php10.de International Blog Christian Fraunholz Internet, Intranet and iPhone development http://www.php10.de/blog_international/templates/default/img/s9y_banner_small.png http://www.php10.de/blog_international/ 2011-07-11T09:08:47Z Serendipity 1.4.1 - http://www.s9y.org/ en Christian K. Fraunholz 2011-02-25T11:28:35Z 2011-07-11T09:08:47Z http://www.php10.de/blog_international/wfwcomment.php?cid=4 10 http://www.php10.de/blog_international/rss.php?version=atom1.0&type=comments&cid=4 http://www.php10.de/blog_international/archives/4-guid.html Coding Rules


These are my coding rules:



  1. line indent 4 spaces, no tabs (relevant for SVN commits)

  2. UTF-8 everywhere

  3. prevent parameter manipulation via HTTP POST or GET

  4. prevent SQL-Injection: before storing a value into the database: use  (int) typcasting for integer values and my_sql() function for all other values

  5. prevent Cross-Site-Scripting: before outputting a variable to HTML, use the html() function


function my_sql($var) {
  return mysql_real_escape_string($var);
}
function html($var) {
  return htmlspecialchars($var, ENT_QUOTES, 'UTF_8');
}

Christian K. Fraunholz 2011-02-19T22:55:12Z 2011-02-19T22:55:12Z http://www.php10.de/blog_international/wfwcomment.php?cid=3 5 http://www.php10.de/blog_international/rss.php?version=atom1.0&type=comments&cid=3 http://www.php10.de/blog_international/archives/3-guid.html Petition to the European Parliament
my petition for gardeners - if farmers get subsidiaries, gardeners should get subsidiaries, too - has just been forwarded from the European Parliament to the European Committee
Christian K. Fraunholz 2010-03-21T21:00:22Z 2010-03-21T21:07:22Z http://www.php10.de/blog_international/wfwcomment.php?cid=2 0 http://www.php10.de/blog_international/rss.php?version=atom1.0&type=comments&cid=2 http://www.php10.de/blog_international/archives/2-guid.html iThrow at Twitter
Somewhere sometimes someone throws his iPhone into the air. You can find the highest iPhone throws made with the Accelerated Browser now at https://twitter.com/iThrowmiPhone
Christian K. Fraunholz 2010-01-01T12:28:16Z 2010-01-12T08:39:13Z http://www.php10.de/blog_international/wfwcomment.php?cid=1 0 http://www.php10.de/blog_international/rss.php?version=atom1.0&type=comments&cid=1 http://www.php10.de/blog_international/archives/1-guid.html The Big Red Button

As you may know, building a simple web application that displays the
content of a database table and a form to edit it, requires typing the
field names over and over again. Once you write them as a simple
comma-separated list, then they come via HTTP POST method packed in
$_POST['foobar']. For context change you have to write code to escape
and protect against SQL-Injection or Cross Site Scripting attacks. Most
of the time you must consider the type of each field even though you
defined it already in the database. After all you must type every field
name about 25 times in different formats for a basic application. The
Big Red Button Source Code Generator, being developed by Christian
Fraunholz, is designed to help you with this annoying task.


Description & Feature List


The Big Red Button Source Code Generator