TODO: Find out why magic _get()
interferes with echoing a valid property (see class Magic
example below)
For Thu 11 May 2023
- Quiz questions for Topic #8 (Databases)
- Quiz questions for Topic #9 (Security)
- Quiz questions for Topic #10 (Web)
- Quiz questions for Topic #11 (Errors)
- [If time permits] Final mock exam
For Tue 09 May 2023
- Quiz questions for Topic #7 (OOP)
- Mock Exam #2
For Thu 04 May 2023
- Quiz questions for Topic #4 (Arrays)
- Quiz questions for Topic #5 (I/O)
- Quiz questions for Topic #6 (Functions)
For Tue 02 May 2023
- Quiz questions for Topic #2 (Data Formats and Types)
- Quiz questions for Topic #3 (Strings and Patterns)
- Mock Exam #1
For Thu 27 Apr 2023
- Quiz questions for Topic #1 (Basics)
- Download the ZIP file via Zoom
- Unzip into a new folder
/path/to/zip
- Follow the setup instructions in
/path/to/zip/README.md
-
Topic Areas: https://www.zend.com/training/php-certification-exam
-
PHP Source Code: https://github.com/php/php-src
-
Magic constants: https://www.php.net/manual/en/language.constants.magic.php
-
Example of "variable variable"
<?php
$d = "abc";
$abc = "xyz";
$xyz = 'WHATEVER';
echo $$$d;
float
,double
andreal
are all aliases for each other:
<?php
try {
$a = (float) 1.11;
$b = (double) 1.11;
$c = (real) 1.11;
if ($a === $b && $b === $c) {
echo 'MATCH';
} else {
echo 'NO MATCH';
}
} catch (Throwable $t) {
echo 'NONE OF THE ABOVE';
}
// output: "MATCH"
- Cannot use reserved keywords in PHP 7.1 in a namespace
<?php
namespace This\Is\My\List {
class Test
{
public function whatever()
{
return 'whatever XYZ';
}
}
}
namespace {
use This\Is\My\List\Test;
$test = new Test();
echo $test->whatever();
}
// actual output PHP 7.1:
/*
root@phpcert [ /srv/code ]# php test.php
PHP Parse error: syntax error, unexpected 'List' (T_LIST), expecting identifier (T_STRING) in /srv/code/test.php on line 2
*/
// FYI: this works OK in PHP 8+
- You can also group classes in the same namespace in the same
use
statement with "{}"
use Laminas\Db\Adapter\Driver\{IbmDb2,MySql,PostgreSQL};
- When would you use an alias along with
use
<?php
namespace X {
class Test {}
}
namespace Y {
class Test {}
}
namespace Z {
// must use alias, otherwise PHP doesn't know which "Test" you're referring to
use X\Test as XT;
use Y\Test as YT;
$test = new XT();
}
- Type coercion / type juggling
- Study this example:
<?php
$a = 123;
$b = 456;
$c = '789';
// in the case combined operations, the last one wins
$e = $a + $b . $c;
var_dump($e); // string(579789)
$e = $a . $b + $c;
var_dump($e); // int(124245)
// the data type of $b is changed because of the string operators "."
$b = $a . '+' . $b;
var_dump($b);
// the data type of $c is "juggled" temporarily to int to satisfy the operation
$d = $a + $c;
var_dump($c);
- Another example:
<?php
$a = 11;
$b = 22;
$c = 'The sum is: ' . $a + $b;
var_dump($c);
// In PHP 7.1:
/*
PHP Warning: A non-numeric value encountered in /srv/code/test.php on line 4
int(22)
*/
// IMPORTANT: the result in PHP 8 is different!
// string(14) "The sum is: 33"
- Type coercion can also result in
Notice
orWarning
<?php
// NOTE: all of these generate this message as well
// Notice: A non well formed numeric value encountered in ...
var_dump("12x" * 1); // int(12)
var_dump("1.2x" * 1); // float(1.2)
var_dump("12E-1x" * 1); // float(1.2)
var_dump("08x" * 1); // int(8)
// Warning: A non-numeric value encountered
var_dump("E1x" * 1); // int(0)
// forcing the data type influences conversion
var_dump((int) "12E-1x" * 1); // int(1)
var_dump((float) "12E-1x" * 1);
- Assignment Operator
- IMPORTANT: all object assignments are by reference (unless you use keyword
clone
)
- IMPORTANT: all object assignments are by reference (unless you use keyword
<?php
class Test
{
public $value = 1;
}
$a = new Test();
$b = $a; // all object assignments are by reference!
