Access Control by IP Address Ranges

Jun 13th, 2011

Simple example of controlling access to resources based on origin IP address, this example validates origin is a private IP range.

<?php require_once 'Zend/Acl/Assert/Interface.php'; /** * * Assert the REMOTE_ADDR of the reqeust is from a private IP address * @author zircote * */ class PrivateIPAssertion implements Zend_Acl_Assert_Interface { public function assert ( Zend_Acl $acl, Zend_Acl_Role_Interface $role = null, Zend_Acl_Resource_Interface $resource = null, $privilege = null ) { return $this->_isValidIP($_SERVER['REMOTE_ADDR']); } /** * * @assert ('10.0.0.1') == true * @assert ('192.168.0.1') == true * @assert ('68.45.32.17') == false * * @param string $ip * @return bool */ protected function _isValidIP ($ip) { $ipLong = $this->_ip2Long($ip); $ten = new Zend_Validate_Between( array( 'min' => $this->_ip2Long('10.0.0.0'), 'max' => $this->_ip2Long('10.255.255.255') ) ); $oneSeven = new Zend_Validate_Between( array( 'min' => $this->_ip2Long('172.16.0.0'), 'max' => $this->_ip2Long('172.31.255.255') ) ); $oneNine = new Zend_Validate_Between( array( 'min' => $this->_ip2Long('192.168.0.0'), 'max' => $this->_ip2Long('192.168.255.255') ) ); $ipLong = sprintf('%u',ip2long($ip)); switch (true) { case $ten->isValid($ipLong): return true; case $oneSeven->isValid($ipLong): return true; case $oneNine->isValid($ipLong): return true; default: return false; } } protected function _ip2Long($ip) { return sprintf('%u',ip2long($ip)); } }

I have also added the supporting unit test, note that I am reflecting the method inorder to set it to public visibility to allow testing of it. It should also be note that in order to generate the tests you must change the protected to public so that PHPUnit will recognize the annotated assertions and generate the desired tests.

<?php /** * Test class for PrivateIPAssertion. * Generated by PHPUnit on 2011-06-11 at 19:38:41. */ class PrivateIPAssertionTest extends PHPUnit_Framework_TestCase { /** * @var PrivateIPAssertion */ protected $object; /** * * @var ReflectionMethod */ protected $method; /** * Sets up the fixture, for example, opens a network connection. * This method is called before a test is executed. */ protected function setUp() { /* set the protected method visible */ $this->object = new PrivateIPAssertion(); $this->method = new ReflectionMethod('PrivateIPAssertion', '_isValidIP'); $this->method->setAccessible(true); } /** * Tears down the fixture, for example, closes a network connection. * This method is called after a test is executed. */ protected function tearDown() { $this->object = null; $this->method = null; } /** * Generated from @assert ('10.0.0.1') == true. */ public function test_isValidIP() { $this->assertTrue( $this->method->invoke($this->object,'10.0.0.1') ); } /** * Generated from @assert ('192.168.0.1') == true. */ public function test_isValidIP2() { $this->assertTrue( $this->method->invoke($this->object,'192.168.0.1') ); } /** * Generated from @assert (68.45.32.17) == false. */ public function test_isValidIP3() { $this->assertFalse( $this->method->invoke($this->object,'68.45.32.17') ); } }

Zend_Acl Storage With Redis

Jun 12th, 2011

Recently I have been playing around with Rediska and Zend_Acl looking at different ways to store the lists and manipulate them so I put together a few of my scribbles to share.

Requirements:

This basic demonstrate support for multiple containers, utilizes a singleton for creation of each container. The creation of nonexistent acl containers within redis is delegated to the Rediska_Key::getOrSetValue method for initialization of the redis key being requested. This method uses the Acls name (‘BugsService’) through ReflectionClass to locate the proper creation controls.

<?php class RediskaAcl extends Zend_Acl { /** * * @var Rediska_Key */ protected $_redis; /** * * @var string */ protected $_key; /** * * @param string $key */ public function __construct($key) { $this->_key = $key; } /** * */ protected function _getRedis() { if(!$this->_redis){ $redis = new Rediska_Key($this->_key); $this->setRedis($redis); } return $this->_redis; } /** * * @param Rediska_Key_Abstract $redis */ public function setRedis(Rediska_Key_Abstract $redis) { $this->_redis = $redis; } /** * * @param Zend_Acl $acl */ public function saveAcl() { $this->_getRedis()->setValue($this); } /** * Rediska_Key::getOrSetValue checks if the keys exists if not it uses the * provided object and executes the chained method to set the value returned * by the method * @param string $key */ public function getAcl($key) { $reflection = new ReflectionClass('Model_'.$key.'Acl'); return $this->_getRedis()->getOrSetValue($reflection->newInstance()) ->getAcl(); } }

SomeAclService::getInstance($aclName) returns the RediskaAcl container with name: $aclName.

<?php class SomeAclService { /** * * Enter description here ... * @var unknown_type */ private static $_instance = array(); /** * * Enforce singleton and prevent access to constructor. */ private function __construct() { } /** * * prevent cloning */ private function __clone() { } /** * provide name of an acl container being requested * @return RediskaAcl */ public static function getInstance($key) { if( !array_key_exists($key, self::$_instance) || !self::$_instance[$key] instanceof RediskaAcl ){ $instance = new RediskaAcl($key); $acl = $instance->getAcl($key); if($acl instanceof RediskaAcl){ self::$_instance[$key] = $acl; } } return self::$_instance[$key]; } }

RediskaAcl extends Zend_Acl, providing methods: getAcl() returns the object, creating the object and saving to the redis namespace if it does not exist setAcl(), allows a manual save of the current Acl in the event it is modified. setRedis() allows for run time Rediska instance configuration.

Model_BugsServiceAcl provides the mechanisms by which first time creation of the Acl is realized, this may be a Mapper to the database models that would generate the Acl and return the RediskaAcl object that is then saved to the redis namespace.

