PHP

This web page was accessed times since 5/2/2000.
This access counter is created with php+mysql+Image function.

PHP is a server-side, cross-platform, HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web developers to write dynamically generated pages quickly.
PHP stands for PHP: Hypertext Preprocessor.
PHP is a web page centric scripting language. It integrates/embeds scripts in the web page using <?php> tag. The file name of the integrated web page has .php extension. The file extension alerts the web server to hand over the processing a php handler.
- It is web page centric as opposed to the "script" centric such as Perl server side scripts, where the web page and scripts are separated or web page and generated by scripts in print statement (not as easy to read).
- It integrates the web page with related server side script in single file. Make it easy to manage.
- It has a fast "engine" to processing the scripts.
PHP 4 Architecture: Zend core is na efficient parser module for php langage. PHP extensions: PHP function module. SAPI: Web server abstract layer API.
main web page: http://www.php.net/
PHP FAQ

Tutorial:

Text:

Core PHP programming, Leon Atkinson with Zeev Suraski, 3rd Edition, Prentice Hall, 2004. ISBN 0-13-046346-9

Programming Environment:

CS Unix machines were set up with php4.2.2 and proper apache php module for processing php server side scripts.
http://cs.uccs.edu/~cs301/php/corephp/ contains the examples from from the core PHP programming textbook.

Last Digit of your Student ID % 5	Designated PHP-MySQL for Web Programming Exercises
0	sanluis
1	blanca
2	crestone
3	shavano
4	wetterhorn

Redcloud is a backup machine. When you have problem with these five machines, you can try redcloud.

Create a php directory under your public_html directory and save your php scripts there. If you have a showUserDB.php script there, you can access it with http://blanca.uccs.edu/~<login>/showUserDB.php assume blanca is your designated machine.
XPvm1 virtual machines in PCs of EAS 149 was installed with xampp software packpage, including apache, mysql, php5.0.0.
You start xampp by clickig the c:\apachefriends\xampp\xampp_start. In C:\cs301\php\corephp we have all exercises and programming examples from the core PHP programming textbook.

Language Syntax:

Many of the examples here are adapted from http://www.php.net/tut.php and http://www.zend.com/zend/art/intro.php
Variables
In PHP, a variable does not require formal declaration. It will automatically be declared when a value is assigned to it. Variables are prefixed by a dollar sign: ($VariableName). Variables do not have declared types. A variable's type does not have to be fixed, meaning it can be changed over the variable's lifetime. The table below list's PHP's variable types:

Type	Description
Integer	integer number
Double	floating point number
bool¹	Boolean (true or false), available from PHP 4.0
Array	hybrid of ordered array and associative array
object²	an object with properties and methods (not discussed in this article)

Arrays
PHP arrays are a cross between numbered arrays and associative arrays. This means that you can use the same syntax and functions to deal with either type of array, including arrays that are:
Indexed from 0
Indexed by strings (Using the same [ ] to specify the index, as opposed to { } in Perl)
Indexed with non-continuous numbers
Indexed by a mix of numbers and strings

<?php $array1 = array(2, 3, 5, 7, 11); $array2 = array("one" => 1, "two" => 2, "three" => 3); $array3 = array(5 => "five", "six", "seven"); printf("7: %d, 1: %d, 'six': %s\n", $array1[3], $array2["one"], $array3[6]); ?>
Conditionals and Looping Constructs

PHP includes if and elseif conditionals, as well as while and for loops, all with syntax similar to C. The example below introduces these four constructs:
<?php // Conditionals if ($a) { print "a is true<BR>\n"; } elseif ($b) { print "b is true<BR>\n"; } else { print "neither a or b is true<BR>\n"; } // Loops do { $c = test_something(); } while ($c); while ($d) { print "ok<BR>\n"; $d = test_something(); } for ($i = 0; $i < 10; $i++) { print "i=$i<BR>\n"; } ?> $i can appear in side print string. Variable substitution similar to that of Perl is performed.

Web Application Features

One of PHP's oldest features is the ability to make HTML form and cookie data available directly to the programmer. By default, any form entry creates a global PHP variable of the same name.

