and an author of the Zend PHP Certification. A prolific writer, Chris has regular columns in both PHP Magazine and php|architect. He is also the author of the HTTP Developer's Handbook (Sams) as well as the highly anticipated PHP Security (O'Reilly). You can contact him at [email protected] or visit his web site at http://shiflett.org/. 65 You’ll never know what we’ll come up with next For existing subscribers NEW Upgrade to the Print edition and save! LOWER PRICE! Login to your account for more details. php|architect Visit: http://www.phparch.com/print for more information or to subscribe online. The Magazine For PHP Professionals php|architect Subscription Dept. P.O. Box 54526 1771 Avenue Road Toronto, ON M5M 4N5 Canada Name: ____________________________________________ Address: _________________________________________ City: _____________________________________________ State/Province: ____________________________________ Your charge will appear under the name "Marco Tabini & Associates, Inc." Please allow up to 4 to 6 weeks for your subscription to be established and your first issue to be mailed to you. WR PRICE! E N WE *US Pricing is approximate and for illustration purposes only. Choose a Subscription type: Canada/USA International Air Combo edition add-on (print + PDF edition) LO $ 77.99 $105.19 $ 14.00 CAD CAD CAD ($59.99 ($80.89 ($10.00 US*) US*) US) ZIP/Postal Code: ___________________________________ Country: ___________________________________________ Payment type: VISA Mastercard American Express Credit Card Number:________________________________ Expiration Date: _____________________________________ Signature: Date: *By signing this order form, you agree that we will charge your account in Canadian dollars for the “CAD” amounts indicated above. Because of fluctuations in the exchange rates, the actual amount charged in your currency on your credit card statement may vary slightly. E-mail address: ______________________________________ Phone Number: ____________________________________ To subscribe via snail mail - please detach/copy this form, fill it out and mail to the address above or fax to +1-416-630-5057 E XIT( 0) ; Forget Viagra Get a Regex e x i t ( 0 ) ; by Marco Tabini I ’ve always thought of regular expressions as the third rail of computer programming—one often cannot make do without the power they provide, but, once you’ve written one, touch it and die. I have seen regular expressions so perversely complicated that it’s no wonder many programmers prefer to do away with them altogether and take refuge in replacing them with their own code—which is usually even more complicated than the regular expression it sought to replace in the first place, but at least more readable. There hasn’t been a good reason why this should be the case for a long time. Regular expressions can be written using an “extended” syntax that makes it possible to insert plenty of white space and comments, and yet most people prefer to use the “normal” syntax and write expressions that look like the spurious dying signals sent to the computer by a keyboard on fire. There doesn’t seem to be any explanation for this phenomenon other than the fact that programmers must get a rush from writing regular expressions with the knowledge that no one else in the known universe (including themselves fifteen minutes later) will ever be able to understand them without going completely insane. Better yet, I July 2005 ● PHP Architect ● have the feeling that some developers may be abusing regexes as a cheap substitute for Viagra. If you do and it works, please drop me a line and let me know—we may be able to open a new online store. In case you don’t, let me give you a simple example of what I mean. A few days ago, I was looking for a regex that would allow me to highlight keywords within an HTML file. The task is not as simple as it sounds, because the keyword may be right in the middle of a URL, in which case you definitely don’t want to insert further HTML code to highlight it in there. As those who follow my articles know, I am lazy. I am also not a particularly good regex developer (in fact, I know some who would maliciously claim that I am not a particular developer at all, but that’s another story); therefore, before trying to come up with a solution myself, I decided to look around the PHP manual, where I found exactly what I was looking for in one of the notes to preg_replace(). Here’s a small excerpt from that expression (the whole thing would require a much longer article than I’m allowed these days): /( \>( ((? >[^ > ( # match a literal > ( (?