The latest articles on Forem by Yong Dev (@yongdev). https://forem.com/yongdev https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F689747%2Ffc4b4530-be43-428e-b541-c6030c8148cf.png https://forem.com/yongdev en Yong Dev Fri, 16 Jan 2026 10:07:18 +0000 https://forem.com/yongdev/flyenv-the-all-in-one-tool-that-could-replace-your-docker-workflow-4ija https://forem.com/yongdev/flyenv-the-all-in-one-tool-that-could-replace-your-docker-workflow-4ija <p>For the last decade, the local development narrative has been dominated by one giant: <strong>Docker</strong>. While containerization revolutionized how we deploy, it brought a heavy tax to local development, high RAM usage, battery drain, and the complexity of managing <code>docker-compose.yml</code> files for simple tasks.</p> <p>Enter <strong>FlyEnv</strong>, a new contender that promises the convenience of legacy tools like XAMPP or Laragon, but with the power and modern stack support required by today’s full-stack developers.</p> <p>Here is why this tool is turning heads in the developer community.</p> <h2> What is FlyEnv? </h2> <p>FlyEnv is a cross-platform (Windows, macOS, Linux) local environment manager. Unlike Docker, which relies on virtualization and containers, FlyEnv runs services as <strong>native static binaries</strong>.</p> <p>Its goal is simple: eliminate the friction of setting up a development environment. Whether you need a specific version of PHP for a legacy client, the latest Go version for a side project, or a complex stack involving Redis, RabbitMQ, and PostgreSQL, FlyEnv manages it all through a unified GUI or CLI.</p> <h2> Key Features That Stand Out </h2> <h3> 1. Native Performance (No Virtualization) </h3> <p>The biggest selling point of FlyEnv is performance. Because it doesn't use containers, there is no virtualization overhead.</p> <ul> <li> <strong>Startup:</strong> Services start instantly.</li> <li> <strong>Resources:</strong> Running Nginx, MySQL, and PHP via FlyEnv reportedly consumes about <strong>one-third of the resources</strong> required by an equivalent Docker setup.</li> <li> <strong>Battery Life:</strong> For developers working on laptops, avoiding the Docker engine background process can significantly extend battery life.</li> </ul> <h3> 2. True "Polyglot" Support </h3> <p>Older tools like Laragon or MAMP were excellent for PHP but struggled when you needed to introduce Python or Node.js. FlyEnv treats all languages as first-class citizens. It supports:</p> <ul> <li> <strong>Languages:</strong> PHP, Node.js, Java, Go, Python, Ruby, Rust, Bun, Deno, and Erlang.</li> <li> <strong>Web Servers:</strong> Nginx, Apache, Caddy, Tomcat.</li> <li> <strong>Databases:</strong> MySQL, MariaDB, PostgreSQL, MongoDB, Redis, Memcached.</li> <li> <strong>Tools:</strong> Elasticsearch, Mailpit, RabbitMQ.</li> </ul> <h3> 3. Project-Level Isolation &amp; Version Management </h3> <p>One of the hardest things to manage locally is version conflict.</p> <ul> <li> <em>Project A</em> requires Node 14 and PHP 7.4.</li> <li> <em>Project B</em> requires Node 20 and PHP 8.3.</li> </ul> <p>FlyEnv allows you to define these versions per project. When you switch directories in your terminal, FlyEnv can automatically switch the active binaries to match that project's requirements. You can even run different versions of the same language simultaneously on different ports.</p> <h3> 4. Built-in Production Simulators </h3> <p>FlyEnv includes features that mimic production environments to reduce "it works on my machine" errors:</p> <ul> <li> <strong>One-Click SSL:</strong> Instantly generate trusted self-signed certificates for HTTPS testing.</li> <li> <strong>Local Domains:</strong> Easily map <code>.test</code> or <code>.localhost</code> domains to your projects without manually hacking your <code>hosts</code> file.</li> </ul> <h2> FlyEnv vs. Docker: Which Should You Use? </h2> <p>While FlyEnv is impressive, it is not a direct 1:1 replacement for Docker in all scenarios. Here is how to decide:</p> <p><strong>Use FlyEnv if:</strong></p> <ul> <li> <strong>You value speed:</strong> You want to code immediately without waiting for containers to build.</li> <li> <strong>Hardware constraints:</strong> You are on a machine with 8GB or 16GB of RAM and can't afford to give 4GB to Docker.</li> <li> <strong>You are a Full-Stack/Web Dev:</strong> You work primarily with web frameworks (Laravel, Django, Rails, Spring) and standard databases.</li> <li> <strong>You hate config files:</strong> You prefer a GUI where you can just click "Start" on Redis and MySQL.</li> </ul> <p><strong>Stick with Docker if:</strong></p> <ul> <li> <strong>Strict Parity is vital:</strong> You need your local kernel/OS libraries to match production exactly (e.g., specific Linux distros).</li> <li> <strong>Complex Microservices:</strong> You are running an architecture with 15+ different services that need complex networking orchestration.</li> <li> <strong>Team Standardization:</strong> Your team relies on a shared <code>Dockerfile</code> to ensure every single developer has the exact same bits and bytes.</li> </ul> <h2> Conclusion </h2> <p>FlyEnv feels like the spiritual successor to tools like Laragon, but modernized for the 2020s. It bridges the gap between the "install everything manually" chaos and the "heavy virtualization" of Docker.</p> <p>For freelancers, solo developers, and those working on standard web applications, FlyEnv offers a frictionless, lightweight, and incredibly fast development experience. It proves that sometimes, you don't need a container; you just need a better manager.</p> docker productivity tooling webdev Yong Dev Thu, 09 Mar 2023 11:10:42 +0000 https://forem.com/yongdev/adding-typingdna-verify-as-a-2fa-to-your-auth0-login-fcj https://forem.com/yongdev/adding-typingdna-verify-as-a-2fa-to-your-auth0-login-fcj <p>User authentication in web applications has become a major challenge in recent years. One-time passwords (OTPs), for example, are used to authenticate a user's identification; the most common means of delivering OTPs is by SMS to the user's registered cellphone number.</p> <p>TypingDNA, on the other hand, substitutes the usual OTP through SMS with a unique four-word code. In this post, you'll learn how to utilize Auth0 and TypingDNA's Verify2FA to build two-factor authentication.<br> Prerequisite<br> To follow this tutorial, you need the following components:<br> PHP 7.4 (ideally 8.1) installed on your development machine with curl.<br> Composer globally installed.<br> A TypingDNA account. If you are new to TypingDNA, click here to create a free account.<br> An Auth0 account. If you are new to TypingDNA, click here to create a free account.<br> Ngrok to expose your local server.</p> <p>Create the application’s directory.<br> Create and navigate into the project's root directory, labeled <code>authxdna</code>, by running the two commands below in a terminal.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>authxdna <span class="nb">cd </span>authxdna </code></pre> </div> <h2> Install the required dependencies. </h2> <p>Now that the directory for the application has been created, it is time to install the external dependencies:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Library</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td>Guzzle</td> <td>Guzzle is a PHP HTTP client that makes it easy to send HTTP requests and trivial to integrate with web services.</td> </tr> <tr> <td>Psr7</td> <td>PSR-7 message implementation that also provides common utility methods.</td> </tr> <tr> <td>HTTP Factory Guzzle</td> <td>An HTTP Factory using Guzzle PSR7</td> </tr> <tr> <td>Auth0-php</td> <td>This package handles API requests from your application to the Auth0 API endpoint.