In the following example, a user name is retrieved and assigned to a variable. The name is then printed by the sub-routine "submit.php":

 <FORM METHOD="GET" ACTION="submit.php"> 
  

  What's your name? <INPUT NAME="myname" SIZE=3> 
  

  </FORM>

submit.php

 <?php 
  

  print "Hello, $myname!"; 
  

  ?>

From the above example, note that variables can also be referenced from within double quoted strings.

Handling Multipe Input Form such as CheckBox

The following checkbox.php file will only print out "sizes=2, 2, o" if all checkboxes are selected. The reason is the browser will submit a request with body contains "sizes=12oz&sizes=16oz&sizes=22oz" and the $sizes will receive "22oz" last data as value, and therefore print out the first 3 characters of "22oz". It misses the other data input.

<h1>chow's test php web page on xampp </h1>

<?php
//#extract($_REQUEST); We can use extract to assign all submited values to the variables
// using the same name attribute in the original form as variable name.
$sizes=$_REQUEST['sizes']; // we can also use $_REQUEST array to retrieve specific
// name value pair of the input.
print "sizes=$sizes[0], $sizes[1], $sizes[2]<br>";
?>
<form method=POST action="test.php">
Select Beer Can sizes:
<input type=checkbox name=sizes value="12oz"> 12 oz.<br>
<input type=checkbox name=sizes value="16oz"> 16 oz.<br>
<input type=checkbox name=sizes value="22oz"> 22 oz.<br>
<br><br>
<input type=submit>
</form>

To fix the problem we need to declare the name of checkbox input as an array. The correct checkbox.php is as follows. The name is changed to sizes[ ] from sizes.

<h1>chow's test php web page on xampp </h1>

<?php
//#extract($_REQUEST);
$sizes=$_REQUEST['sizes'];
print "sizes=$sizes[0], $sizes[1], $sizes[2]<br>";
?>
<form method=POST action="test.php">
Select Beer Can sizes:
<input type=checkbox name=sizes[] value="12oz"> 12 oz.<br>
<input type=checkbox name=sizes[] value="16oz"> 16 oz.<br>
<input type=checkbox name=sizes[] value="22oz"> 22 oz.<br>
<br><br>
<input type=submit>
</form>

See the comparison in checkboxWrong.php and checkbox.php.

Working With Cookies

You can set cookies in the browser from PHP using the setcookie() function. setcookie() adds headers to the HTTP response. Since headers must be inserted before the body, you will need to finish all of your setcookie() calls before any body output (usually HTML) is printed.

The following example uses a cookie to store a form value until your browser is terminated.

 

  <?php 

  

  if (!$myname) { 
  

      print "What is your name? "; 
  

      print "<FORM ACTION=\"$PHP_SELF\" METHOD=\"GET\">\n"; 
  

      print "<INPUT NAME=\"myname\" SIZE=20>\n"; 
  

      print "</FORM>"; 
  

      exit; 

  } 

  

  setcookie("myname", $myname); 
  

  

  ?>

Built-in Variables

PHP has a number of built-in variables that give you access to your Web server's CGI environment, form/cookie data and PHP internals. Here are some of the most useful variables:

PHP internal variables

The $GLOBALS and $PHP_SELF variables shown in the table below are specific to PHP:

Variable Name	Description
$GLOBALS	An associative array of all global variables. This is the only variable in PHP that is available regardless of scope. You can access it anywhere without declaring it as a global first.
$PHP_SELF	This is the current script, for example `/~ssb/phpinfo.php3`.

CGI/Web server provided variables

The variables listed below are derived from CGI protocols.

Note that the $HTTP_*_VARS variables are available only when the "track_vars" directive is enabled. You can enable the directive by default when installing PHP with the "enable-track-vars" switch set to configure. Alternatively, you can set it in php.ini, or from your Web server's configuration.