<?php /** * * This could be a mechanism that builds acl lists from the database or file * based storage. * @author zircote * */ class Model_BugsServiceAcl { public function getAcl() { $acl = new RediskaAcl('BugsService'); $acl->removeRoleAll()->removeAll(); $acl->addRole(new Zend_Acl_Role('guest')) ->addRole(new Zend_Acl_Role('member'),'guest') ->addRole(new Zend_Acl_Role('admin'), 'member') ->addRole(new Zend_Acl_Role('someAdmin'), 'admin') ->addRole(new Zend_Acl_Role('someMember'), 'member') ->addRole(new Zend_Acl_Role('someGuest'), 'guest') ->addResource(new Zend_Acl_Resource('someMemberResource')) ->addResource(new Zend_Acl_Resource('someGuestResource')) ->addResource(new Zend_Acl_Resource('someAdminResource')) ->deny() ->allow('guest', 'someGuestResource') ->allow('member', 'someMemberResource') ->allow('admin', 'someAdminResource'); return $acl; } }

RedisAclTest demonstrates the use and verification of proper functionality of the Acl roles and resources.

<?php require_once 'Rediska.php'; require_once '../example/RediskaAcl.php'; require_once '../example/SomeAclService.php'; require_once '../example/model/BugsServiceAcl.php'; require_once 'PHPUnit/Framework/TestCase.php'; /** * RediskaAcl test case. */ class RediskaAclTest extends PHPUnit_Framework_TestCase { /** * @var RediskaAcl */ private $RediskaAcl; /** * Prepares the environment before running a test. */ protected function setUp () { parent::setUp(); $rediska = new Rediska(); $this->RediskaAcl = SomeAclService::getInstance('BugsService'); } /** * Cleans up the environment after running a test. */ protected function tearDown () { $this->RediskaAcl = null; parent::tearDown(); } /** * */ public function testAssertions() { $acl = $this->RediskaAcl; $this->assertTrue($acl->isAllowed('someGuest', 'someGuestResource')); $this->assertTrue($acl->isAllowed('someAdmin', 'someAdminResource')); $this->assertTrue($acl->isAllowed('someMember', 'someMemberResource')); /* verify proper denial */ $this->assertFalse($acl->isAllowed('someGuest', 'someAdminResource')); $this->assertFalse($acl->isAllowed('someGuest', 'someAdminResource')); $this->assertFalse($acl->isAllowed('someGuest', 'someMemberResource')); $this->assertFalse($acl->isAllowed('someMember', 'someAdminResource')); } }

Finally a short example of runtime usage

Testing Web-Service Clients With Zend Framework

Jun 4th, 2011

It seems the majority of my time these days is spent writing clients to consume all of the fantastic web-services that people and companies create for us, we are the fortunate beneficiaries of these peoples efforts. Developing clients to consume web-services has at times the additional sticky points that other efforts development may not, there may be a case were we can not afford to make actual real-live calls to an endpoint (no test sandbox, monetary charges or we simply do not possess actual access to the endpoint.) In these case and most especially while testing we do not want to make ‘real-live’ calls to the endpoint. It is not nor should it be the purpose of our tests to test the endpoints performance. A functional test of an endpoint is unrelated to the client libraries we have developed and wish to test and as such should never be dependent on the endpoint for testing its performance characteristics.

I hate reinventing the wheel for common problems that many very smart people have already solved and solved well; which is why most of my personal development is based on a framework, specifically Zend Framework. The Zend Framework has great support for testing in a vast majority of its components and for the purpose of this article we will be utilizing the Zend_Http_Client for the examples.

The strategy for testing web-services is to simply mock the Zend_Http_Client_Adapter_* the request employs; each test will decide in the setup of the test what status code will be sent, what headers and what the body content will contain. The approach I take with this is creating static files within a fixtures directory ( tests/fixtures/http/someEndpoint.200.xml), making an effort to identify each documents purpose and how it should be used in the test. I may include in these files the any number of unwanted errors, malformed documents entities in an attempt to expose weaknesses in my handling, (this is especially handy when bugs are discovered that are undocumented in the provider API or unforeseen in development):

<?xml version='1.0' encoding='UTF-8'?> <eveapi version="2"> <currentTime>2010-10-05 20:28:55</currentTime> <result> <userID>3000000</userID> <paidUntil>2011-01-01 00:00:00</paidUntil> <createDate>2004-01-01 00:00:00</createDate> <logonCount>9999</logonCount> <logonMinutes>9999</logonMinutes> <rowset name="Offers" key="offerID" columns="offerID,offeredDate,from,to,ISK" /> </result> <cachedUntil>2010-10-05 20:33:55</cachedUntil> </eveapi>

Examples of the http response status and content-type should reside in strings similar to the following (note additional headers may be appended following this forming the expected document preamble:

The test belows demonstrates the key points of setting up the test; the setup method provisions the class being tested which in this case extends the Zend_Http_Client. This provides a method setAdapter; with this method we are able to provide the Zend_Http_Client_Adapter_Test for use in our testing. We will test one method, accountStatus and are only demonstrating one test case testApiSuccess within this test case we read in the fixtures file contents and append them to the responseHeader we declared in the #setUp method; this string is passed to the call:$this->Api->getAdapter()->setResponse($fixture); and becomes the desired result of our web-service call. This process of mock returns affords us the ability to generate infinite result sets across a varying range of expected or anticipated failure scenarios.

Adding DocBlox to Your Continuous Integration

Jun 2nd, 2011

Recently inspired by Sebastian Bergmanns, jenkins-php.org I have begun making a push to put all of my projects both personal and professional under continuous integration management; however one project I work with was so large it was impossible to complete the build. This lead me to discover DocBlox: ”a Documentation Generation Application (DGA) for use with PHP applications.” It was built with this problem in mind and is gaining rapid adoption throughout the PHP community.

Integrating DocBlox in your Jenkins instance is simple and straight forward implementing the changes are as follows:

Discover and install DocBlox.