</td> </tr> <tr> <td>PHPdotenv</td> <td>This package combines variables defined in a<code>.env</code> file with PHP's <code>$_ENV</code> and <code>$_SERVER</code> Superglobals.</td> </tr> <tr> <td>Simple PHP router</td> <td>This is a simple and small single class PHP router that can handle the whole url routing for your project.</td> </tr> </tbody> </table></div> <p>Run the command below in your terminal in the application’s root directory to install these dependencies.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>composer require <span class="nt">--with-all-dependencies</span> <span class="se">\</span> guzzlehttp/guzzle <span class="se">\</span> guzzlehttp/psr7 <span class="se">\</span> http-interop/http-factory-guzzle <span class="se">\</span> auth0/auth0-php <span class="se">\</span> steampixel/simple-php-router <span class="se">\</span> vlucas/phpdotenv </code></pre> </div> <p>This will add a vendor folder to your project and download all of the dependencies required to utilize the Auth0 PHP SDK. This will also generate a <code>vendor/autoload.php</code> file, which will be used to load all of the classes required for the application to run. It is essential that you include this autoload file in your project for the SDK to function properly.<br> Starting the Server<br> Since TypingDNA cannot interact with the localhost, we must expose our local server using ngrok. To do this, run this command below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>ngrok http 3000 </code></pre> </div> <p>This creates a bridge that exposes our local server to the web.</p> <p>Our application will now be accessed via the link <a href="https://6b5b-105-112-60-199.ngrok.io">https://6b5b-105-112-60-199.ngrok.io</a> (which would be different in your case, but make sure you use the HTTPS version).<br> !!!tip<br> If you try accessing the site, you might get a 502 bad gateway. This is because we haven’t set up our local server, which we will do much later.<br> !!!tip<br> Add the required environment variables.<br> Once the dependencies have been installed, create a new file called <code>.env</code> in the root directory of your application and paste the code below into it.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code># The URL of your Auth0 tenant domain AUTH0_DOMAIN=https://YOUR_DOMAIN # Your Auth0 application's Client ID AUTH0_CLIENT_ID=YOUR_AUTH0_CLIENT_ID # Your Auth0 application's Client Secret AUTH0_CLIENT_SECRET=YOUR_AUTH0_CLIENT_SECRET # A long, secret value used to encrypt the session cookie. # This can be generated using `openssl rand -hex 32` from your shell. AUTH0_COOKIE_SECRET=YOUR_COOKIE_SECRET # A URL your application is accessible from. Update this as appropriate. AUTH0_BASE_URL=YOUR_NGROK_SERVER_ADDRESS # Your TypingDNA application's Client Id VERIFY_2FA_CLIENT_ID=YOUR_VERIFY_CLIENT_ID # Your TypingDNA application's Client Secret VERIFY_2FA_CLIENT_SECRET=YOUR_VERIFY_CLIENT_SECRET # Your TypingDNA application's Id VERIFY_2FA_APPLICATION_ID=YOUR_VERIFY_APPLICATION_ID </code></pre> </div> <p>Following that, you would add the right value to their variable, which I will guide you through.</p> <p>Configuring Auth0 and TypingDNA.<br> Open your Auth0 dashboard and you should find something similar to this.</p> <p>Now click on the applications dropdown and select the applications link as aligned in the picture above. Click the create application button and a pop-up window appears.</p> <p>Input the application name <code>Authxdna</code> Select the “Regular Web Applications” and click on the "Create" button.<br> You would then be greeted with a “Quick Start” tab. Navigate to the “Settings” tab.</p> <p>You need the following information:<br> Domain<br> Client ID<br> Client Secret<br> Click on the copy icon on the text fields and replace :<br> <code>YOUR_DOMAIN</code> with the value of the domain.<br> <code>YOUR_AUTH0_CLIENT_ID</code> with the value of Client ID.<br> <code>YOUR_AUTH0_CLIENT_SECRET</code> with the value of Client Secret.<br> Also replace <code>YOUR_NGROK_SERVER_ADDRESS</code> with the ngrok address.<br> To generate the cookie secret, run this code in the terminal.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>openssl rand <span class="nt">-hex</span> 32 </code></pre> </div> <p>Setup Auth0 Callback URLs</p> <p>A callback URL is a URL in your application to which Auth0 sends the user after authentication. In the Application Settings, enter the ngrok link (with the respective URI’s as seen in the image below) as the callback URL for your app to the Allowed Callback URLs. If this field is not set, users will be unable to log in and will receive an error.<br> For login (<a href="https://YOUR_SUBDOMAIN.ngrok.io/login">https://YOUR_SUBDOMAIN.ngrok.io/login</a>).<br> For callback (<a href="https://YOUR_SUBDOMAIN.ngrok.io/callback">https://YOUR_SUBDOMAIN.ngrok.io/callback</a>).<br> For logout (<a href="https://YOUR_SUBDOMAIN.ngrok.io/logout">https://YOUR_SUBDOMAIN.ngrok.io/logout</a>).</p> <p>Scroll to the bottom and click on the save button.<br> TypingDNA</p> <p>Log in to the TypingDNA dashboard. The Verify 2FA dashboard will provide you with the client Id and client secret. Copy the values and replace them accordingly in the <code>.env</code> file.</p> <p>To generate the application ID, go to the Settings page by hitting the "Add your first integration" option. When you click the "Add integration" link, a pop-up window appears.<br> Fill in the name and domain fields with 'Authxdna' in the name field and the ngrok link produced previously in the domain field. After that, the application ID is generated. Copy the value and replace it with <code>YOUR_VERIFY_APPLICATION_ID</code> in the <code>.env</code> file.<br> Introducing PHP<br> Create a new file <code>index.php</code> in the root directory in your editor or IDE, then put the content below into it.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="nb">session_start</span><span class="p">();</span> <span class="c1">// Import our router library:</span> <span class="kn">use</span> <span class="nc">Steampixel\Route</span><span class="p">;</span> <span class="c1">// Import the Composer Autoloader to make the SDK classes accessible:</span> <span class="k">require</span> <span class="s1">'vendor/autoload.php'</span><span class="p">;</span> <span class="c1">// Load our environment variables from the .env file:</span> <span class="p">(</span><span class="nc">Dotenv\Dotenv</span><span class="o">::</span><span class="nf">createImmutable</span><span class="p">(</span><span class="k">__DIR__</span><span class="p">))</span><span class="o">-&gt;</span><span class="nf">load</span><span class="p">();</span> <span class="c1">// Now instantiate the Auth0 class with our configuration:</span> <span class="nv">$auth0</span> <span class="o">=</span> <span class="k">new</span> <span class="err">\</span><span class="nf">Auth0\SDK\Auth0</span><span class="p">([</span> <span class="s1">'domain'</span> <span class="o">=&gt;</span> <span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'AUTH0_DOMAIN'</span><span class="p">],</span> <span class="s1">'clientId'</span> <span class="o">=&gt;</span> <span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'AUTH0_CLIENT_ID'</span><span class="p">],</span> <span class="s1">'clientSecret'</span> <span class="o">=&gt;</span> <span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'AUTH0_CLIENT_SECRET'</span><span class="p">],</span> <span class="s1">'cookieSecret'</span> <span class="o">=&gt;</span> <span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'AUTH0_COOKIE_SECRET'</span><span class="p">]</span> <span class="p">]);</span> <span class="c1">// Define route constants:</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'ROUTE_URL_INDEX'</span><span class="p">,</span> <span class="nb">rtrim</span><span class="p">(</span><span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'AUTH0_BASE_URL'</span><span class="p">],</span> <span class="s1">'/'</span><span class="p">));</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'ROUTE_URL_LOGIN'</span><span class="p">,</span> <span class="no">ROUTE_URL_INDEX</span> <span class="mf">.