Variable Name	Description
$DOCUMENT_ROOT	Your Web server's base directory with user-visible files.
$REQUEST_METHOD	The HTTP method used to access this page, for example GET or POST.
$REQUEST_URI	Full local part of the request URL, including parameters.
$HTTP_GET_VARS	An associative array with the GET parameters passed to PHP, if any.
$HTTP_POST_VARS	An associative array with the POST parameters passed to PHP, if any.
$HTTP_COOKIE _VARS	An associative array with the cookies passed by the browser, if any.
$SCRIPT_FILENAME	File name of the top-level page being executed.
$SCRIPT_NAME	Local URI part of the page being executed.
$SERVER_ADMIN	Server administrator's email address.
$SERVER_NAME	Domain name for the server.
$SERVER_PORT	TCP port number the server runs on.
$SERVER_PROTOCOL	Protocol used to access the page, for example "HTTP/1.1".

HTTP Request Variables

HTTP Request Variables are derived from their corresponding HTTP headers. For example, $HTTP_USER_AGENT is derived from the User-Agent header, presented in the table below:

$HTTP_HOST	Host name in the browser's "location" field.
$HTTP_USER_AGENT	User agent (browser) being used.
$HTTP_REFERER	URL of the referring page.

Regular Expression: PHP support Perl compatible Regular Expression (PCRE) and POSIX extended regular expressions

Here is an example the check the expiration date format:
<?php
extract($_REQUEST);
print "expDate=$expDate<br>";
if ($expDate) {
   if (ereg("^(0[1-9]|1[0-2])/([0-9]{2})$", $expDate, $matches)) {
      print "expDate=$expDate contains correct format<br>";
      $expMonth=$matches[1]; $expYear=$matches[2];
      print "expMonth=$expMonth expYear=$expYear<br>";
      $d=getdate();
      $currentYear=$d['year'];
      $currentMonth=$d['mon']; //one index january=1
      $currentYear -= 2000; // since 2000
      print "currentYear=$currentYear currentMonth=$currentMonth<br>";
      if ($expYear > $currentYear ||
          ($expYear == $currentYear) && ($expMonth >= $currentMonth)){
          print "<font color=blue size=+1 style=background:lime>not expired!</font>";
      } else {
          print "<font color=red size=+1 style=background:pink>expired!</font>";
      }
   } else {
      print "<font color=red size=+1 style=background:pink>expDate=$expDate contains incorrect format, mm/yy</font><br>";
   }
}
?>
<form action="reg1.php" method=post>
expiration date: <input type=text name=expDate value=<?php echo $expDate ?>>
<input type=submit name=submit value=checkExpirationDate>
</form>

For debugging, you can run the php script when you login to the CS Unix machine. It provides more info than that return from the browser.
MySQL support:
- Use mysql_connect() to connect to mysql database.
  $host="blanca"; $user="cs301"; $passwd="XXXX"; $database="cs301db";
  $dbLink = mysql_connect($host, $user, $passwd);
- Use mysql_select_db() to select database;
  mysql_select_db($database,$dbLink);
- Use mysql_query() to issue query to the mysql database.
  $query="SELECT customerID FROM customer where email='$email'";
  if(!($result = mysql_query($query, $dbLink))) {
      // get error and error number
     $errno = mysql_errno($dbLink);
     $error = mysql_error($dbLink);
     print("ERROR $errno: $error<br>\n");
     exit();
  } // note that the above deals with detecting SQL syntax error.
  
  $query="INSERT INTO customer (fullName, email, telephone,
  creditCardType, creditCardNo, address) VALUES ('$name', '$email',
  '$telephone', '$creditCardType', '$creditCardNo', '$shippingAddress')";
  // the ending ) is critical and a common mistake.
  