$b->value = 2;
var_dump($a, $b);
// output:
/*
/srv/code/test.php:9:
class Test#1 (1) {
public $value =>
int(2)
}
/srv/code/test.php:9:
class Test#1 (1) {
public $value =>
int(2)
}
*/
- Example of left/right shift
<?php
$three = 0b00000011; // 3
// 3 << 5
$final = 0b01100000; // 96
// 96 >> 5
$final = 0b00000011; // 4
// same thing but using 7
$three = 0b00000111; // 7
// 3 << 5
$final = 0b11100000; // 224
// 224 >> 6
$final = 0b00000011; // 3
What's the difference between define()
and const
for constants:
<?php
namespace x {
define('TEST1', 'xyz');
const TEST2 = 'abc';
}
namespace y {
function test()
{
return TEST1 . TEST2;
}
echo test();
// output: xyzTEST2
}
Bitwise quiz question:
<?php
$a = 2; // 010
$b = 5; // 101
$c = 7; // 111
printf('%04b' . PHP_EOL, ($a | $b)); // 111
printf('%04b' . PHP_EOL, ($a | $b) ^ $c); // 000
printf('%04b' . PHP_EOL, ~(($a | $b) ^ $c)); // 11111111111111111111111111111
echo ~(($a | $b) ^ $c) ? 'T' : 'F'; // T
Namespaces:
- Cannot have keywords in the namespace in PHP 7.1
namespace Test\List\Whatever;
use ArrayObject;
$obj = new ArrayObject([1,2,3,4,5]);
var_dump($obj);
// PHP Parse error: syntax error, unexpected 'List' (T_LIST), expecting identifier (T_STRING) in /srv/code/test.php on line 2
IMPORTANT: when assigning objects, it's automatically by reference (even without the &
)
<?php
$obj = new stdClass();
$obj->name = 'TEST';
$abc = $obj;
$abc->name = 'Whatever';
echo $obj->name;
echo PHP_EOL;
// Output: "Whatever"
What is considered "empty"?
- https://www.php.net/manual/en/language.types.boolean.php#language.types.boolean.casting
- Overview of topics: https://www.zend.com/training/php-certification-exam
- Good overview of typical PHP program operation:
<?php
namespace abc {
define('WHATEVER', 'Whatever', TRUE);
const ANYTHING = 'Anything';
}
namespace xyz {
echo WHATEVER;
echo ANYTHING;
}
Tutorial oriented towards the exam:
<?php
echo "Logical AND\n";
printf("%04b\n", 0b00 & 0b00); // 0
printf("%04b\n", 0b00 & 0b01); // 0
printf("%04b\n", 0b01 & 0b00); // 0
printf("%04b\n", 0b01 & 0b01); // 1
echo "Logical OR\n";
printf("%04b\n", 0b00 | 0b00); // 0
printf("%04b\n", 0b00 | 0b01); // 1
printf("%04b\n", 0b01 | 0b00); // 1
printf("%04b\n", 0b01 | 0b01); // 1
echo "Logical XOR\n";
printf("%04b\n", 0b00 ^ 0b00); // 0
printf("%04b\n", 0b00 ^ 0b01); // 1
printf("%04b\n", 0b01 ^ 0b00); // 1
printf("%04b\n", 0b01 ^ 0b01); // 0
Examples of the three ops:
<?php
$a = 0b11111111;
$b = 0b11011101;
printf("%08b", $a & $b); // 1101 1101
printf("%08b", $a | $b); // 1111 1111
printf("%08b", $a ^ $b); // 0010 0010
Left/right shift illustration:
<?php
echo 16 << 3;
echo "\n";
echo 0b10000000;
echo "\n";
echo 16 >> 3;
echo "\n";
echo 0b00000010;
echo "\n";
echo 15 >> 3;
echo "\n";
echo 0b00000001;
echo "\n";
Nested Ternary Construct
$a = 30;
$b = 20;
echo ($a < $b) ? 'Less' : (($a == $b) ? 'Equal' : 'Greater');
// output: "Greater"
Null coalesce operator example
$token = $_GET['token'] ?? $_POST['token'] ?? $_COOKIE['token'] ?? 'DEFAULT';
Yet another example
<?php
// example of null coalesce operator
// first expression is the 1st CLI arg
// if that's not present, looks to the URL or post
$action = $argv[1] ?? $_GET['action'] ?? $_POST['action'] ?? 'nothing';
Switch statement example
<?php
$a = '1';
switch ($a) {
case 1 :
echo 'A';
break;
case '2' :
echo 'B';
