9 experience summaries for PHP development_PHP tutorial
9 experience summaries for PHP development
1. Primary awareness: security
Most of the time, the web programs we develop need to deal with databases, so it can almost be said that SQL injection is an issue that cannot be avoided and needs to be discussed. And in recent years, attacks like XSS and CSRF have become popular, giving "hackers" seemingly a new set of weapons, while we are always in a passive state. But we must remember the following two principles:
1. Never trust what the user inputs. (It’s an old saying, but it’s true)
2. Escape the data you need to output.
To put it simply: filter in put, escape output
If you are a newbie, do not use query statements similar to the following:
SELECT FROM users WHERE username = $_POST['username'] AND password = $_POST['password'];
Another thing is, use PDO or Mysqli instead of using old-fashioned mysql operations.
As for the CSRF solution, the current solution is to set a token value for each form submission, and then verify it when the form is submitted.
2. Clearly know the differences between comparison operators
PHP comparison operator, this can actually be said to be a small attention point, but it is really important at certain times. For example, many times we have to think clearly about whether to use == or ===. If you have used the strpos() function, the following code may give you an intuitive feeling:
The running result of the above code actually outputs that Chris is not an author, but the reality is that Chris & Sean are really Authors. Why is this so? In fact, it is like this: Chris happens to appear in Chris & Sean The beginning of the first position is the position of 0, so substr() returns. Due to the bool judgment in the conditional judgment statement, 0 is treated as false, so the program outputs that Chris is not an author, but in this case we How to deal with it? We can actually do this:
The difference between !== and != here is reflected.
3. If you can reduce the use of else, use less else
This seems to be an idea that I have had since I first came into contact with programming, because every time I see if(){}else{}, I have a feeling that this paragraph can actually be written better, because once you reduce the use With the else keyword, your code will be reduced by two lines! Yes, two lines is also our pursuit, and from my experience, code with less else seems to be more readable, to me.
if( this condition ) { $x = 5; } else{ $x = 10;}
If the default value of $x is 10, it would be better to write it like this:
$x = 10;
if( this condition )
{ $x = 5; }
4. Remove unnecessary brackets
The purpose here is actually the same as the else keyword part. We are for shorter code and better readability. You should consider optimizing the code in the following situations:
if ($gollum == 'halfling') { $height --; }
Actually it can be like this:
if ($gollum == 'halfling') $height --;
You can even do this:
Do you have a short and clear feeling?
5. Use str_replace() frequently
In many cases we need to replace some strings. There are several functions in PHP that can achieve this purpose:
str_replace()
ereg_replace()
preg_replace()
If you really need to use regular matching, then use preg_replace(), and if replacement is possible, please use str_replace(), because according to incomplete statistics, the efficiency of str_replace() is among the three It is the highest among them.
6. Use the ternary operator
Many people may have this feeling. After using the ternary operator, we can remove a bunch of if else statements, and the code is short and cool.
$host = strlen($host) > 0 ? $host : htmlentities($host);
7. Use cache
At present, the most popular caching technologies in PHP may be Redis and Memcached. In the official PHP documentation, there are also tutorials on the use of Memcached. As for Redis, I am currently researching it and will give some tutorials in the future, if everything goes well.
8. Use frameworks
There are many benefits of frameworks. Apart from the possible loss in performance, it seems that there is no reason not to use frameworks. Frameworks can speed up your development and make you feel comfortable while writing code. It's comfortable, and you will get good solutions to many safety issues. My first recommendation here is Laravel, but frameworks like Yii2 Slim and Symfony are very good. Except for Symfony, which I have never tried, I have experience in using the remaining three. In the end, I basically used Laravel. However, the Laravel I recommend may not be suitable for you, it still depends on personal preference.
9. Use isset() instead of strlen()
If you need to make a conditional judgment based on the length of a string in the project code, it is highly recommended that you use isset() directly at this time, because under the same conditions, isset() is five times faster than strlen() About times, so:
The above two conditional judgments can achieve the same purpose, but I recommend using the first one.