</span> <span class="s1">'/login'</span><span class="p">);</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'ROUTE_URL_CALLBACK'</span><span class="p">,</span> <span class="no">ROUTE_URL_INDEX</span> <span class="mf">.</span> <span class="s1">'/callback'</span><span class="p">);</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'ROUTE_URL_VERIFY'</span><span class="p">,</span> <span class="no">ROUTE_URL_INDEX</span> <span class="mf">.</span> <span class="s1">'/verify'</span><span class="p">);</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'ROUTE_URL_LOGOUT'</span><span class="p">,</span> <span class="no">ROUTE_URL_INDEX</span> <span class="mf">.</span> <span class="s1">'/logout'</span><span class="p">);</span> <span class="nc">Route</span><span class="o">::</span><span class="nf">add</span><span class="p">(</span><span class="s1">'/'</span><span class="p">,</span> <span class="k">function</span> <span class="p">()</span> <span class="k">use</span> <span class="p">(</span><span class="nv">$auth0</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$session</span> <span class="o">=</span> <span class="nv">$auth0</span><span class="o">-&gt;</span><span class="nf">getCredentials</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$session</span> <span class="o">===</span> <span class="kc">null</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// The user isn't logged in.</span> <span class="k">echo</span> <span class="s1">' &lt;!DOCTYPE html&gt; &lt;html lang="en"&gt; &lt;head&gt; &lt;meta charset="UTF-8"&gt; &lt;meta http-equiv="X-UA-Compatible" content="IE=edge"&gt; &lt;meta name="viewport" content="width=device-width, initial-scale=1.0"&gt; &lt;title&gt;Ath0 - Verify&lt;/title&gt; &lt;/head&gt; &lt;body&gt; &lt;p&gt;Please &lt;a href="/login"&gt;log in&lt;/a&gt;.&lt;/p&gt; &lt;/body&gt; &lt;/html&gt;'</span><span class="p">;</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_COOKIE</span><span class="p">[</span><span class="s1">'2fa'</span><span class="p">]))</span> <span class="p">{</span> <span class="c1">// The user isn't verified.</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: "</span> <span class="mf">.</span> <span class="no">ROUTE_URL_VERIFY</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// The user is logged in.</span> <span class="k">echo</span> <span class="s1">'&lt;pre&gt;'</span><span class="p">;</span> <span class="nb">print_r</span><span class="p">(</span><span class="nv">$session</span><span class="o">-&gt;</span><span class="n">user</span><span class="p">);</span> <span class="k">echo</span> <span class="s1">'&lt;/pre&gt;'</span><span class="p">;</span> <span class="k">echo</span> <span class="s1">'&lt;p&gt;You can now &lt;a href="/logout"&gt;log out&lt;/a&gt;.&lt;/p&gt;'</span><span class="p">;</span> <span class="k">return</span><span class="p">;</span> <span class="p">});</span> <span class="nc">Route</span><span class="o">::</span><span class="nf">add</span><span class="p">(</span><span class="s1">'/login'</span><span class="p">,</span> <span class="k">function</span> <span class="p">()</span> <span class="k">use</span> <span class="p">(</span><span class="nv">$auth0</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// It's a good idea to reset user sessions each time they go to login to avoid "invalid state" errors, should they hit network issues or other problems that interrupt a previous login process:</span> <span class="nv">$auth0</span><span class="o">-&gt;</span><span class="nf">clear</span><span class="p">();</span> <span class="c1">// Finally, set up the local application session, and redirect the user to the Auth0 Universal Login Page to authenticate.</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: "</span> <span class="mf">.</span> <span class="nv">$auth0</span><span class="o">-&gt;</span><span class="nf">login</span><span class="p">(</span><span class="no">ROUTE_URL_CALLBACK</span><span class="p">));</span> <span class="k">exit</span><span class="p">;</span> <span class="p">});</span> <span class="nc">Route</span><span class="o">::</span><span class="nf">add</span><span class="p">(</span><span class="s1">'/callback'</span><span class="p">,</span> <span class="k">function</span> <span class="p">()</span> <span class="k">use</span> <span class="p">(</span><span class="nv">$auth0</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Have the SDK complete the authentication flow:</span> <span class="nv">$auth0</span><span class="o">-&gt;</span><span class="nf">exchange</span><span class="p">(</span><span class="no">ROUTE_URL_CALLBACK</span><span class="p">);</span> <span class="c1">// Finally, redirect our end user back to the / index route, to display their user profile:</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: "</span> <span class="mf">.</span> <span class="no">ROUTE_URL_INDEX</span><span class="p">);</span> <span class="k">exit</span><span class="p">;</span> <span class="p">});</span> <span class="nc">Route</span><span class="o">::</span><span class="nf">add</span><span class="p">(</span><span class="s1">'/verify'</span><span class="p">,</span> <span class="k">function</span> <span class="p">()</span> <span class="k">use</span> <span class="p">(</span><span class="nv">$auth0</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$session</span> <span class="o">=</span> <span class="nv">$auth0</span><span class="o">-&gt;</span><span class="nf">getCredentials</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$session</span> <span class="o">===</span> <span class="kc">null</span><span class="p">)</span> <span class="p">{</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: "</span> <span class="mf">.</span> <span class="no">ROUTE_URL_INDEX</span><span class="p">);</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="k">if</span><span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_COOKIE</span><span class="p">[</span><span class="s1">'2fa'</span><span class="p">])){</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: "</span> <span class="mf">.</span> <span class="no">ROUTE_URL_INDEX</span><span class="p">);</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="k">include</span><span class="p">(</span><span class="s1">'verify.php'</span><span class="p">);</span> <span class="p">}</span> <span class="p">});</span> <span class="nc">Route</span><span class="o">::</span><span class="nf">add</span><span class="p">(</span><span class="s1">'/logout'</span><span class="p">,</span> <span class="k">function</span> <span class="p">()</span> <span class="k">use</span> <span class="p">(</span><span class="nv">$auth0</span><span class="p">)</span> <span class="p">{</span> <span class="k">unset</span><span class="p">(</span><span class="nv">$_COOKIE</span><span class="p">[</span><span class="s1">'2fa'</span><span class="p">]);</span> <span class="nb">setcookie</span><span class="p">(</span><span class="s1">'2fa'</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="nb">time</span><span class="p">()</span><span class="o">-</span><span class="mi">3600</span><span class="p">);</span> <span class="c1">// Clear the user's local session with our app, then redirect them to the Auth0 logout endpoint to clear their Auth0 session.</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: "</span> <span class="mf">.