*note DocBlox requires libxslt support within PHP as well as http://www.graphviz.org/.

# DocBlox does require xsl support sudo apt-get install php5-xsl # or equivelant for your OS sudo pear channel-discover pear.michelf.com # a dependency channel for docblox sudo pear channel-discover pear.docblox-project.org sudo pear install docblox/DocBlox

Convert your build.xml to run docblox.

diff --git build.xml build.xml index 0342c23..2608ddf 100644 --- build.xml +++ build.xml @@ -26,7 +26,7 @@ </target> <target name="parallelTasks" - description="Run the pdepend, phpmd, phpcpd, phpcs, phpdoc and phploc tasks in parallel using a maximum of 2 threads."> + description="Run the pdepend, phpmd, phpcpd, phpcs, docblox and phploc tasks in parallel using a maximum of 2 threads."> <parallel threadCount="2"> <sequential> <antcall target="pdepend" /> @@ -34,7 +34,7 @@ </sequential> <antcall target="phpcpd" /> <antcall target="phpcs" /> - <antcall target="phpdoc" /> + <antcall target="docblox" /> <antcall target="phploc" /> <antcall target="phpcb" /> </parallel> @@ -83,9 +83,9 @@ </exec> </target> - <target name="phpdoc" description="Generate API documentation using PHPDocumentor"> - <exec executable="phpdoc"> - <arg line="-d ${source} -t ${basedir}/build/api" /> + <target name="docblox" description="Generate API documentation using DocBlox"> + <exec executable="docblox"> + <arg line="run -d ${source} -t ${basedir}/build/api" /> </exec> </target>

Capturing Ec2 Instance Meta-data

May 31st, 2011

A simple class to grab the meta data of an EC2 instance for shell scripting as well as use in other actions on the server. I utilize it as part of the cluster member adding and deleting when autoscaling instances.

<?php require_once 'Zend/Service/Abstract.php'; /** * * * @author zircote@zircote.com * * <code> * <?php * $metadata = new Zircote_Service_Ec2_Metadata; * echo $metadata->amiID; * echo $metadata->hostname; * echo $metadata->instanceId * echo $metadata->kernelId * echo $metadata->userData; * echo $metadata->publicHostname; * </code> * <p>CLI example (but note curl -s would probably be more suitable)</p> * <code> * #!/usr/bin/env php * <?php * require_once 'Zircote/Service/Ec2/Metadata.php'; * $metadata = new Zircote_Service_Ec2_Metadata; * try{ * file_put_contents('php://stdout',$metadata->__get($_SERVER['argv'][1])); * } catch (Exception $e){ * file_put_contents('php://stderr', $e->getMessage()); * exit(0); * } * </code> */ class Zircote_Service_Ec2_Metadata extends Zend_Service_Abstract { protected $_endpoint = 'http://169.254.169.254'; protected $_methods = array( 'amiID' => '/latest/meta-data/ami-id', 'amiLaunchIndex' => '/latest/meta-data/ami-launch-index', 'amiManifestPath' => '/latest/meta-data/ami-manifest-path', 'ancestorAmiIds' => '/latest/meta-data/ancestor-ami-ids', 'blockDeviceMapping' => '/latest/meta-data/block-device-mapping/', 'hostname' => '/latest/meta-data/hostname', 'instanceAction' => '/latest/meta-data/instance-action', 'instanceId' => '/latest/meta-data/instance-id', 'instanceType' => '/latest/meta-data/instance-type', 'kernelId' => '/latest/meta-data/kernel-id', 'localHostname' => '/latest/meta-data/local-hostname', 'localIpv4' => '/latest/meta-data/local-ipv4', 'placement' => '/latest/meta-data/placement/', 'publicHostname' => '/latest/meta-data/public-hostname', 'publicIpv4' => '/latest/meta-data/public-ipv4', 'publicKeys' => '/latest/meta-data/public-keys/', 'ramdiskId' => '/latest/meta-data/ramdisk-id', 'reservationId' => '/latest/meta-data/reservation-id', 'securityGroups' => '/latest/meta-data/security-groups', 'userData' => '/latest/user-data', ); public function __get($name) { if(!array_key_exists($name, $this->_methods)){ throw new Exception(sprintf('method [%s] does not exist', $name)); } self::getHttpClient()->setUri($this->_endpoint) ->getUri()->setPath($this->_methods[$name]); $result = self::getHttpClient()->request(); if($result->getStatus() == 200){ return $result->getBody(); } else { return false; } } }

Starting a Zend Framework Project [2/2]

May 15th, 2011

Previously I discussed the creation of a ZF project skeleton; having established the test suite, build file, phpdoc and phpcs processing, we can now begin building the database models. I will also expand on relationships within the models and will cover the implementation of model relationships using Zend_Db_Table_Relationship.

The Database

For the purpose of this entry, I will utilize the database model described in the Zend Framework documentation; this database contains four tables:

accounts
products
bugs
bugs_products

To create the database follow, the commands outlined below. Be sure to ‘cat’ the contents of the following gist into db/development.sql:

prompt> mkdir db prompt> cat > db/development.sql Contents of development.sql

^c prompt> sqlite3 --init db/development sqlite> .read ./db/development.sql sqlite> .tables accounts bugs bugs_products products sqlite> .quit

CREATE TABLE accounts ( account_name VARCHAR(100) NOT NULL PRIMARY KEY ); CREATE TABLE products ( product_id INTEGER NOT NULL PRIMARY KEY, product_name VARCHAR(100) ); CREATE TABLE bugs ( bug_id INTEGER NOT NULL PRIMARY KEY, bug_description VARCHAR(100), bug_status VARCHAR(20), reported_by VARCHAR(100) REFERENCES accounts(account_name), assigned_to VARCHAR(100) REFERENCES accounts(account_name), verified_by VARCHAR(100) REFERENCES accounts(account_name) ); CREATE TABLE bugs_products ( bug_id INTEGER NOT NULL REFERENCES bugs, product_id INTEGER NOT NULL REFERENCES products, PRIMARY KEY (bug_id, product_id) );

INSERT INTO accounts values ('zircote'); INSERT INTO accounts values ('zombified'); INSERT INTO accounts values ('caroro'); INSERT INTO products (product_id,product_name) values (1,'Skulk'); INSERT INTO products (product_id,product_name) values (2,'EveLib'); INSERT INTO products (product_id,product_name) values (3,'Amarium'); INSERT INTO bugs ('bug_description','bug_status','reported_by','assigned_to','verified_by') VALUES ('minor problem with build status', 'EMERG','zircote','caroro','zombified'); INSERT INTO bugs_products VALUES (1,2); INSERT INTO bugs_products VALUES (2,3); INSERT INTO bugs_products VALUES (3,1);

Now that your database is created we may generate the table models.