break;
default :
echo 'C';
}
// output: "A" because switch does a non-strict comparison
// NOTE: if the "break;" is missing, it would keep running code
php.ini
file settings:
- https://www.php.net/manual/en/ini.list.php Extensions
- These are in the core:
- https://github.com/php/php-src/tree/PHP-7.1.30/ext
- but not all are enabled by default
- You're only tested on the extensions enabled by default
- Study up on
gc_collect_cycles()
Have a look at this article: https://www.php.net/manual/en/features.gc.performance-considerations.php
Read up on SimpleXMLElement
- https://www.php.net/manual/en/simplexml.examples-basic.php
- Simple example
<?php
$xml = <<<EOT
<topics>
<topic id="1">XML</topic>
<topic id="2">Web Services</topic>
<topic id="3">Whatever</topic>
<info>
<name>Doug</name>
<name>Hudo</name>
</info>
</topics>
EOT;
$simple = new SimpleXMLElement($xml);
echo $simple->info->name; // Doug
echo $simple->info->name[1]; // Hudo
echo $simple->topic[2]; // Whatever
echo $simple->topic[2]['id']; // 3
- XPath Tutorial: https://www.w3schools.com/xml/xpath_intro.asp
DateTime
examples
<?php
// for relative formats see:
// https://www.php.net/manual/en/datetime.formats.relative.php
$date[] = new DateTime('2023-03-16');
$date[] = new DateTime('third thursday of next month');
$date[] = new DateTime('now', new DateTimeZone('CET'));
$date[] = new DateTime('@' . time());
$date[] = (new DateTime())->add(new DateInterval('P3D'));
var_dump($date);
DateInterval
format codes- Don't forget that to run a SOAP request, you can also use:
SoapClient::__soapCall()
SoapClient::__doRequest()
- Example of a soap client:
- Study on
DateTimeInterval
andDateTimeZone
and also "relative" time formats - In addition, be aware of the basic time format codes
- Pay close attention to
strftime()
- PayPal has a SOAP API that is publically accessible
- REST vs. SOAP:
- Be very careful with
strpos()
andstripos()
<?php
$str = 'The quick brown fox jumped over the fence';
echo '"The" was ';
echo (stripos($str, 'The')) ? 'found' : 'not found';
echo ' in the string ' . $str;
echo PHP_EOL;
// actual output:
// "The" was not found in the string The quick brown fox jumped over the fence
- Study
substr()
with negative args
<?php
$a = 'test.php';
// test. php
$b = substr($a, 0, -3) . substr($a, -3);
echo ($a === $b) ? 'T' : 'F';
// ouput: "T"
- Study the docs on
sprintf()
to get format codes for that family of functions - Example using negative offsets:
<?php
$dir = '/home/doug/some/directory/';
if (substr($dir, 0, 1) === '/') echo 'Leading slash' . PHP_EOL;
if (substr($dir, -1) === '/') echo 'Trailing slash' . PHP_EOL;
if ($dir[-1] === '/') echo 'Trailing slash' . PHP_EOL;
- Modifying the values using "de-referencing"
<?php
$str = 'abcdef';
echo $str . "\n"; // abcdef
$str[0] ='z';
echo $str . "\n"; // zbcdef
unset($str[2]);
echo $str . "\n"; // Fatal Error
- Tutorial on PHP regex: https://www.w3schools.com/php/php_regex.asp
- Delimiters for
preg_match()
etc. must not be alphanumeric or backslash - Using regex to find distinct words (using
\b
)
<?php
$str[] = 'This is an example of error_reporting'; // NO MATCH
$str[] = 'ERROR: this is problem'; // MATCH
$patt = '/\bERROR\b/i';
$srch = 'ERROR';
foreach ($str as $item) {
echo $item . "\n";
echo (preg_match($patt, $item)) ? 'MATCH' : 'NO MATCH';
echo "\n";
}
- What is the output?