</span> <span class="nv">$auth0</span><span class="o">-&gt;</span><span class="nf">logout</span><span class="p">(</span><span class="no">ROUTE_URL_INDEX</span><span class="p">));</span> <span class="k">exit</span><span class="p">;</span> <span class="p">});</span> <span class="c1">// This tells our router that we've finished configuring our routes, and we're ready to begin routing incoming HTTP requests:</span> <span class="nc">Route</span><span class="o">::</span><span class="nf">run</span><span class="p">(</span><span class="s1">'/'</span><span class="p">);</span> </code></pre> </div> <p>The code starts off by importing the required class and Composer's autoloader. Following that, it uses PHP Dotenv to load the application settings in <code>.env</code> into PHP's $_ENV Superglobals.</p> <p>After that, it initializes a new Auth0 class, and defines all the necessary routes for the application as constants.<br> With that done, routes were added, and a session was created. The Auth0 PHP SDK's 'getCredentials()' method is useful for checking if our user has authenticated and returned their profile. The next lines of code publish the user's profile if they're signed in, or tell them that they need to log in or verify their identity if they haven’t.<br> Next, the '/login' route is then included, which will create a user session using the Auth0 PHP SDK's <code>login()</code> method and deliver a customized URL to Auth0's Universal Login Page for this user to login, as well as the <code>/callback</code> route, which will return the user from authenticating with Auth0's Universal Login Page. When Auth0 returns our users to the application, it adds a few important elements in the HTTP request query. Working with them is handled by the Auth0 PHP SDK's <code>exchange()</code> method, so ending our authentication flow is simple. If the user hasn't been authenticated yet, the '/verify' route is generated to redirect them to the authentication page.<br> The <code>/logout</code> route, which redirects the user to Auth0's <code>logout()</code> function, is the final route added. The Auth0 PHP SDK's <code>logout()</code> function clears the session cookies in the application and redirects the user to Auth0's <code>/logout</code> endpoint (which logs out the Auth0 session layer and any identity provider session layers), and then returns the user to our <code>/index</code> route.<br> Last but not least, we need to inform our routing middleware to use <code>Route::run('/');</code> to actually route requests. This informs our router that we've completed our route configuration and are ready to start routing incoming HTTP requests.<br> Enabling TypingDNA </p> <p>In the root folder, add the file <code>TypingDNAVerifyClient.php</code> that can be found in the repository: <a href="https://github.com/TypingDNA/TypingDNA-Verify-Client/blob/main/php/TypingDNAVerifyClient.php">https://github.com/TypingDNA/TypingDNA-Verify-Client/blob/main/php/TypingDNAVerifyClient.php</a>.<br> Now that the <code>TypingDNAVerifyClient.php</code> file is in the root folder, create a file <code>verify.php</code> in the root folder and paste the following code.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="c1">// set Verify credentials</span> <span class="nv">$client_id</span> <span class="o">=</span> <span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'VERIFY_2FA_CLIENT_ID'</span><span class="p">];</span> <span class="nv">$secret</span> <span class="o">=</span> <span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'VERIFY_2FA_CLIENT_SECRET'</span><span class="p">];</span> <span class="nv">$application_id</span> <span class="o">=</span> <span class="nv">$_ENV</span><span class="p">[</span><span class="s1">'VERIFY_2FA_APPLICATION_ID'</span><span class="p">];</span> <span class="c1">// include TypingDna Verify library</span> <span class="k">include</span><span class="p">(</span><span class="s1">'TypingDNAVerifyClient.php'</span><span class="p">);</span> <span class="c1">// create and store a TypingDNAVerifyClient instance using your Verify credentials</span> <span class="nv">$typingDNAVerifyClient</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TypingDNAVerifyClient</span><span class="p">(</span><span class="nv">$client_id</span><span class="p">,</span> <span class="nv">$application_id</span><span class="p">,</span> <span class="nv">$secret</span><span class="p">);</span> <span class="c1">// if there is opt param in the link it means the Verify flow is completed and we need to validate it</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_GET</span><span class="p">[</span><span class="s1">'otp'</span><span class="p">]))</span> <span class="p">{</span> <span class="c1">// validate opt code</span> <span class="nv">$response</span> <span class="o">=</span> <span class="nv">$typingDNAVerifyClient</span><span class="o">-&gt;</span><span class="nf">validateOTP</span><span class="p">([</span> <span class="s1">'email'</span> <span class="o">=&gt;</span> <span class="nv">$session</span><span class="o">-&gt;</span><span class="n">user</span><span class="p">[</span><span class="s1">'email'</span><span class="p">],</span> <span class="p">],</span> <span class="nv">$_GET</span><span class="p">[</span><span class="s1">'otp'</span><span class="p">]);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$response</span><span class="p">[</span><span class="s1">'success'</span><span class="p">]</span><span class="o">==</span><span class="mi">1</span><span class="p">)</span> <span class="p">{</span> <span class="nb">setcookie</span><span class="p">(</span><span class="s2">"2fa"</span><span class="p">,</span> <span class="kc">true</span><span class="p">);</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: "</span> <span class="mf">.</span><span class="no">ROUTE_URL_INDEX</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// create the data object required to generate Verify button</span> <span class="nv">$typingDNADataAttributes</span> <span class="o">=</span> <span class="nv">$typingDNAVerifyClient</span><span class="o">-&gt;</span><span class="nf">getDataAttributes</span><span class="p">([</span> <span class="s1">'email'</span> <span class="o">=&gt;</span> <span class="nv">$session</span><span class="o">-&gt;</span><span class="n">user</span><span class="p">[</span><span class="s1">'email'</span><span class="p">],</span> <span class="s1">'language'</span> <span class="o">=&gt;</span> <span class="s2">"en"</span><span class="p">,</span> <span class="s1">'mode'</span> <span class="o">=&gt;</span> <span class="s2">"standard"</span> <span class="p">]);</span> <span class="cp">?&gt;</span> <span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;meta</span> <span class="na">charset=</span><span class="s">"UTF-8"</span><span class="nt">&gt;</span> <span class="nt">&lt;meta</span> <span class="na">http-equiv=</span><span class="s">"X-UA-Compatible"</span> <span class="na">content=</span><span class="s">"IE=edge"</span><span class="nt">&gt;</span> <span class="nt">&lt;meta</span> <span class="na">name=</span><span class="s">"viewport"</span> <span class="na">content=</span><span class="s">"width=device-width, initial-scale=1.0"</span><span class="nt">&gt;</span> <span class="nt">&lt;title&gt;</span>Ath0 - Verify<span class="nt">&lt;/title&gt;</span> <span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"https://cdn.typingdna.com/verify/typingdna-verify.js"</span><span class="nt">&gt;&lt;/script&gt;</span> <span class="nt">&lt;script&gt;</span> <span class="c1">// crate the callback function that will be invoked by the Verify window</span> <span class="kd">function</span> <span class="nx">callbackFn</span><span class="p">(</span><span class="nx">payload</span><span class="p">)</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="s2">`?otp=</span><span class="p">${</span><span class="nx">payload</span><span class="p">[</span><span class="dl">"</span><span class="s2">otp</span><span class="dl">"</span><span class="p">]}</span><span class="s2">`</span><span class="p">;</span> <span class="p">}</span> <span class="nt">&lt;/script&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body&gt;</span> <span class="nt">&lt;p&gt;</span>Second factor of authentication<span class="nt">&lt;/p&gt;</span> <span class="nt">&lt;button</span> <span class="na">class=</span><span class="s">"typingDNA-verify"</span> <span class="na">data-typingdna-client-id=</span><span class="s">"</span><span class="cp">&lt;?