  // here is an example for upating the inventory
  $query="SELECT amount FROM inventory WHERE item='$item'";
  $result= mysql_query($query, $dbLink);
  $myrow=mysql_fetch_array($result);
  $amount=$myrow[0];
  $amount -= $noOfItems; // should check if lower than inventory
  $query="UPDATE inventory SET amount=$amount WHERE item='$item'";
  $result= mysql_query($query, $dbLink);
- Use mysql_num_rows() to find out how many rows of records return.
  $num_rows = mysql_num_rows($result);
- For Insert operation, you can use if (mysql_affected_rows() == 1) to check if the insertion is successful.
- Use mysql_fetch_array() to fetch each row of records.
  - For a single row, we can use
    $query="SELECT customerID FROM customer where email='$email'";
    $result=mysql_query($query, $dbLink);
    $myrow=mysql_fetch_array($result);
    $customerID=$myrow[0];
    print "Insert result=$customerID<br>";
  - For a multiple row return results, we can form a loop:
    while ($myrow = mysql_fetch_array($result)) {
       for ($j=0; $j<$num_fields; $j++) {
          printf("<td>%s</td>", $myrow[$j]);
       }
       print ("</tr>\n");
    }
- use mysql_insert_id() to find out the ID generated by AUTO_INCREMENT.
  $query="INSERT INTO orderCustomer (customerID) VALUES ($customerID)";
  mysql_query($query, $dbLink);
  $orderID=mysql_insert_id();
  printf("execute query=$query<br>Last inserted has id %d<br>\n", $orderID);
  $result=mysql_query("SELECT * FROM orderCustomer where orderID=LAST_INSERT_ID()");
  $myrow=mysql_fetch_array($result);
  $msg= "Dear $name, <br>orderID=$myrow[0], customerID=$myrow[1], orderTime=$myrow[2]<br> Here is the list of order items:<br>";
Mailing Support:
$to=$email;
$subject="Your order was processed";
$header="From: cs301\r\n" .
"Mime-Version: 1.0\r\n" .
"Content-type: text/html; charset=\"iso-8859-1\"\r\n\r\n";
mail($to, $subject, $msg, $header);
Upload file: See related man page at http://www.php.net/manual/en/features.file-upload.php

Here is the web page with the proper form for uploading a file.
The enctype has to be multipart/form-datea.
The MAX_FILE_SIZE is used to enter as a parameter on the server side script.
The input tag with type=file is to use for specifying a file name and it also creates a browser button for selecting the file.
<form enctype="multipart/form-data" action="upload.php" method="POST">

<input type="hidden" name="MAX_FILE_SIZE" value="300000" />

Send this file: <input name="userfile" type="file" />
Your login name: <input name="name" type="text" />
<input type="submit" value="Send File" />
</form>
Here is the content of the upload.php

<?php
// In PHP versions earlier than 4.1.0, $HTTP_POST_FILES should be used
// instead
// of $_FILES.
extract($_REQUEST); // extract name and assign to $name
//
$uploaddir = 'uploadDir/'. $name . '/';

if (!file_exists('uploadDir')) {
     mkdir('uploadDir', 0755); // note that you can change permssion to 0700 if you want to hide upload files
}
if (!file_exists($uploaddir)) {
     mkdir($uploaddir, 0755);
}

$uploadfile = $uploaddir . basename($_FILES['userfile']['name']);
echo '<pre>';

if (!$name) {
    print "Name not provided<br>Try again";
} elseif (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) {
    // the file is first upload to /tmp directory directory and then move to our specified directory
    echo "File is valid, and was successfully uploaded.\n";
    echo 'Here is the link to the saved file:';
    print "<a href=\"$uploadfile\"> $uploadfile</a>";
} else {
    echo "Possible file upload attack!\n";
}

print "</pre>";
?>

Examples:

php.php: change background, display php and apache status, with a form call action.php script
linkEmp.php: show a list of employees with links to detailed info.
emp.php: show the list of employees in the mydb database, allow the selection of the link for displaying the detailed info of an employee, and allow adding a new employee record.
mysql.php: create an employees table in the cs301db mysql database, add three personal records, and display the current content of the table.
showUserDB.php: show the list of table in the mysql database, cs301db and with button to display the content of the selected table.
acounter.php: show how to use the mysql for updating the counter value and how to use the Image library support for generating the gif file for the counter.
reserve.php: reserve lab time slot with calendar for selecting date and timeslot select with password protection.

PHP

This web page was accessed times since 5/2/2000. This access counter is created with php+mysql+Image function.