<?php
echo '1' . (print '2') + 3;
- Using regex to swap sub-patterns
<?php
$text = 'Doug Bierer';
$patt = '/(.*)\s(.*)/';
echo preg_replace($patt, '$2, $1', $text);
preg_replace()
andpreg_match()
example using sub-patterns:
<?php
$string = 'April 15, 2003';
$pattern = '/(\w+) (\d+), (\d+)/i';
$replacement = '$2 $1 $3';
echo preg_replace($pattern, $replacement, $string);
preg_match($pattern, $string, $matches);
var_dump($matches);
- Same thing, but going from European date format to American
<?php
$str = date('d M Y');
// subpatt: 1 2 3
$pat = '/^(\d+?) (\w+?) (\d{4})$/';
$rep = '$2 $1, $3';
echo preg_replace($pat, $rep, $str);
echo PHP_EOL;
// example output: "Mar 16, 2023"
Greediness Example:
<?php
$str = '<p>Para 1</p><p>Para 2</p><p>Para 3</p>';
//$pat = '!<p>.*</p>!'; // returns the entire string
//$pat = '!<p>.*?</p>!'; // returns "<p>Para 1</p>"
$pat = '!<p>.*</p>!U'; // returns "<p>Para 1</p>"
preg_match($pat, $str, $matches);
var_dump($matches);
echo PHP_EOL;
Example using "word boundary" (\b)
<?php
$str = [
'This program has an ERROR in it',
'ERROR: Big Big Problem!',
'This is just ERROR_REPORTING',
];
$patt = '/\bERROR\b/i';
foreach ($str as $line) {
echo $line . ': ';
echo (preg_match($patt, $line)) ? 'MATCH' : 'NO MATCH';
echo PHP_EOL;
}
// actual output:
/*
MATCH
MATCH
NO MATCH
*/
General regex coding examples:
If you use float
as an index, it typecasts to int
<?php
$a = [1.11 => 'A', 2.22 => 'B', 3.33 => 'C'];
echo $a[1.11];
var_dump($a);
/*
root@phpcert [ /srv/code ]# php test.php
A/srv/code/test.php:4:
array(3) {
[1] =>
string(1) "A"
[2] =>
string(1) "B"
[3] =>
string(1) "C"
}
*/
Extracting random values from an array:
<?php
// extracting a random value out of an array:
// #1
$a = ['A' => 111, 'B' => 222, 'C' => 333, 'D' => 444];
var_dump($a[array_rand($a)]);
// #2
shuffle($a);
var_dump($a[0]);
For iterating through an array beginning-to-end don't forget about these functions:
array_walk()
array_walk_recursive()
array_map()
Also: please don't forget the array navigation functions:reset()
: sets pointer to topend()
: sets pointer to endprev()
: advances array pointernext()
: un-advances array pointerkey()
: returns index value at array pointercurrent()
: returns value of element at array pointer Assignment example:
<?php
$a = ['A', 'B', 4 => 'C'];
$a[2] = 'E';
$a[] = 'D';
var_dump($a);
/*
array(5) {
[0] =>
string(1) "A"
[1] =>
string(1) "B"
[4] =>
string(1) "C"
[2] =>
string(1) "E"
[5] =>
string(1) "D"
}
*/
In PHP 7, if a numeric array has no index > 0, it will always start with 0
<?php
$a = [-6 => 'A', -5 => 'B'];
$a[] = 'C';
var_dump($a);
/*
array(3) {
[-6] =>
string(1) "A"
[-5] =>
string(1) "B"
[0] =>
string(1) "C"
}
*/
With associative arrays, the keys are retained automatically regardless of the 4 param of array_slice()
<?php
$a = ['A' => 1, 'B' => 2, 'C' => 3, 'D' => 4, 'E' => 5];
$a1 = array_slice($a, 2); // == [3, 4, 5];
$a2 = array_slice($a, 1, 3); // == [2, 3, 4];
$a3 = array_slice($a, 1, 3, true); // == [1 => 2, 2 => 3, 3 => 4]
var_dump($a1, $a2, $a3);
/*
array(3) {
'C' =>
int(3)
'D' =>
int(4)
'E' =>
int(5)
}
/srv/code/test.php:6:
array(3) {
'B' =>
int(2)
'C' =>
int(3)
'D' =>
int(4)
}
/srv/code/test.php:6:
array(3) {
'B' =>
int(2)
'C' =>