=</span> <span class="nv">$typingDNADataAttributes</span><span class="p">[</span><span class="s1">'clientId'</span><span class="p">];</span> <span class="cp">?&gt;</span><span class="s">"</span> <span class="na">data-typingdna-application-id=</span><span class="s">"</span><span class="cp">&lt;?=</span> <span class="nv">$typingDNADataAttributes</span><span class="p">[</span><span class="s1">'applicationId'</span><span class="p">];</span> <span class="cp">?&gt;</span><span class="s">"</span> <span class="na">data-typingdna-payload=</span><span class="s">"</span><span class="cp">&lt;?=</span> <span class="nv">$typingDNADataAttributes</span><span class="p">[</span><span class="s1">'payload'</span><span class="p">];</span> <span class="cp">?&gt;</span><span class="s">"</span> <span class="na">data-typingdna-callback-fn=</span><span class="s">"callbackFn"</span><span class="nt">&gt;</span> Verify with Typingdna <span class="nt">&lt;/button&gt;</span> <span class="nt">&lt;p&gt;&lt;a</span> <span class="na">href=</span><span class="s">"/logout"</span><span class="nt">&gt;</span>Log Out<span class="nt">&lt;/a&gt;&lt;/p&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <p>We include the <code>TypingDNAVerifyClient</code> library first, then initialize our variable in the same way we did in index.php. Using the credentials from the Verify 2FA Dashboard, we additionally construct a <code>TypingDNAVerifyClient</code> object and place it in the <code>$typingDNAVerifyClient</code> variable.</p> <p>Once we have a <code>TypingDNAVerifyClient</code> instance, we will generate the data attributes required to start TypingDNA Verify 2FA. We'll use the email from the Auth0 session callback to register the user on TypingDNA in order to prevent mix up.</p> <p>Next, we will add the JavaScript library that will allow us to draw the TypingDNA Verify pop-up at the start of the file.</p> <p>Next, we will create the <code>callbackFn</code> that will redirect the user to the same page where we will process the result obtained from the Verify pop-up.<br> To verify the created OTP code, the user will be sent to the same page, where the code will be confirmed and, if true, a cookie will be set to indicate that the user has been verified.</p> <p>Finally, we will add the TypingDNA Verify button that will start the pop-up.<br> Let's run the application with this command.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>php <span class="nt">-S</span> 127.0.0.1:3000 index.php </code></pre> </div> <p>Our first screen<br> Followed by this</p> <p>Next, this</p> <p>After clicking the "Verify with TypingDNA" button.</p> <p>After we complete the instructions from the TypingDNA Verify 2FA button, the final screen will contain the user details.</p> <p>For more support, contact us at <a href="mailto:support@typingdna.com">support@typingdna.com</a>.</p> php auth0 javascript webdev Yong Dev Mon, 01 Aug 2022 18:30:00 +0000 https://forem.com/yongdev/send-one-time-passwords-over-voice-calls-in-php-using-twilio-verify-42eg https://forem.com/yongdev/send-one-time-passwords-over-voice-calls-in-php-using-twilio-verify-42eg <p>In recent years, user authentication in web applications has become a serious concern. For example, one-time passwords (OTP) are utilized to verify a user's identity; the most frequent method for sending OTPs is via SMS to the user's registered cellphone number.</p> <p>In this article, however, you will learn how to deliver one-time passwords to users via voice calls using Twilio's <a href="https://www.twilio.com/docs/verify/api">Verify Api</a>. In doing so, you will create an OTP system that can be used as an additional security layer for specific operations in your application.</p> <h2> Prerequisites </h2> <p>To follow this tutorial, you need the following:</p> <ul> <li>PHP 7.4 or higher with the PDO extension <a href="https://www.php.net/manual/en/pdo.installation.php">and PDO MySQL extension installed and enabled</a>.</li> <li> <a href="https://getcomposer.org/">Composer</a> globally installed.</li> <li> <a href="https://www.mysql.com/">MySQL</a> and <a href="https://dev.mysql.com/doc/refman/8.0/en/mysql.html">the MySQL command-line client</a> (or an alternative database tool, such as <a href="https://www.jetbrains.com/datagrip/">DataGrip</a>).</li> <li>A Twilio account. If you are new to <a href="http://www.twilio.com/referral/v0KQ88">Twilio</a>, click here to create a free account.</li> </ul> <h2> Application Process </h2> <p>Here's how the application will work. Each time a user attempts to register or sign in, a voice call containing a one-time password will be sent to them. <br> If the user attempts to register, a form to verify the user's phone number is filled out and, if verified, the user is redirected to a form where personal information is collected for storing in the application's database.</p> <p>When a user attempts to sign in, the data entered in the registration form is compared to the data in the database. If a match is found, an OTP is sent to the user's phone number, and the user is then taken to a page where the OTP is validated. If the OTP is valid, the user is then redirected to the user dashboard.</p> <h2> Create the project directory </h2> <p>Create the project's root directory, called <em>voice-otp</em>, and navigate to it by running the commands below in the terminal.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>voice-otp <span class="nb">cd </span>voice-otp </code></pre> </div> <h2> Create the database </h2> <p>The next step is to create the user table, which will have the following fields:</p> <ul> <li>id</li> <li>fullName</li> <li>email</li> <li>password</li> <li>tel (telephone)</li> </ul> <p>In the terminal, run the command below to connect to the MySQL database using MySQL's command-line client, substituting your username for the placeholder (<code>[username]</code>) and enter your password when prompted.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> mysql <span class="nt">-u</span> <span class="o">[</span>username] <span class="nt">-p</span> </code></pre> </div> <p>Then, create a database called <code>voice_otp</code> by running the command below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">voice_otp</span><span class="p">;</span> </code></pre> </div> <p>After that, use the command below to verify that the database was created. If it were, you'd see it listed in the terminal output.