Table Models

To generate table models, we will employ the zf cli providers; it should be noted that while it is possible to create them by hand this does not maintain the manifest. .zfproject.xml . The commands to create the models are as follows:

prompt> zf configure db-adapter "adapter= Pdo_Sqlitee&dbname=../db/development" development A db configuration for the development section has been written to the application config file. prompt> zf create dbtable Accounts accounts Creating a DbTable at /Users/zircote/Workspace/ZendDb/application/models/DbTable/Accounts.php Updating project profile '/Users/zircote/Workspace/ZendDb/.zfproject.xml' prompt> zf create dbtable Bugs bugsCreating a DbTable at /Users/zircote/Workspace/ZendDb/application/models/DbTable/Bugs.php Updating project profile '/Users/zircote/Workspace/ZendDb/.zfproject.xml' prompt> zf create dbtable BugsProducts bugs_products Creating a DbTable at /Users/zircote/Workspace/ZendDb/application/models/DbTable/BugsProducts.php Updating project profile '/Users/zircote/Workspace/ZendDb/.zfproject.xml'

prompt> zf create dbtable Products products Creating a DbTable at /Users/zircote/Workspace/ZendDb/application/models/DbTable/Products.php Updating project profile '/Users/zircote/Workspace/ZendDb/.zfproject.xml'

It should be noted that additional parameters are available. The list of parameters are as follows:

name: the models name, this will be in addition to the namespace portion; ie App_Model_DbTable_
actual-table-name: the table name within the database
module: the module the model will reside, in this case default in which case we submit nothing
force-overwrite: whether to rewrite the model

It should be noted that commands in the ‘zf’ project provider will also accept parameters in the following manner -f force-rewrite -m module -n name -a actual-table-name

Table Relationships

The Zend_Db package also provides the tools to create and maintain relations between models enabling a series of methods that allow for child and parent queries from result row sets. As the db models are extended from Zend_Db_Table there are two properties of interest, Zend_Db_Table::dependentTables and Zend_Db_Table::referenceMap.

We will begin with the ZendDb_Model_DbTable_Accounts and declare our dependant table, ZendDb_Model_DbTable_Bugs as an array member of the ZendDb_Model_DbTable_Accounts::referenceMap property. Following the ZendDb_Model_DbTable_Accounts model, we will next detail the ZendDb_Model_DbTable_Bugs model and associated references, and dependencies. Within the bugs table three columns are dependencies of accounts table, reported_by, assigned_to, and verified_by each of which references accounts. This is represented in the model ZendDb_Model_DbTable_Bugs::referenceMap as follows:

<?php class ZendDb_Model_DbTable_Bugs extends Zend_Db_Table_Abstract { /** * * table name * @var string */ protected $_name = 'bugs'; /** * * table dependencies, this should be the class name of the model which * defines the dependency. * @var array */ protected $_dependentTables = array('ZendDb_Model_DbTable_BugsProducts'); /** * * Reference map to parent model defined as * - columns: column name (string) * - refTableClass: the classname of the model definine the table * - refColumns the parent objects column name representative of this * reference. * onDelete: the action to take when the parent record is deleted, this * is intended to serve as a replacement for RDBMS that do no support * DRI, i.e. MyISAM, Sqlite, etc. * onUpdate: the action to take when the parent record is updated, see * onDelete above. * * @var array */ protected $_referenceMap = array( 'Reporter' => array( 'columns' => 'reported_by', 'refTableClass' => 'ZendDb_Model_DbTable_Accounts', 'refColumns' => 'account_name' ), 'Engineer' => array( 'columns' => 'assigned_to', 'refTableClass' => 'ZendDb_Model_DbTable_Accounts', 'refColumns' => 'account_name' ), 'Verifier' => array( 'columns' => array('verified_by'), 'refTableClass' => 'ZendDb_Model_DbTable_Accounts', 'refColumns' => array('account_name') ) );

}

For the cascading actions for Zend_Db_Table::_referenceMap there are three class constants provided for declaration:

Zend_Db_Table::CASCADE
Zend_Db_Table::RESTRICT
Zend_Db_Table::SET_NULL

Additional details maybe found at:

Zend_Db_Table_Definition

As an alternative to defining relationships within each model there is another option, Zend_Db_Table_Definition for this projects database definitions. I would prefer to maintain the definitions within the application.ini and utilize the resource autoloader to place it within a Zend_Registry container (note: it is possible to utilize a separate .ini file for the database definition.) It will also be necessary to change the models to extend from the Zend_Db_Table instead of Zend_Db_Table_Abstract , in order to gain the constructor functionality required to define the definition and key specific to each model. Within the models we may now define our database definition as well as the definition key in the constructor. To begin the changes required to enable the table definitions, we first must create the resource entries within the application.ini. These definitions are laid out in the .ini in the same manner as an array. Note the first keyname (‘resources’) is required so the bootstraper will seek to use it to find the bootstrap method within the Bootstrap class.