int(3)
'D' =>
int(4)
}
*/
BE CAREFUL: there is also a function array_splice()
- Operates much like
str_replace()
Example ofarray_combine()
<?php
$keys = range('A','F');
$vals = range(1, 6);
$fin = array_combine($keys, $vals);
var_dump($fin);
/*
array(6) {
'A' =>
int(1)
'B' =>
int(2)
'C' =>
int(3)
'D' =>
int(4)
'E' =>
int(5)
'F' =>
int(6)
}
*/
If you add SORT_STRING
the sort()
function type-juggles everything to a string
<?php
$a = [5,"43",2,"10"];
sort($a, SORT_STRING);
var_dump($a);
// actual output:
/*
/srv/code/test.php:5:
array(4) {
[0] =>
string(2) "10"
[1] =>
int(2)
[2] =>
string(2) "43"
[3] =>
int(5)
}
*/
Read through the docs for fopen()
- Very important!
- https://www.php.net/manual/en/function.fopen.php
Streams
- Don't have to study all functions, just certain of the more common ones
- https://www.php.net/streams
stream_context_create()
stream_wrapper_register()
stream_filter_register()
stream_filter_append()
stream_socket_client()
In addition to the informational file functions mentioned, you also have:
fileatime()
filemtime()
filectime()
etc.
- Pass by reference example
<?php
$a = 'AAA';
function test(&$a = '')
{
$a = 'BBB';
return $a;
}
// NOTE: because we never passed any variable, there's nothing to reference
// which means $a never changes
test();
var_dump($a);
// output:
/*
/srv/code/test.php:11:
string(3) "AAA"
*/
- Read up on
Closure::bindTo()
- Anonymous function example:
<?php
$label = 'Result: ';
$add = function ($a, $b) use ($label) {
return $label . ($a + $b);
};
$sub = function ($a, $b) use ($label) {
return $label . ($a - $b);
};
function test(callable $func, $a, $b) {
return $func($a, $b);
}
echo test($add, 6, 3) . PHP_EOL . test($sub, 6, 3);
echo PHP_EOL;
var_dump($add, $sub);
echo PHP_EOL;
echo (method_exists($add, '__invoke')) ? '__invoke exists' : '__invoke does NOT exist';
// actual output:
/*
Result: 9
Result: 3
/srv/code/test.php:18:
class Closure#1 (2) {
public $static =>
array(1) {
'label' =>
string(8) "Result: "
}
public $parameter =>
array(2) {
'$a' =>
string(10) "<required>"
'$b' =>
string(10) "<required>"
}
}
/srv/code/test.php:18:
class Closure#2 (2) {
public $static =>
array(1) {
'label' =>
string(8) "Result: "
}
public $parameter =>
array(2) {
'$a' =>
string(10) "<required>"
'$b' =>
string(10) "<required>"
}
}
__invoke exists
*/
- Alternative example of
bindTo()
<?php
class Airplane {
public $type;
function __construct(string $type) {
$this->type = $type;
}
function getClosure() {
return function() {
return $this->type;
};
}
}
class X {
public $type = 'X';
}
$airplane1 = new Airplane('Airliner');
$closure1 = $airplane1->getClosure();
echo $closure1(). PHP_EOL;
$closure2 = $closure1->bindTo(new X());
echo $closure2();
bindTo()
doesn't require the same object type
<?php
class Airplane {
public $type;
function __construct(string $type) {
$this->type = $type;
}
function getClosure() {
return function() {
return $this->type;
};
}
}
$airplane1 = new Airplane('Airliner');
$airplane2 = new stdClass();
$airplane2->type = 'TEST';
$closure1 = $airplane1->getClosure();
echo $closure1(). PHP_EOL;
$closure2 = $closure1->bindTo($airplane2);
echo $closure2();
// same results as above
$this
- Amazingly this (no pun intended) works!