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">SHOW</span> <span class="n">DATABASES</span><span class="p">;</span> </code></pre> </div> <p>With the database created, create the users table in the <code>voice_otp</code> database, by running the commands below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="n">USE</span> <span class="n">voice_otp</span><span class="p">;</span> <span class="k">CREATE</span> <span class="k">TABLE</span> <span class="k">user</span> <span class="p">(</span> <span class="n">id</span> <span class="nb">int</span> <span class="n">auto_increment</span><span class="p">,</span> <span class="n">fullName</span> <span class="nb">varchar</span><span class="p">(</span><span class="mi">300</span><span class="p">)</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">email</span> <span class="nb">varchar</span><span class="p">(</span><span class="mi">300</span><span class="p">)</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">tel</span> <span class="nb">varchar</span><span class="p">(</span><span class="mi">20</span><span class="p">)</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">password</span> <span class="nb">varchar</span><span class="p">(</span><span class="mi">300</span><span class="p">)</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="k">PRIMARY</span> <span class="k">KEY</span> <span class="p">(</span><span class="n">id</span><span class="p">)</span> <span class="p">)</span> <span class="n">ENGINE</span><span class="o">=</span><span class="n">InnoDB</span> <span class="k">DEFAULT</span> <span class="n">CHARSET</span><span class="o">=</span><span class="n">latin1</span><span class="p">;</span> </code></pre> </div> <p>This generates a table with four columns: <code>id</code> (which is auto-increment), <code>fullName</code>, <code>email</code>, <code>tel</code>, and <code>password</code>. Confirm that the table was created by running the SQL statement below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">DESCRIBE</span> <span class="k">user</span><span class="p">;</span> </code></pre> </div> <p>With that done, exit MySQL's command-line client by pressing <strong>CTRL+D</strong>.</p> <h2> Set up the Twilio PHP Helper Library </h2> <p>To utilize Twilio's Verify API for user authentication, you need to install the <a href="https://www.twilio.com/docs/libraries/php">Twilio PHP Helper Library</a>. To do this, run the command below in your terminal.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>composer require twilio/sdk </code></pre> </div> <p>Then, in your editor or IDE, create a new file named <em>config.php</em> which will contain the app's configuration settings, and paste the code below into the new file.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="nv">$err_message</span> <span class="o">=</span> <span class="s2">""</span><span class="p">;</span> <span class="k">require_once</span> <span class="s1">'./vendor/autoload.php'</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">Twilio\Rest\Client</span><span class="p">;</span> <span class="nv">$sid</span> <span class="o">=</span> <span class="s2">"ACCOUNT_SID"</span><span class="p">;</span> <span class="nv">$token</span> <span class="o">=</span> <span class="s2">"AUTH_TOKEN"</span><span class="p">;</span> <span class="nv">$serviceId</span> <span class="o">=</span> <span class="s2">"SERVICE_SID"</span><span class="p">;</span> <span class="nv">$twilio</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Client</span><span class="p">(</span><span class="nv">$sid</span><span class="p">,</span> <span class="nv">$token</span><span class="p">);</span> </code></pre> </div> <p>The code:</p> <ul> <li>Creates a variable for storing errors.</li> <li>Includes Composer's Autoloader file, <em>vendor/autoload.php</em>.</li> <li>Imports <a href="https://www.twilio.com/docs/libraries/php">Twilio's PHP Helper Library</a>.</li> <li>Creates three variables to store the required Twilio credentials and settings.</li> <li>Initializes a Twilio <code>Client</code> object, which is required to interact with Twilio's Verify API.</li> </ul> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--mlgms1_W--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/3dbb3n64flevjri5bq3i.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--mlgms1_W--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/3dbb3n64flevjri5bq3i.png" alt="Retrieve your Twilio auth token and account SID" width="800" height="430"></a></p> <p>The <a href="https://console.twilio.com/?frameUrl=/console">Twilio Console dashboard</a> contains your Twilio Auth Token and Account SID. Copy them and paste them in place of <strong>ACCOUNT_SID</strong> and <strong>AUTH_TOKEN</strong>, respectively in <em>config.php</em>.</p> <p>The next step is to create a <a href="https://console.twilio.com/us1/develop/verify?frameUrl=%2Fconsole%2Fverify%3Fx-target-region%3Dus1&amp;currentFrameUrl=%2Fconsole%2Fverify%2Fdashboard%3F__override_layout__%3Dembed%26bifrost%3Dtrue%26x-target-region%3Dus1">Twilio Verify service</a>. First, go to the Twilio Verify Dashboard. Then, click the “<strong>Create Service Now</strong>” button and give the service a nice name in the "<strong>Create New Service</strong>" box, as seen in the screenshot below.</p> <p>Create a new Twilio Verify service with a suitable name, such as "verify".</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--KBK3czTW--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/ox4uejynywexv8b3zkkp.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--KBK3czTW--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/ox4uejynywexv8b3zkkp.png" alt="Create a new Twilio Verify Service" width="751" height="271"></a></p> <p>After you've entered a suitable name for the new service, click the blue <strong>Create</strong> button. The "<strong>General Settings</strong>" page will appear, which you can see in the screenshot below, where you can view the credentials for your new Twilio Verify service. <br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s--p1-0qoU2--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/2e5r2w8qtodyxhwhjxby.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--p1-0qoU2--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/2e5r2w8qtodyxhwhjxby.png" alt="Twilio Dashboard" width="800" height="481"></a><br> Copy the <strong>SERVICE SID</strong> value and paste it in place of <code>SERVICE_SID</code> in <em>config.php</em>.</p> <p>Then, you need to add your database connection details. To do this, first, add the following code to the bottom of <em>config.php</em>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="nb">define</span><span class="p">(</span><span class="s1">'DBHOST'</span><span class="p">,</span> <span class="s1">'localhost'</span><span class="p">);</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'DBUSER'</span><span class="p">,</span> <span class="s1">'root'</span><span class="p">);</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'DBPASS'</span><span class="p">,</span> <span class="s1">' '</span><span class="p">);</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'DBNAME'</span><span class="p">,</span> <span class="s1">'voice_otp'</span><span class="p">);</span> <span class="k">try</span> <span class="p">{</span> <span class="nv">$pdo</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">PDO</span><span class="p">(</span><span class="s2">"mysql:host="</span><span class="mf">.</span><span class="no">DBHOST</span><span class="mf">.</span><span class="s2">";dbname="</span><span class="mf">.</span><span class="no">DBNAME</span><span class="p">,</span> <span class="no">DBUSER</span><span class="p">,</span> <span class="no">DBPASS</span><span class="p">);</span> <span class="nv">$pdo</span><span class="o">-&gt;</span><span class="nf">setAttribute</span><span class="p">(</span><span class="no">PDO</span><span class="o">::</span><span class="no">ATTR_ERRMODE</span><span class="p">,</span> <span class="no">PDO</span><span class="o">::</span><span class="no">ERRMODE_EXCEPTION</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch</span><span class="p">(</span> <span class="nc">PDOException</span> <span class="nv">$exception</span> <span class="p">)</span> <span class="p">{</span> <span class="k">echo</span> <span class="s2">"Connection error :"</span> <span class="mf">.