[production] phpSettings.display_startup_errors = 0 phpSettings.display_errors = 0 includePaths.library = APPLICATION_PATH "/../library" bootstrap.path = APPLICATION_PATH "/Bootstrap.php" bootstrap.class = "Bootstrap" resources.frontController.controllerDirectory = APPLICATION_PATH "/controllers" resources.frontController.params.displayExceptions = 0 resources.dbDefinition.Accounts.name = "accounts" resources.dbDefinition.Accounts.dependentTables[] = "Bugs" resources.dbDefinition.Bugs.name = "bugs" resources.dbDefinition.Bugs.dependentTables[] = "ZendDb_Model_DbTable_BugsProducts" resources.dbDefinition.Bugs.referenceMap.Reporter.columns[] = "reported_by" resources.dbDefinition.Bugs.referenceMap.Reporter.refTableClass = "ZendDb_Model_DbTable_Accounts" resources.dbDefinition.Bugs.referenceMap.Reporter.refColumns[] = "account_name" resources.dbDefinition.Bugs.referenceMap.Engineer.columns[] = "assigned_to" resources.dbDefinition.Bugs.referenceMap.Engineer.refTableClass = "ZendDb_Model_DbTable_Accounts" resources.dbDefinition.Bugs.referenceMap.Engineer.refColumns[] = "account_name" resources.dbDefinition.Bugs.referenceMap.Verifier.columns[] = "verified_by" resources.dbDefinition.Bugs.referenceMap.Verifier.refTableClass = "ZendDb_Model_DbTable_Accounts" resources.dbDefinition.Bugs.referenceMap.Verifier.refColumns[] = "account_name" resources.dbDefinition.Products.name = "products" resources.dbDefinition.Products.dependentTables[] = "ZendDb_Model_DbTable_BugsProducts" resources.dbDefinition.BugsProducts.name = "bugs_products" resources.dbDefinition.BugsProducts.referenceMap.Bug.columns[] = "bug_id" resources.dbDefinition.BugsProducts.referenceMap.Bug.refTableClass = "ZendDb_Model_DbTable_Bugs" resources.dbDefinition.BugsProducts.referenceMap.Bug.refColumns[] = "bug_id" resources.dbDefinition.BugsProducts.referenceMap.Product.columns[] = "product_id" resources.dbDefinition.BugsProducts.referenceMap.Product.refTableClass = "ZendDb_Model_DbTable_Products" resources.dbDefinition.BugsProducts.referenceMap.Product.refColumns[] = "product_id" appnamespace = "ZendDb_" [staging : production] [testing : production] phpSettings.display_startup_errors = 1 phpSettings.display_errors = 1 [development : production] phpSettings.display_startup_errors = 1 phpSettings.display_errors = 1 resources.frontController.params.displayExceptions = 1

resources.db.adapter = "Pdo_Sqlite" resources.db.params.dbname = APPLICATION_PATH "/../db/development"

Next we create the resource bootrap method within the Bootstrap.php. The goal of this is to load and instantiate the Zend_Db_Table_Definition object and store it within a Zend_Registry container for use by our models.

<?php /* * * The Application Bootstrap * @author zircote * @package ZendDb * / class Bootstrap extends Zend_Application_Bootstrap_Bootstrap { /** * * @return Zend_Db_Table_Definition */ protected function _initDbDefinition () { /** * * load the application config values so we may use them. * @var Zend_Config */ $options = $this->getOption('resources'); /** * * instantiate the Db definition * @var Zend_Db_Table_Definition */ $definition = new Zend_Db_Table_Definition($options['dbDefinition']); /** * place the Zend_Db_Table_Definition into a registry container for * access. */ Zend_Registry::set('dbDefinition', $definition); return $definition; }

}

Next, we must modify our models to reflect the changes, namely the constructor. Within these models constructors we pass the definition key that corresponds to the class in question as the first parameter; with the second parameter, we will pass the definition object which we will acquire from the Zend_Registry container created within the bootstrap. We must do this for all database models.

<?php class ZendDb_Model_DbTable_Accounts extends Zend_Db_Table { public function __construct(){ parent::__construct('Accounts', Zend_Registry::get('dbDefinition')); } } class ZendDb_Model_DbTable_Bugs extends Zend_Db_Table { public function __construct(){ parent::__construct('Bugs', Zend_Registry::get('dbDefinition')); } } class ZendDb_Model_DbTable_BugsProducts extends Zend_Db_Table { public function __construct () { parent::__construct('BugsProducts', Zend_Registry::get('dbDefinition')); } } class ZendDb_Model_DbTable_Products extends Zend_Db_Table { public function __construct () { parent::__construct('Products', Zend_Registry::get('dbDefinition')); }

}

Having updated the models, application.ini and Bootstrap.php examples of their magic methods, as well as explicit calls, may be found in the Zend Framework reference guide; I have also provided the following snips to demonstrate explicit calls:

<?php $products = new ZendDb_Model_DbTable_Products(); $products = $products->fetchAll(); foreach ($products as $product) { echo '==============', PHP_EOL; echo 'Product', PHP_EOL; print_r($product->toArray()); $bp = $product->findManyToManyRowset( 'ZendDb_Model_DbTable_Bugs', // Find This data 'ZendDb_Model_DbTable_BugsProducts', // Joined on this table 'Product');// using this rule foreach ($bp as $bug) { echo 'Bugs:', PHP_EOL; print_r($bug->toArray()); $reporter = $bug->findParentRow( 'ZendDb_Model_DbTable_Accounts', 'Reporter'); echo '$engineer:', PHP_EOL; print_r($reporter->toArray()); $engineer = $bug->findParentRow( 'ZendDb_Model_DbTable_Accounts', 'Engineer'); echo '$verifier:', PHP_EOL; print_r($engineer->toArray()); $verifier = $bug->findParentRow( 'ZendDb_Model_DbTable_Accounts', 'Verifier'); echo '$verifier:', PHP_EOL; print_r($verifier->toArray()); } } echo '==============', PHP_EOL;</code></pre></noscript></div> To put the final touches on the database related provisioning, an often overlooked key component of the database setup is the Zend_Db_Table::$_defaultMetadataCache. The most trivial means of managing this is within the application.ini utilizing Zend_Cache_Manager via the Zend_Application_Resource_Cachemanager and detailed in enabling it for the database in Zend_Application_Resource_Db. By taking the time to layout the supporting technologies into your Zend Framework Application, many headaches and obstacles may be easily avoided; to allow developers to focus on the requirements of the application. In the next post, I will explore a simple approach to database migrations utilizing Rob Allens Akrabat library, as well as, custom providers to facilitate deployment operations and application setup. Starting a Zend Framework Project [1/2] May 13th, 2011 Recently I have been asked to introduce and assist with starting Zend Framework projects; over time I have learned through trial, error and banging my head against a wall a few tricks, shortcuts and nuances. In this series I will take the life cycle of a Zend Framework project from beginning to never-end and cover each portion as completely as I can and provide a place for discussion to improve my process or detail it further. It should be clear the intent of this article is not to discuss development methodology or any process outside of the scope of using Zend Framework itself. A project is born. Beginning with a name for the project established (for the purpose of this write-up I have decided on ZendDB) we should begin by creating the project reference within Eclipse, Zend Studio or your preferred editors method. Before we begin any code creation or development we need to insure we have the required tools on our system to begin.

Following this we must establish where we will edit, build and work on the project and initialize the project contents using the zf tool, create additional directories for build and validation.

# If you use Zend Studio or Eclipse PDT create a new PHP Project named ZfBugs in your workspace workspace could easily be in /usr/local/zend/apache2/htdocs if you utilize Zend Server the location is up to you cd ~/${Workspace} zf create project ZendDb create the build structure, build.xml and build container touch ZendDb/build.xml edit the build.xml

mkdir ZendDb/build cd ZendDb/build touch phpcs.xml phpunit.xml

The build related files and directories tie all components into a collective suite of tools, utilizing ant or phing we will be able to execute all reports as one single command. This practice also lays the foundation for continuous integration, which this project will evolve into as time goes on. To enable each of these tools we will use we must create their associated configurations, begin by editing build.phpcs.xml

#edit the phpcs.xml<?xml version="1.0"?> <ruleset name="Zend Standard"> <description>Zend Standard, exclude extraneous</description> <exclude-pattern>*/tests/*</exclude-pattern> <exclude-pattern>*/db/*</exclude-pattern> <exclude-pattern>*.js</exclude-pattern> <exclude-pattern>*.css</exclude-pattern> <rule ref="Zend" />

</ruleset>

I have intentionally kept this example simple and to the point, I strongly recommend you visit the PHP_CodeSniffer project for more details on its capabilities. Once complete the PHPUnit configuration is setup with the various types of reports it should generate, the test suites it will cover.

<phpunit bootstrap="../tests/bootstrap.php"> <testsuite name="ZendDb Test Suite"> <directory>../tests/application</directory> </testsuite> <testsuite name="ZendDb Test Suite"> <directory>../tests/library</directory> </testsuite> <logging> <log type="coverage-html" target="coverage" title="ZendDb" charset="UTF-8" yui="true" highlight="true" lowUpperBound="35" highLowerBound="70" /> </logging> <filter> <whitelist> <directory suffix=".php">library/</directory> </whitelist> </filter>

</phpunit>

For more details on PHPUnits report capabilities and xml configuration options visit the PHPUnit Documentation. Now this is established we may bring it all together with the ant build.xml file. This file will allow us to create/remove required build artifacts, report directories and execute phpunit, phpcs and phpdoc all in a single stack.

<?xml version="1.0" encoding="UTF-8"?> <project name="ZendDb" default="build" basedir="."> <property name="source" value="." /> <target name="clean" description="Clean up and create report directories">  <delete dir="${basedir}/build/api" /> <delete dir="${basedir}/build/coverage" /> <delete dir="${basedir}/build/logs" /> <mkdir dir="${basedir}/build/api" /> <mkdir dir="${basedir}/build/coverage" /> <mkdir dir="${basedir}/build/logs" /> <touch file="${basedir}/build/logs/codeSniffer.txt" /> </target> <target name="phpunit" description="Run PHPUnit"> <exec executable="phpunit" failonerror="true"> <arg line="-c ${basedir}/build/phpunit.xml" /> </exec> </target> <target name="phpcs" description="Generate codeSniffer.txt using PHP_CodeSniffer"> <exec executable="phpcs"> <arg line="--report=full --report-file=${basedir}/build/logs/codeSniffer.txt --standard=${basedir}/build/phpcs.xml ${basedir}" /> </exec> </target> <target name="phpdoc" description="Generate API documentation using PHPDocumentor"> <exec executable="phpdoc"> <arg line="-d ${source} -t ${basedir}/build/api" /> </exec> </target> <target name="build" depends="clean,phpunit,phpcs,phpdoc" />

</project>

For a more detailed overview of an ant build file please see Apache Ant; it should also be noted that Phing is a php alternative to ant and should be interoperable with ant. To utilize the build script you need only execute ant within the top-level directory of the project, the example file provided will create phpdocs, code sniff the project and execute all unit tests. Reports will be stored within build/* for review.

In the next edition to this I will cover database configuration and model creation.

Cleaning Up Your Product

May 11th, 2011

I recently made the embarrassing mistake of creating a push request to a well respected PHP author’s project and to my horror I saw he had to ‘detabify’ my push. I had recently reset my Zend Studio workspace and neglected to reconfigure the default format standard from PHP => Zend.

Once I sorted out my studio client, I began to look into ways to test this all before it’s even committed, to insure I have not overlooked a detail. To help with syntax, formatting and style, I have employed PHP_CodeSniffer, a PEAR package. Its use is simple and straightforward with informational documentation; Rulesets or Sniffs are varying and customizable in the form of a ruleset xml file. Available Sniff Collections are grouped as follows:

Generic
Squiz
PHP
Zend
PEAR

Each brings its own standards ruleset for customization. I have chosen to implement the Zend Sniff in the form of a file named phpcs.xml, I exclude certain file types .js, .css all test files, data files and, for good measure, .svn directories.