class ThisIsATest
{
public $this = 'This';
public $name = 'Whatever';
}
$test = new ThisIsATest();
echo $test->this;
- Abstract class example with abstract method:
- https://github.com/laminas/laminas-mvc/blob/3.6.x/src/Controller/AbstractController.php
- Defined
public astract function onDispatch()
- Defined
- https://github.com/laminas/laminas-mvc/blob/3.6.x/src/Controller/AbstractRestfulController.php
- Extends the
AbstractController
abstract class
- Extends the
- https://github.com/laminas/laminas-mvc/blob/3.6.x/src/Controller/AbstractController.php
- Read up on magic methods!
- https://www.php.net/manual/en/language.oop5.magic.php
- Examples: https://github.com/dbierer/classic_php_examples/tree/master/oop/*magic*.php
- Don't worry about any methods added after PHP 7.1
__destruct()
called when object goes out-of-scope- End of program
unset()
- Called in a function/method and function/method call ends
- Overwritten
- Example:
<?php
class Magic
{
public $a = "A";
protected $b = ['a' => 'A', 'b' => 'B', 'c' => 'C'];
protected $c = [1, 2, 3];
public function __get($v)
{
echo "$v,";
return $this->b[$v];
}
public function __set($var, $val)
{
echo "$var:$val";
$this->var = $val;
}
}
$m = new Magic();
echo $m->a . "," . $m->b . "," . $m->c . ",";
$m->c = "CC";
echo $m->a . "," . $m->b . "," . $m->c . PHP_EOL;
// actual output: b,c,A,B,C,c:CCvar:CCb,c,A,B,C
// WHY does "A" not show up in the start?
- Interfaces can be used as "free agents" to define functionality
- This example ties an interface into an inheritance hierarchy
<?php
interface SetGet {
public function set(string $name, callable $service);
public function get(string $name) : callable;
}
abstract class Container implements SetGet {
protected $services = [];
}
class ServiceContainer extends Container {
/*
public function set(string $name, callable $value) {
$this->services[$name] = $value;
}
*/
public function get(string $name) : callable {
return $this->services[$name];
}
}
$service = function () { return (new DateTime('now'))->format('l, d M Y'); };
$container = new ServiceContainer();
$container->set('today', $service);
echo $container->get('today')();
- Autoloading Examples:
- https://github.com/dbierer/classic_php_examples/tree/master/oop
- Look for
oop_autoload*.php
- Callable
- Examples of what is considered "callable"
- https://github.com/dbierer/classic_php_examples/blob/master/oop/callable_examples.php
__isset()
rewritten example:
<?php
namespace Container;
class ServiceContainer {
protected $path = '/path';
protected $services = [];
public function __get($name) {
return $this->$name ?? false;
}
public function __isset($name) {
return !empty($this->$name);
}
}
$container = new ServiceContainer();
var_dump($container->adapter);
echo isset($container->adapter) ?? false;
echo $container->path . PHP_EOL;
- Iteration
- Lookup these interfaces and understand what they do
Traversable
- Both of the interfaces mentioned
extend
this interface Iterator
- Introduced earlier
- Requires hard-coded iteration methods
IteratorAggregate
- Passes the buck
- Don't have to hard code iteration methods
- Lookup these interfaces and understand what they do
- Late static binding
- Serialization example:
<?php
class Test
{
public $a = 0;
public $b = 0;
public $c = 'Test';
public $d = [];
public $e = '';
public function __construct(int $a, float $b, string $c, array $d)
{
$this->a = $a;
$this->b = $b;
$this->c = $c;
$this->d = $d;
$this->e = md5(rand(1111,9999));
}
public function __sleep()
{
return ['a','b','c','d'];
}
public function __wakeup()
{
$this->e = md5(rand(1111,9999));
}
}
$test = new Test(222, 3.456, 'TEST', [1,2,3]);
var_dump($test);
$str = serialize($test);
echo $str . PHP_EOL;
$obj = unserialize($str);
var_dump($obj);
- Type hints
- If
declare(strict_types=1)
is not set, the type hint does a "soft" type cast
- If
<?php
function test (int $a, int $b)
{
return $a + $b;
}
echo test(2, 2);
echo PHP_EOL;
echo test('2', '2');
echo PHP_EOL;
echo test(2.666, 2.777);
echo PHP_EOL;
echo test('A', 'B');
echo PHP_EOL;
// actual output:
/*
4
4
4
PHP Fatal error: Uncaught TypeError: Argument 1 passed to test() must be of the type integer, string given, called in /srv/code/test.php on line 13 and defined in /srv/code/test.php:2
*/
void
return type- You can't return anything
- You can't return
NULL
- However,
return
with no args is allowed so that you break out of the method if needed
- Anonymous classes can't be serialized
<?php
$sum = new class () {
public $num = 0;
public function __invoke($val) {
$this->num += $val;
}
};
// can't do this!