> # [^> or recurse subpattern zero or more times followed by a literal July 2005) Read more Computer (July 2005) Read more Computing (28 July 2005) Read more The Economist (16 July, 2005) Read more The Economist (30 July, 2005) Read more Sound on Sound (July 2005) Read more The Economist (02 July, 2005) Read more The Economist (09 July, 2005) Read more The Economist (23 July, 2005) Read more User Modeling 2005: 10th International Conference, UM 2005, Edinburgh, Scotland, UK, July 24-29, 2005, Proceedings Read more Developments in Language Theory: 9th International Conference, DLT 2005, Palermo, Italy, July 4-8, 2005, Proceedings Read more Web Engineering: 5th International Conference, ICWE 2005, Sydney, Australia, July 27-29, 2005, Proceedings Read more ECOOP 2005 - Object-Oriented Programming: 19th European Conference, Glasgow, UK, July 25-29, 2005. Proceedings Read more July 7th Read more 2005 Read more July 1989) Read more July Thunder Read more July- Vintage Read more July Thunder Read more Transversity 2005: 2005 Read more Engineering Self-Organising Systems: Third International Workshop, ESOA 2005, Utrecht, The Netherlands, July 25, 2005, Revised Selected Papers Read more Environments for Multi-Agent Systems II: Second International Workshop, E4MAS 2005, Utrecht, The Netherlands, July 25, 2005, Selected Revised and Read more Information Processing in Medical Imaging: 19th International Conference, IPMI 2005, Glenwood Springs, CO, USA, July 10-15, 2005, Proceedings Read more Advanced Data Mining and Applications: First International Conference, ADMA 2005, Wuhan, China, July 22-24, 2005, Proceedings Read more Argumentation in Multi-Agent Systems: Second International Workshop, ArgMAS 2005, Utrecht, Netherlands, July 26, 2005, Revised Selected and Invited Papers Read more FM 2005: Formal Methods: International Symposium of Formal Methods Europe, Newcastle, UK, July 18-22, 2005, Proceedings Read more Cold in July Read more Quality July 2011 Read more Coatings World July 2011 Read more Recommend Documents July 2005) ed sh itin ari g ng IT Schools Ranked o eBanking at work ot ph TOP 11 blogging 01 02 03 04 05 06 07 08 09 10 11 12 ... Computer (July 2005) Innovative Technology for Computer Professionals July 2005 Judging Science Fairs, p. 12 Timeliness in Networked Embedd... Computing (28 July 2005) www.computing.co.uk Happy Ever after The war on ID theft Top jobs Everton enters the new season with a revamped sys... The Economist (16 July, 2005) The Economist - North America Edition Jul 16th 2005 TeAM YYePG Digitally signed by TeAM YYePG DN: cn=TeAM YYePG, c=US,... The Economist (30 July, 2005) The Economist - North America Edition Jul 30th 2005 TeAM YYePG Digitally signed by TeAM YYePG DN: cn=TeAM YYePG, c=US,... Sound on Sound (July 2005) In This Issue July 2005 In This Issue Click article title to open Reviews People Arturia Minimoog V Crosstalk: Your ... The Economist (02 July, 2005) signed-by TheDigitally Economist Asia Pacific Edition TeAM YYePG Jul 2nd 2005 DN: cn=TeAM YYePG, c=US, o=TeAM YYePG, ou... The Economist (09 July, 2005) The Economist - North America Edition Jul 9th 2005 TeAM YYePG Digitally signed by TeAM YYePG DN: cn=TeAM YYePG, c=US, ... The Economist (23 July, 2005) The Economist - North America Edition Jul 23rd 2005 The world this week Politics this week Business this week Letter... User Modeling 2005: 10th International Conference, UM 2005, Edinburgh, Scotland, UK, July 24-29, 2005, Proceedings Lecture Notes in Artificial Intelligence Edited by J. G. Carbonell and J. Siekmann Subseries of Lecture Notes in Comput... × Report "php|architect (July 2005)" Your name Email Reason -Select Reason- Pornographic Defamatory Illegal/Unlawful Spam Other Terms Of Service Violation File a copyright complaint Description Close Send × Sign In Email Password Remember me Forgot password? Sign In Our partners will collect data and use cookies for ad personalization and measurement. Learn how we and our ad partner Google, collect and use data. Agree & close