book

Web Database Applications with PHP, and MySQL

by Hugh E. Williams, David Lane

March 2002

Intermediate to advanced

592 pages

15h 52m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Web Database Applications with PHP & MySQL
Preface
What This Book Is About
What You Need to Know
How This Book Is Organized
How to Use This Book
Conventions Used in This Book
How to Contact Us
Web Site and Code Examples
Acknowledgments
1. Database Applications and the Web
Three-Tier ArchitecturesHypertext Transfer ProtocolHTTP exampleStateThin Clients

The Client Tier
The Middle Tier
Web ServersThe Apache HTTP server, Version 1.3The Apache HTTP server, Version 2.0Web Scripting with PHP
The Database Tier
Database Management SystemsWhy Use a DBMS?Examples of when to use a DBMSExamples of when not to use a DBMSThe MySQL DBMSSQLHistorySQL components
Our Case Study
What Is Hugh and Dave’s Online Wines?System requirementsComponents of the WinestoreDatabase-driven queryingUser-driven querying and browsingData entry and saving records to a databaseValidation in the client and middle tiersUser tracking and session managementAuthenticationThe complete application
2. PHP
Introducing PHPPHP BasicsCreating PHP scriptsCommentsOutputting data with echo and printString literalsVariablesTypesConstantsExpressions, Operators, and Variable AssignmentExpressionsOperator precedenceType ConversionAutomatic type conversionExamining Variable Type and ContentDebugging with print_r( ) and var_dump( )Testing, setting, and unsetting variables
Conditions and Branches
if...else Statementswitch StatementConditional Expressions
Loops
whiledo...whileforforeachChanging Loop Behavior
A Working Example
Comments on Example 2.3
Arrays
Creating ArraysAssociative arraysHeterogeneous arraysMultidimensional arraysUsing foreach Loops with ArraysUsing Array PointersBasic Array FunctionsCounting elements in arraysFinding the maximum and minimum values in an arrayFinding values in arrays with in_array( ) and array_search( )Reordering elements in arrays with array_reverse( )Sorting ArraysSorting with sort( ) and rsort( )Sorting associative arraysSorting on keysSorting with user-defined element comparison
Strings
String LiteralsVariable substitutionLength of a stringPrinting and Formatting StringsCreating formatted output with sprintf( ) and printf( )Padding stringsChanging caseTrimming whitespaceRendering newline characters with <br>Comparing StringsFinding and Extracting SubstringsExtracting a substring from a stringFinding the position of a substringExtracting a found portion of a stringExtracting multiple values from a stringReplacing Characters and SubstringsReplacing substringsTranslating characters and substrings
Regular Expressions
Regular Expression SyntaxCharacters and wildcardsCharacter listsAnchorsOptional and repeating charactersGroupsAlternative patternsEscaping special charactersMetacharactersRegular Expression FunctionsFinding and extracting valuesReplacing substringsSplitting a string into an array
Date and Time Functions
Generating a TimestampCurrent timeCreating timestamps with mktime( ) and gmmktime( )String to timestampSubsecond timesFormatting a DateValidating a Date
Integer and Float Functions
Absolute ValueCeiling and FloorRoundingNumber SystemsBasic Trigonometry FunctionsPowers and LogsRandom Number Generation
User-Defined Functions
Argument Types and Return TypesVariable ScopeGlobal variablesHow Variables Are Passed to FunctionsPassing arguments by referenceAssigning by referenceDefault argument valuesReusing Functions with Include and Require Files
Objects
Classes and ObjectsInheritance
Common Mistakes
A Page That Produces Partial or No OutputVariable ProblemsVariable namingMissing outputComplaints About HeadersOther Common Problems
3. MySQL and SQL
Database BasicsIntroducing Relational DatabasesTerminology
Quick Start Guide
Loading the Winestore DatabaseThe Winestore DatabaseThe winestore entity-relationship modelCreating the winestore with SQL
MySQL Command Interpreter
Managing Databases, Tables, and Indexes
Creating DatabasesCreating TablesAltering Tables and IndexesDisplaying Database Structure with SHOW
Inserting, Updating, and Deleting Data
Inserting DataBulk loading into a databaseTransferring data between databases and DBMSsDeleting DataUpdating Data
Querying with SQL SELECT
Basic QueryingWHERE ClausesSorting and Grouping OutputORDER BYGROUP BYHAVINGDISTINCTLimiting Result Sets in MySQL
Join Queries
Beware of the Cartesian ProductElementary Natural JoinsExamplesTable aliases in SQL queriesUsing DISTINCT in joinsJoins with More than Two Tables
Modifying the Database
Adding a New Wine to the WinestoreBuying a Bottle of Wine from the WinestoreINSERTing with a SELECT Statement
Functions
Arithmetic and comparison operatorsString-comparison operators and functionsMathematical functionsDate and time functionsMiscellaneous operators and functions
More on SQL and MySQL
Keys, Primary Keys, and IndexesTuning the Database SystemAdding and Deleting UsersPermissionsLimitations of MySQL
4. Querying Web Databases
Connecting to a MySQL DatabaseOpening and Using a Database ConnectionEssential Functions for Accessing MySQL with PHPMore MySQL Functions in PHPFrequently used functionsOther functionsFunctions to avoidError Handling of MySQL Database Functions
Formatting Results
Using Include Files in Practice
Case Study: The Front-Page Panel
Step 1: Producing Visually Appealing TablesLimitations of Step 1Step 2: Adding Varieties to the PanelAdding a second or subsequent queryAdding calculations to the result presentationStep 3: Finishing the PanelFixing the queries
Interacting with Other DBMSs Using PHP
Microsoft SQL ServerOpen DataBase Connectivity (ODBC)Oracle 7 and 8 Through the OCI8 InterfacePostgreSQL
5. User-Driven Querying
User InputPassing Data with URLsPassing Data with the HTML <form> EnvironmentPassing Data with Embedded LinksSecurity and User DataHow PHP Initializes Variables
Querying with User Input
Combined ScriptsAdding Links to ResultsOne-Component Querying
Case Study: Previous and Next Browsing
Step 1: Using the Generic browse FunctionStep 2: Implementing the Generic browse FunctionStep 3: Adding Page NumbersWhat’s Missing from the Previous and Next Browser