$str = serialize($sum);
echo $str . PHP_EOL;
$obj = unserialize($str);
array_walk($a, $obj);
echo 'Sum of Digits: ' . $obj->num;
echo PHP_EOL;
// actual output:
/*
* PHP Fatal error: Uncaught Exception: Serialization of 'class@anonymous' is not allowed in /srv/code/test.php:14
*/
- Traits example
<?php
trait TestTrait1 {
public function someTest() {
return '1111111' . PHP_EOL;
}
}
trait TestTrait2 {
protected function someTest() {
return '2222222' . PHP_EOL;
}
}
class TestClass {
use TestTrait1, TestTrait2 {
// if there's a collision, must resolve it first
TestTrait1::someTest insteadof TestTrait2;
// keyword "as" redefines both visibility and the name
TestTrait2::someTest as public someTestTwo;
}
}
$a = new TestClass();
echo $a->someTest();
echo $a->someTestTwo();
- SPL
- Make sure you study:
*Iterator*
: just know what they areArrayIterator
andArrayObject
make sure you're up to speed on these!
- Just be aware of the "classic" data structure classes
- Make sure you study:
- Generators
<?php
$arr = range(1, 1000000);
$div = 17;
function whatDiv(array $arr, int $div)
{
foreach ($arr as $val) {
if ($val % $div === 0) yield $val;
}
}
$res = whatDiv($arr, $div);
// do something
// this would go in a view script
foreach ($res as $item) echo $item . ' ';
echo PHP_EOL;
echo "\nPeak: " . memory_get_peak_usage();
- Late Static Binding
- Traits
Fetch Modes:
- Focus on array and object fetch modes
- Study the difference between
bindValue()
andbindParam()
Questions are drawn from here:
- https://www.php.net/manual/en/security.php
Read up on the
crypt()
function - https://www.php.net/manual/en/function.crypt.php
Make sure you read up on
htmlspecialchars()
- https://www.php.net/htmlspecialchars
<?php
$test = "<br>\"double\" & 'single'";
echo htmlspecialchars($test);
echo PHP_EOL;
echo htmlspecialchars($test, ENT_NOQUOTES);
echo PHP_EOL;
echo htmlspecialchars($test, ENT_QUOTES);
// output:
/*
<br>"double" & 'single'
<br>"double" & 'single'
<br>"double" & 'single'
*/
Do a quick read on the crypt()
function
password_hash()
leverages this- Might be on the test File upload documentation
- https://www.php.net/manual/en/features.file-upload.php
Security related
php.ini
settings open_basedir
doc_root
user_dir
cgi.force_redirect
Security validation functions- is_*()
- Checks the actual data type of the variable
- ctype_*()
- This family checks the actual contents of the variable
- filter*()
Read up especially on
filter_var()
- https://www.php.net/filter_var
Make sure you're up on the php.ini
settings pertaining to web features
URL: https://www.php.net/manual/en/ini.list.php
variables_order
request_order
memory_limit
post_max_size
upload_max_filesize
file_uploads
max_file_uploads
Form postings
- HTML input get
enctype
attribute- See: https://developer.mozilla.org/en-US/docs/Web/API/HTMLFormElement/enctype Session mechanism
- NOTE: the session mechanism serializes everything
- Cannot store type
resource
e.g file handles, data connections - Cannot store anonymous functions
- Cannot store anonymous classes either
<?php
class Test
{
public $name = 'Fred Flintstone';
public function getName()
{
return $this->name;
}
}
session_start();
$name = $_SESSION['name'] ?? '';