PHP Email: Step-by-Step Sending GuideMay 09, 2025 am 12:14 AMPHPisusedforsendingemailsduetoitsintegrationwithservermailservicesandexternalSMTPproviders,automatingnotificationsandmarketingcampaigns.1)SetupyourPHPenvironmentwithawebserverandPHP,ensuringthemailfunctionisenabled.2)UseabasicscriptwithPHP'smailfunct
How to Send Email via PHP: Examples & CodeMay 09, 2025 am 12:13 AMThe best way to send emails is to use the PHPMailer library. 1) Using the mail() function is simple but unreliable, which may cause emails to enter spam or cannot be delivered. 2) PHPMailer provides better control and reliability, and supports HTML mail, attachments and SMTP authentication. 3) Make sure SMTP settings are configured correctly and encryption (such as STARTTLS or SSL/TLS) is used to enhance security. 4) For large amounts of emails, consider using a mail queue system to optimize performance.
Advanced PHP Email: Custom Headers & FeaturesMay 09, 2025 am 12:13 AMCustomheadersandadvancedfeaturesinPHPemailenhancefunctionalityandreliability.1)Customheadersaddmetadatafortrackingandcategorization.2)HTMLemailsallowformattingandinteractivity.3)AttachmentscanbesentusinglibrarieslikePHPMailer.4)SMTPauthenticationimpr
Guide to Sending Emails with PHP & SMTPMay 09, 2025 am 12:06 AMSending mail using PHP and SMTP can be achieved through the PHPMailer library. 1) Install and configure PHPMailer, 2) Set SMTP server details, 3) Define the email content, 4) Send emails and handle errors. Use this method to ensure the reliability and security of emails.
What is the best way to send an email using PHP?May 08, 2025 am 12:21 AMThebestapproachforsendingemailsinPHPisusingthePHPMailerlibraryduetoitsreliability,featurerichness,andeaseofuse.PHPMailersupportsSMTP,providesdetailederrorhandling,allowssendingHTMLandplaintextemails,supportsattachments,andenhancessecurity.Foroptimalu
Best Practices for Dependency Injection in PHPMay 08, 2025 am 12:21 AMThe reason for using Dependency Injection (DI) is that it promotes loose coupling, testability, and maintainability of the code. 1) Use constructor to inject dependencies, 2) Avoid using service locators, 3) Use dependency injection containers to manage dependencies, 4) Improve testability through injecting dependencies, 5) Avoid over-injection dependencies, 6) Consider the impact of DI on performance.
PHP performance tuning tips and tricksMay 08, 2025 am 12:20 AMPHPperformancetuningiscrucialbecauseitenhancesspeedandefficiency,whicharevitalforwebapplications.1)CachingwithAPCureducesdatabaseloadandimprovesresponsetimes.2)Optimizingdatabasequeriesbyselectingnecessarycolumnsandusingindexingspeedsupdataretrieval.
PHP Email Security: Best Practices for Sending EmailsMay 08, 2025 am 12:16 AMThebestpracticesforsendingemailssecurelyinPHPinclude:1)UsingsecureconfigurationswithSMTPandSTARTTLSencryption,2)Validatingandsanitizinginputstopreventinjectionattacks,3)EncryptingsensitivedatawithinemailsusingOpenSSL,4)Properlyhandlingemailheaderstoa
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Safe Exam Browser
Safe Exam Browser is a secure browser environment for taking online exams securely. This software turns any computer into a secure workstation. It controls access to any utility and prevents students from using unauthorized resources.
ZendStudio 13.5.1 Mac
Powerful PHP integrated development environment
SecLists
SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.
PhpStorm Mac version
The latest (2018.2.1) professional PHP integrated development tool
MinGW - Minimalist GNU for Windows
This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.