Case Study: Producing a select List
Implementing the selectDistinct Function
6. Writing to Web Databases
Database Inserts, Updates, and DeletesReloading Data and Relocation TechniquesSolving the reload problem in practiceUploading and Inserting Files into DatabasesInserting, Updating, and Deleting DataPHP DML functions for database modificationsInserting dataUpdating dataCase study: Inserts and updates in practiceDeleting data
Issues in Writing Data to Databases
Transactions and ConcurrencyLocking for Concurrency in MySQLWhen and how to lock tablesThe LOCK TABLES and UNLOCK TABLES statements in MySQLLocking for performanceLocking Tables in Web Database ApplicationsLocking methods that don’t work in web database applicationsLocking with an auxiliary tableThe table-level locking paradigm in MySQLOther locking paradigmsWhat isn’t covered here
7. Validation on the Server and Client
Validation and Error Reporting for Web Database ApplicationsModels That Don’t WorkModels That Do Work
Server-Side Validation
Case Study: Customer Validation in the WinestoreValidating datesValidating numeric fieldsValidating email addressesProcessing <form> Data on the Server SideProcessing <form> controls with the MULTIPLE attributeOther <form> issues
Client-Side Validation with JavaScript
Validating <form> Data with JavaScriptCase study: A generic JavaScript validation functionCase study: A password <form> validation functionJavaScript Tips and TricksRollover presentation with mouseOver eventsPrefilling <form> data with JavaScript calculationsInteracting with the web browserWhich browser is the user using?Comments
8. Sessions
Building Applications That Keep StateManaging State in the Client TierCookies
Session Management Over the Web
PHP Session Management
OverviewStarting a SessionUsing Session VariablesEnding a SessionFunctions for Accessing Sessions in PHPSession Management Without CookiesEncoding the session ID as a GET variableTurning off cookiesGarbage CollectionConfiguration of PHP Session Management
Case Study: Adding Sessions to the Winestore
Improving the Client Entry <form>The Validation ScriptImproving error messagesSaving last-entered values as a session variableThe final validation scriptThe Client Entry <form> ScriptDisplaying previously entered valuesDisplaying error messagesThe final client entry script
When to Use Sessions
Reasons to Use SessionsPerformanceSequence of interactionIntermediate resultsPersonalizationReasons to Avoid SessionsNeed for centralized session storePerformanceTimeoutsBookmark restrictionsSecurity
9. Authentication and Security
HTTP AuthenticationHow HTTP Authentication WorksUsing Apache to Authenticate
HTTP Authentication with PHP
Access to User Credentials from PHPManaging HTTP Authentication with PHPAuthorizing User AccessLimits placed on IP addresses
Authentication Using a Database
MySQL encryptionEncrypting other data in a database
Web Database Applications and Authentication
Building Stateless ApplicationsBuilding Session-Based ApplicationsForcing users to a login pageAuthenticating without HTTPSession hijackingRecording IP addresses to detect session hijack attemptsCase Study: Customer AuthenticationCase study overviewLogin pageAuthentication scriptLogout scriptAuthorizing other requests
Protecting Data on the Web
The Secure Sockets Layer ProtocolSSL architectureCipher suitesSSL sessionsCertificates and Certification Authorities
10. Winestore Customer Management
Overview of the Winestore ApplicationWinestore Scripts
Customer Management
Customer ValidationThe Customer <form>The Customer Receipt Page
Authenticating Users
The Winestore Include Files
Custom Error Handlers
11. The Winestore Shopping Cart
The Winestore Home Page
The Shopping Cart Architecture
Viewing the Shopping CartAdding Items to the Shopping CartEmptying the Shopping CartUpdating the Shopping Cart Quantities
Managing Redirection
12. Ordering and Shipping at the Winestore
Finalizing Orders
HTML and Email Receipts
13. Related Topics
Automated Housekeepingcron Jobs
Templates
Templates in the Shipping ModuleThe application logicThe template
Searching and Browsing
A. Installation Guide
Installing MySQL, Apache, and PHPInstalling MySQLConfiguring MySQLInstalling ApacheInstalling PHP
Installing the Winestore Examples
Installing Apache to Use SSL
Installing OpenSSLInstalling Apache and ApacheSSLCreating a Key and Certificate
Installation Resources
B. Internet and Web Protocols
The InternetAn AnalogyTCP/IPIP addressesPorts
Hypertext Transfer Protocol
Request and Response ModelSimulating an HTTP requestUniform Resource LocatorsProtocolHost and service identificationNonstandard TCP portsResource identificationParameters and queriesFragment identifiersAbsolute and relative URLsURL encodingHTTP RequestsRequest methodsGET versus POSTHTTP ResponsesStatus codesCachingHTTP/1.0 cache controlHTTP/1.1 cache controlHTTP and TCP/IPSimultaneous request modelPersistent connectionsMIME
C. Modeling and Designing Relational Databases
The Relational ModelCase Study: Relations in the Winestore
Entity-Relationship Modeling
Case Study: Modeling the Online WinestoreSystem requirements analysisIdentifying entities in ER modelingIdentifying relationships in ER modelingRelationships in the winestore ER modelIdentifying key attributes in ER modelingOther ER modeling toolsCompleting the ER modelConverting an Entity-Relationship Model to SQLStep 1: Convert regular entities to tablesStep 2: Convert weak entities to tablesStep 3: One-to-one relationshipsStep 4: Regular one-to-many relationshipsStep 5: Many-to-many relationships
D. Managing Sessions in the Database Tier
Using a Database to Keep State
PHP Session Management
PHP Session Management Storage MethodsBuilding User-Defined Session Handlers
MySQL Session Store
Session Table StructureHandler ImplementationsSupport functionssessionOpensessionReadsessionWritesessionClosesessionDestroyGarbage collectionRegistering session handlersUsing the User-Defined Session Handler Code
E. Resources
Client Tier Resources
Middle Tier Resources
Web Server and Web Technology ResourcesNetworking and Web ResourcesMore About PHPBooksWeb resourcesLibrariesThird-party productsOpen source PHP applications
Database Tier Resources
Security and Cryptography Resources
Index
Colophon