$func = $_SESSION['func'] ?? '';
$anon = $_SESSION['anon'] ?? '';
if (empty($_SESSION['name'])) {
echo 'First Time <br />';
$name = new Test();
$_SESSION['name'] = $name;
$_SESSION['func'] = function ($name) { return $name->name; };
$_SESSION['anon'] = new class () { public function getName($name) { return $name->name; }};
} else {
echo 'Second Time <br />';
echo $name->getName();
echo $func($name);
echo $anon->getName($name);
}
// actual output:
/*
First Time <br />PHP Fatal error: Uncaught Exception: Serialization of 'Closure' is not allowed in [no active file]:0
First Time <br />PHP Fatal error: Uncaught Exception: Serialization of 'class@anonymous' is not allowed in [no active file]:0
*/
Beware of $GLOBALS
<?php
namespace test {
$a = 'AAA';
}
namespace whatever {
echo $a; // outputs "AAA"
}
namespace {
$GLOBALS['a'] = 'BBB';
echo $a; // outputs 'BBB'
var_dump($GLOBALS);
}
Headers
header()
can also set the response code
header(string $header, bool $replace = true, int $response_code = 0): void
Example of aggregated Catch block:
try {
$pdo = new PDO($params);
$pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
} catch (PDOException | Exception $e) {
error_log('Database error: ' . date('Y-m-d H:i:s'));
} catch (Throwable $e) {
error_log('Any and all errors or exceptions: ' . date('Y-m-d H:i:s'));
} finally {
echo 'Database connection ';
echo ($pdo) ? 'succeeded' : 'failed';
}
Example of making object callable:
<?php
$sum = new class () {
public $num = 0;
public function __invoke($val) {
$this->num += $val;
}
};
$a = [1, 2, 3, 4, 5, 6, 7, 8];
array_walk($a, $sum);
echo 'Sum of Digits: ' . $sum->num;
// output: 36
See: https://github.com/dbierer/classic_php_examples/blob/master/oop/callable_examples.php
- Don't forget to study the
error_log()
as well - Also: there are a few others to look for as well
- To see value of some of the ERROR* bit constants:
<?php
$err = [
E_NOTICE,
E_PARSE,
E_WARNING,
E_ERROR,
E_STRICT,
E_DEPRECATED,
E_ALL
];
foreach ($err as $x)
printf("%016b\n", $x);
-
Q: Info on
__set_state()
? -
A: Designed to set state prior to using
var_export()
-
A: See: https://www.php.net/manual/en/language.oop5.magic.php#object.set-state
-
Q: Where is there a good discussion of
ArrayObject
usingSTD_PROP_LIST
orARRAY_AS_PROPS
? -
A: See: https://stackoverflow.com/questions/14610307/spl-arrayobject-arrayobjectstd-prop-list
-
Q: How do I know if an extension is part of the "core"
-
A: See: https://github.com/php/php-src/tree/php-7.1.33/ext
- These are all core
- Not all are enabled by default
- Only the ones enabled will be on the test
- http://localhost:8884/#/4/27
- "nin digit"
- "an underscore"
- http://localhost:8884/#/9/38
- The wording on the question isn't clear. There is no result!!!
- Please clarify the wording
- http://localhost:8884/#/2/19
- Line 5 should be a
warning
notnotice
- Line 5 should be a
- http://localhost:8884/#/4/41
- Look into this question
- Actual output: "255 255.000000"
- http://localhost:8884/#/6/27
- "B" answer is marked correct, however putting byte limit might limit the
fgetss()
ability to remove markup
- "B" answer is marked correct, however putting byte limit might limit the