</span> <span class="nv">$exception</span><span class="o">-&gt;</span><span class="nf">getMessage</span><span class="p">();</span> <span class="p">}</span> </code></pre> </div> <p>Then update the <code>define</code> statements for <code>DBHOST</code>, <code>DBUSER</code>, <code>DBPASS</code>, and <code>DBNAME</code> to match your database's settings. The code uses the four variables and attempts to create a connection to the database.</p> <blockquote> <p>PDO is used to connect to the database, because it supports several database vendors, including MySQL, MSSQL Server, PostgreSQL, and Oracle. </p> </blockquote> <p>Next, paste the code below at the end of <em>config.php</em>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="k">function</span> <span class="n">mask_no</span><span class="p">(</span><span class="nv">$number</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nb">substr</span><span class="p">(</span><span class="nv">$number</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="mi">4</span><span class="p">)</span> <span class="mf">.</span> <span class="s1">'************'</span> <span class="mf">.</span> <span class="nb">substr</span><span class="p">(</span><span class="nv">$number</span><span class="p">,</span> <span class="o">-</span><span class="mi">4</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>The function above hides the user's phone number by displaying only the first three and final four digits.</p> <h2> Create the signup and sign in page </h2> <p>Create a new file named <em>signup.php</em> in the project's root directory, and paste the code below into it.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require_once</span><span class="p">(</span><span class="s1">'process.php'</span><span class="p">);</span> <span class="nv">$page</span> <span class="o">=</span> <span class="p">((</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_GET</span><span class="p">[</span><span class="s1">'p'</span><span class="p">]))</span> <span class="o">?</span> <span class="s1">'step1'</span> <span class="o">:</span> <span class="nb">strval</span><span class="p">(</span><span class="nv">$_GET</span><span class="p">[</span><span class="s1">'p'</span><span class="p">]));</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">])</span> <span class="o">!=</span> <span class="kc">true</span> <span class="o">||</span> <span class="nb">is_array</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">])</span> <span class="o">!=</span> <span class="kc">true</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">]</span> <span class="o">=</span> <span class="k">array</span><span class="p">();</span> <span class="p">}</span> <span class="cp">?&gt;</span> <span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;meta</span> <span class="na">charset=</span><span class="s">"utf-8"</span><span class="nt">&gt;</span> <span class="nt">&lt;meta</span> <span class="na">name=</span><span class="s">"viewport"</span> <span class="na">content=</span><span class="s">"width=device-width, initial-scale=1.0, shrink-to-fit=no"</span><span class="nt">&gt;</span> <span class="nt">&lt;title&gt;</span>Voice OTP<span class="nt">&lt;/title&gt;</span> <span class="nt">&lt;link</span> <span class="na">href=</span><span class="s">"https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css"</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="nt">/&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"https://fonts.googleapis.com/css?family=Karla"</span><span class="nt">&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"assets/styles.css"</span><span class="nt">&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.15/css/intlTelInput.css"</span><span class="nt">&gt;</span> <span class="nt">&lt;style&gt;</span> <span class="nc">.hide</span> <span class="p">{</span> <span class="nl">display</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="p">}</span> <span class="nf">#error-msg</span> <span class="p">{</span> <span class="nl">color</span><span class="p">:</span> <span class="no">red</span><span class="p">;</span> <span class="p">}</span> <span class="nt">&lt;/style&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body</span> <span class="na">style=</span><span class="s">"font-family: Karla, sans-serif;"</span><span class="nt">&gt;</span> <span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$page</span> <span class="o">==</span> <span class="s1">'step1'</span><span class="p">)</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="k">require_once</span><span class="p">(</span><span class="s1">'assets/content/step1.phtml'</span><span class="p">);</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="k">elseif</span> <span class="p">(</span><span class="nv">$page</span> <span class="o">==</span> <span class="s1">'step2'</span> <span class="o">&amp;&amp;</span> <span class="k">isset</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">][</span><span class="s1">'status'</span><span class="p">])</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">][</span><span class="s1">'status'</span><span class="p">]))</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="k">require_once</span><span class="p">(</span><span class="s1">'assets/content/step2.phtml'</span><span class="p">);</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="k">else</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="k">require_once</span><span class="p">(</span><span class="s1">'assets/content/step1.phtml'</span><span class="p">);</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="k">endif</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.15/js/intlTelInput.min.js"</span><span class="nt">&gt;&lt;/script&gt;</span> <span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.15/js/intlTelInput-jquery.min.js"</span><span class="nt">&gt;&lt;/script&gt;</span> <span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"https://ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js"</span><span class="nt">&gt;&lt;/script&gt;</span> <span class="nt">&lt;script&gt;</span> <span class="kd">var</span> <span class="nx">input</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nx">querySelector</span><span class="p">(</span><span class="dl">"</span><span class="s2">#phone</span><span class="dl">"</span><span class="p">),</span> <span class="nx">errorMsg</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nx">querySelector</span><span class="p">(</span><span class="dl">"</span><span class="s2">#error-msg</span><span class="dl">"</span><span class="p">),</span> <span class="nx">validMsg</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nx">querySelector</span><span class="p">(</span><span class="dl">"</span><span class="s2">#valid-msg</span><span class="dl">"</span><span class="p">);</span> <span class="c1">// Error messages based on the code returned from getValidationError</span> <span class="kd">var</span> <span class="nx">errorMap</span> <span class="o">=</span> <span class="p">[</span><span class="dl">"</span><span class="s2">Invalid number</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">Invalid country code</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">Too short</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">Too long</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">Invalid number</span><span class="dl">"</span><span class="p">];</span> <span class="c1">// Initialise plugin</span> <span class="kd">var</span> <span class="nx">intl</span> <span class="o">=</span> <span class="nb">window</span><span class="p">.