<?xml version="1.0"?> <ruleset name="Zend Standard"> <description>A custom coding standard</description> <exclude-pattern>*/tests/*</exclude-pattern> <exclude-pattern>*/data/*</exclude-pattern> <exclude-pattern>*/.svn/*</exclude-pattern> <exclude-pattern>*.js</exclude-pattern> <exclude-pattern>*.css</exclude-pattern> <rule ref="Zend" /> </ruleset>

I place this file in a directory inside /tests/build/ where you place your file strictly depends ons on your personal preferences. To install PHP_CodeSniffer execute the following commands:

There are several choices of reports, for the purpose of command line reporting I choose one or all:

source [provides a description of what rules the violations are related]
full [detail of all violations in the code base, line of violation and rule
summary [ a high level assessment of all rule violations]

Examples of the report type’s outlines and the associated commands to produce each with the afore mentioned rules file.

[gist id=”965105”/]

While it’s possible, the report will be sizable depending on the projects size; however this is an opportune time to begin cleaning up your existing code base; but more importantly, it gives you the tools required to insure your code is clean, consistant and within community expectations.

If you, your project or employer have your own specification of code standards, I would encourage you to create your own rule set in combinations. Should the existing sniffs not be sufficient, it’s advised to create your own sniffs to accommodate your needs.

The PHP_CodeSniffer project provides an annotated xml ruleset file to serve as a guideline and tutor; as well as the documentation associated with its use.

Skulk PEAR Release 0.1.2

May 9th, 2011

I am happy to announce the release of Skulk 0.1.2 for use with Prowl. This release introduces a command line zf provider for your messaging pleasure. More on its use and source code may be found at github@Skulk.

For PEAR installation and channel information, please see: http://pear.zircote.com/ for more details.

Setting up and using the Provider

Create the user config file for Zend_Tool

zf create config

It will be located at ~/.zf.ini and can be opened in your preferred editor. Insure the Skulk library directory is in the include path, then execute the following:

$ zf enable config.provider Skulk_Tool_ProwlProvider Provider/Manifest 'Skulk_Tool_ProwlProvider' was enabled for usage with Zend Tool.

You are ready to set up the configuration and send a message.

$ zf ? prowl Zend Framework Command Line Console Tool v1.11.5 Actions supported by provider "Prowl" Prowl zf addkey prowl keyname apikey zf delkey prowl keyname zf send-message prowl message priority[=normal] description url

Add your API key(s) with the following command:

zf addkey prowl

Now send a message:

$ zf send-message prowl 'test message' 988 messages left until May 8, 2011 5:58:48 PM

Writing a Custom Provider

May 8th, 2011

I decided I wanted to have a CLI interface to my Skulk library and provide a method to send messages from scripts without requiring any additional coding overhead. To do this I employed the Zend_Tool CLI [zf] and began by deciding on the functionality it would possess. After some thought, I settled ultimately that sending messages would be sufficient for the time being; however, it would require some supporting methods for api key management, naming, adding and deleting.

class Skulk_Tool_ProwlProvider extends Zend_Tool_Project_Provider_Abstract
{
}

I started the process by creating the provider class Skulk_Tool_ProwlProvider; the “Provider” portion of the name is important as the IncludePathLoader will not otherwise recognize the class as such and extending the Zend_Tool_Project_Provider_Abstract.

require_once ('Zend/Tool/Project/Provider/Abstract.php');
class Skulk_Tool_ProwlProvider extends Zend_Tool_Project_Provider_Abstract{
    public function addkey($keyname, $apikey){
    }
    public function delkey($keyname){
    }
    public function sendMessage($message, $priority = 'normal', $description = null, $url = null){
    }
}

Having established the class we may now move on to the public methods. We have established our required methods as follows:

Adding an api key
Removing an apikey
Sending a message

require_once ('Zend/Tool/Project/Provider/Abstract.php');

class Skulk_Tool_ProwlProvider extends Zend_Tool_Project_Provider_Abstract{

    public function addkey($keyname, $apikey){
        if(!$this->_registry->getConfig()->skulk){
            $skulk = array(
                'defaults' => array( 'priority' => 'normal'),
                'keys' => array($keyname => $apikey)
            );
            $this->_registry->getConfig ()->skulk = $skulk;
            $this->_registry->getConfig ()->save();
        } else {
            if($this->_registry->getConfig()->skulk->keys){
                $this->_registry->getConfig()->skulk->keys->$keyname = $apikey;
            } else {
                $this->_registry->getConfig()->skulk->keys = array();
                $this->_registry->getConfig()->skulk->keys->$keyname = $apikey;
            }
            $this->_registry->getConfig ()->save();
        }
    }
}

To add the API key we will need to be able to write to the configuration file in the user’s home directory or where otherwise specified at runtime. This will require interaction with the internal registry property; testing if the relevant properties exist in the configuration, modify it in the event it does or initialize it if not. We perform the various configuration operations through the _registry property as demonstrated in the example below adding the required options followed by the save method to write the configuration file.