Content preview from Web Database Applications with PHP, and MySQL

The Middle Tier

In most three-tier web database systems, the majority of the application logic is in the middle tier. The client tier presents data to and collects data from the user; the database tier stores and retrieves the data. The middle tier serves most of the remaining roles that bring together the other tiers: it drives the structure and content of the data displayed to the user, and it processes input from the user as it is formed into queries on the database to read or write data. It also adds state management to the HTTP protocol. The middle-tier application logic integrates the Web with the database management system.

In the application framework used in this book, the components of the middle tier are a web server, a web scripting language, and the scripting language engine. A web server processes HTTP requests and formulates responses. In the case of web database applications, these requests are often for programs that interact with an underlying database management system. The web server we use throughout this book is the Apache Software Foundation’s Apache HTTP server, the open source web server used by more than 60% of Internet connected computers.^[2]

We use the PHP scripting language as our middle-tier scripting language. PHP is an open source project of the Apache Software Foundation and, not surprisingly, it is the most popular Apache HTTP server add-on module, with around 40% of the Apache HTTP servers having PHP capabilities.^[3] PHP is particularly suited ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Web Database Applications with PHP and MySQL, 2nd Edition

Publisher Resources

ISBN: 0596000413Catalog Page Errata

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Web Database Applications with PHP, and MySQL

by Hugh E. Williams, David Lane

The Middle Tier

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.