$this->_registry->getResponse()
    ->appendContent('api key saved!', array('color' => 'green'));

We also may want to provide feedback to the user regarding the status of the operation. This also is provided through the access of the _registry property with the response object, which may be formatted for color, tab depth, centering and blocking. For the purpose of this demonstration, we will use the color decorator to make the output green, leaving our example well established and ready for the next steps.

    public function addkey($keyname, $apikey){
        $skulk = $this->_registry->getConfig()->skulk;
        if(!$skulk){
            $this->_registry->getResponse()
                ->appendContent('initializing default config for Skulk...', array('color' => 'cyan'))
                ->appendContent('default priority [normal]...', array('color' => 'cyan'));
            $skulk = array(
                'defaults' => array( 'priority' => 'normal'),
                'keys' => array($keyname => $apikey)
            );
            $this->_registry->getConfig ()->skulk = $skulk;
            $this->_registry->getConfig ()->save();
        } else {
            if($this->_registry->getConfig()->skulk->keys){
                $this->_registry->getConfig()->skulk->keys->$keyname = $apikey;
            } else {
                $this->_registry->getConfig()->skulk->keys = array();
                $this->_registry->getConfig()->skulk->keys->$keyname = $apikey;
            }
            $this->_registry->getConfig ()->save();
        }
        $this->_registry->getResponse()
            ->appendContent('api key saved!', array('color' => 'green'));
    }

Now to add the delkey method using the same tools as before, with the addition of an unset on the existing property followed by the save method, as in the addkey logic writing the file with the updated values.

    public function delkey($keyname){
        $config = $this->_registry->getConfig();
        if($config->skulk->keys->$keyname){
            unset($config->skulk->keys->$keyname);
            $this->_registry->getConfig ()->save();
            $this->_registry->getResponse()
                ->appendContent($keyname . ' apikey removed...', array('color' => 'red'));
        } else {
            $this->_registry->getResponse()
                ->appendContent($keyname . ' apikey does not exist...', array('color' => 'red'));
        }
    }

Finally this brings us to the sendMessage call, which will require ancillary methods to create the outgoing message container, the API object that sends the message as well as a priorities method to convert users input into a value expected by the API actor. The details of which are less about Providers and more about the code being employed, leaving us with a final product ready to send messages to an iOS device near you.

require_once ('Zend/Tool/Project/Provider/Abstract.php');

/**
 * @author zircote
 *
 * zf enable config.provider Skulk_Tool_ProwlProvider
 * zf create config
 * zf ? prowl
 */
class Skulk_Tool_ProwlProvider extends Zend_Tool_Project_Provider_Abstract
    implements Zend_Tool_Framework_Provider_Pretendable{
    /**
     *
     * @var Skulk_Client_Message
     */
    protected $message;
    /**
     *
     * @var Skulk_Client
     */
    protected $api;
    /**
     *
     * @example zf addkey prowl iPhone sdf234g9i24t09j23r...
     * @param string $keyname
     * @param string $apikey
     */
    public function addkey($keyname, $apikey){
        $skulk = $this->_registry->getConfig()->skulk;
        if(!$skulk){
            $this->_registry->getResponse()
                ->appendContent('initializing default config for Skulk...', array('color' => 'cyan'))
                ->appendContent('default priority [normal]...', array('color' => 'cyan'));
            $skulk = array(
                'defaults' => array( 'priority' => 'normal'),
                'keys' => array($keyname => $apikey)
            );
            $this->_registry->getConfig ()->skulk = $skulk;
            $this->_registry->getConfig ()->save();
        } else {
            if($this->_registry->getConfig()->skulk->keys){
                $this->_registry->getConfig()->skulk->keys->$keyname = $apikey;
            } else {
                $this->_registry->getConfig()->skulk->keys = array();
                $this->_registry->getConfig()->skulk->keys->$keyname = $apikey;
            }
            $this->_registry->getConfig ()->save();
        }
        $this->_registry->getResponse()
            ->appendContent('api key saved!', array('color' => 'green'));
    }

    /**
     *
     * zf delkey prowl iPhone
     * @param string $keyname
     */
    public function delkey($keyname){
        $config = $this->_registry->getConfig();
        if($config->skulk->keys->$keyname){
            unset($config->skulk->keys->$keyname);
            $this->_registry->getConfig ()->save();
            $this->_registry->getResponse()
                ->appendContent($keyname . ' apikey removed...', array('color' => 'red'));
        } else {
            $this->_registry->getResponse()
                ->appendContent($keyname . ' apikey does not exist...', array('color' => 'red'));
        }
    }

    /**
     *
     * zf send-message prowl 'test message' normal 'long description here' 'http://zircote.com'
     * @param string $message
     * @param string $priority
     * @param string $url
     * @param string $description
     */
    public function sendMessage($message, $priority = 'normal', $description = null, $url = null){
        $this->_init();
        $this->message->setApikey($this->apikeys->toArray())
            ->setEvent($message)
            ->setPriority($this->getPriority($priority))
            ->setDescription($description ? $description : $message);
        if(null !== $url){
            $this->message->setUrl($url);
        }
        $response = $this->api->add($this->message);
        $result = $response->getResult();
        if(key_exists('success', $result)){
            $this->_registry->getResponse()
                ->appendContent($response->getRemaining() . ' messages left until '
                 . $response->getResetDate(), array('color' => 'cyan'));
        } else {
            $this->_registry->getResponse()
                ->appendContent($result['error']['detail'], array('color' => 'red'));
        }

    }

    /**
     *
     * returns integer value for priorityfrom a simple string
     * @param string $priority
     * @return integer
     */
    protected function getPriority($priority){
        $priorities = array(
            'verylow' => Skulk_Client_Message::PRIORITY_VERYLOW,
            'normal' => Skulk_Client_Message::PRIORITY_NORMAL,
            'moderate' => Skulk_Client_Message::PRIORITY_MODERATE,
            'high' => Skulk_Client_Message::PRIORITY_HIGH,
            'emergency' => Skulk_Client_Message::PRIORITY_EMERGENCY
        );
        return  $priorities[strtolower($priority)];
    }

    protected function _init(){
        $this->apikeys = $this->_registry->getConfig()->skulk->keys;
        require_once 'Skulk/Client.php';
        require_once 'Skulk/Client/Message.php';
        $this->message = new Skulk_Client_Message();
        $this->api = new Skulk_Client;
    }

}

When completed it affords us the functionality list:

$ zf ? prowl
Zend Framework Command Line Console Tool v1.11.5
Actions supported by provider "Prowl"
  Prowl
    zf addkey prowl keyname apikey
    zf delkey prowl keyname
    zf send-message prowl message priority[=normal] description url

← Older Blog Archives Newer →