</span><span class="nx">intlTelInput</span><span class="p">(</span><span class="nx">input</span><span class="p">,</span> <span class="p">{</span> <span class="na">hiddenInput</span><span class="p">:</span> <span class="dl">"</span><span class="s2">tel</span><span class="dl">"</span><span class="p">,</span> <span class="na">initialCountry</span><span class="p">:</span> <span class="dl">"</span><span class="s2">auto</span><span class="dl">"</span><span class="p">,</span> <span class="na">autoHideDialCode</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">preferredCountries</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">us</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">gb</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">ca</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">ng</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">cn</span><span class="dl">'</span><span class="p">],</span> <span class="na">geoIpLookup</span><span class="p">:</span> <span class="kd">function</span><span class="p">(</span><span class="nx">success</span><span class="p">,</span> <span class="nx">failure</span><span class="p">)</span> <span class="p">{</span> <span class="nx">$</span><span class="p">.</span><span class="kd">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">https://ipinfo.io</span><span class="dl">"</span><span class="p">,</span> <span class="kd">function</span><span class="p">()</span> <span class="p">{},</span> <span class="dl">"</span><span class="s2">jsonp</span><span class="dl">"</span><span class="p">).</span><span class="nx">always</span><span class="p">(</span><span class="kd">function</span><span class="p">(</span><span class="nx">resp</span><span class="p">)</span> <span class="p">{</span> <span class="kd">var</span> <span class="nx">countryCode</span> <span class="o">=</span> <span class="p">(</span><span class="nx">resp</span> <span class="o">&amp;&amp;</span> <span class="nx">resp</span><span class="p">.</span><span class="nx">country</span><span class="p">)</span> <span class="p">?</span> <span class="nx">resp</span><span class="p">.</span><span class="nx">country</span> <span class="p">:</span> <span class="dl">""</span><span class="p">;</span> <span class="nx">success</span><span class="p">(</span><span class="nx">countryCode</span><span class="p">);</span> <span class="p">});</span> <span class="p">},</span> <span class="na">utilsScript</span><span class="p">:</span> <span class="dl">"</span><span class="s2">https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.15/js/utils.js</span><span class="dl">"</span> <span class="p">});</span> <span class="kd">var</span> <span class="nx">reset</span> <span class="o">=</span> <span class="kd">function</span><span class="p">()</span> <span class="p">{</span> <span class="nx">input</span><span class="p">.</span><span class="nx">classList</span><span class="p">.</span><span class="nx">remove</span><span class="p">(</span><span class="dl">"</span><span class="s2">error</span><span class="dl">"</span><span class="p">);</span> <span class="nx">errorMsg</span><span class="p">.</span><span class="nx">innerHTML</span> <span class="o">=</span> <span class="dl">""</span><span class="p">;</span> <span class="nx">errorMsg</span><span class="p">.</span><span class="nx">classList</span><span class="p">.</span><span class="nx">add</span><span class="p">(</span><span class="dl">"</span><span class="s2">hide</span><span class="dl">"</span><span class="p">);</span> <span class="nx">validMsg</span><span class="p">.</span><span class="nx">classList</span><span class="p">.</span><span class="nx">add</span><span class="p">(</span><span class="dl">"</span><span class="s2">hide</span><span class="dl">"</span><span class="p">);</span> <span class="p">};</span> <span class="c1">// Validate on blur event</span> <span class="nx">input</span><span class="p">.</span><span class="nx">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">blur</span><span class="dl">'</span><span class="p">,</span> <span class="kd">function</span><span class="p">()</span> <span class="p">{</span> <span class="nx">reset</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="nx">input</span><span class="p">.</span><span class="nx">value</span><span class="p">.</span><span class="nx">trim</span><span class="p">())</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nx">intl</span><span class="p">.</span><span class="nx">isValidNumber</span><span class="p">())</span> <span class="p">{</span> <span class="nx">validMsg</span><span class="p">.</span><span class="nx">classList</span><span class="p">.</span><span class="nx">remove</span><span class="p">(</span><span class="dl">"</span><span class="s2">hide</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">input</span><span class="p">.</span><span class="nx">classList</span><span class="p">.</span><span class="nx">add</span><span class="p">(</span><span class="dl">"</span><span class="s2">error</span><span class="dl">"</span><span class="p">);</span> <span class="kd">var</span> <span class="nx">errorCode</span> <span class="o">=</span> <span class="nx">intl</span><span class="p">.</span><span class="nx">getValidationError</span><span class="p">();</span> <span class="nx">errorMsg</span><span class="p">.</span><span class="nx">innerHTML</span> <span class="o">=</span> <span class="nx">errorMap</span><span class="p">[</span><span class="nx">errorCode</span><span class="p">];</span> <span class="nx">errorMsg</span><span class="p">.</span><span class="nx">classList</span><span class="p">.</span><span class="nx">remove</span><span class="p">(</span><span class="dl">"</span><span class="s2">hide</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">});</span> <span class="c1">// Reset on keyup/change event</span> <span class="nx">input</span><span class="p">.</span><span class="nx">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">change</span><span class="dl">'</span><span class="p">,</span> <span class="nx">reset</span><span class="p">);</span> <span class="nx">input</span><span class="p">.</span><span class="nx">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">keyup</span><span class="dl">'</span><span class="p">,</span> <span class="nx">reset</span><span class="p">);</span> <span class="nt">&lt;/script&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <p>The code, above, generates a simplistic form for registering new users. It includes the file <em>process.php</em>, which contains the code for processing the sign-in &amp; sign-up forms, connecting to Twilio's Verify API, and preventing users from registering without verifying their phone number.</p> <p>Next, in the project's root directory, create a new directory named <em>assets</em>, and in that directory, create another directory called <em>content</em>, by running the following commands.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>assets <span class="nb">mkdir </span>assets<span class="se">\c</span>ontent </code></pre> </div> <p>Then, create two new files, <em>step1.phtml</em> and <em>step2.phtml</em>, in the <em>assets/content</em> directory.</p> <p>Add the code below to <em>step1.phtml</em>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"page"</span><span class="nt">&gt;</span> <span class="nt">&lt;section</span> <span class="na">class=</span><span class="s">"register"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"form-container"</span><span class="nt">&gt;</span> <span class="nt">&lt;form</span> <span class="na">method=</span><span class="s">"POST"</span><span class="nt">&gt;</span> <span class="nt">&lt;h2</span> <span class="na">class=</span><span class="s">"text-center"</span><span class="nt">&gt;&lt;strong&gt;</span>Create<span class="nt">&lt;/strong&gt;</span> an account.<span class="nt">&lt;/h2&gt;</span> <span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$err_message</span><span class="p">)</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"callout text-danger"</span><span class="nt">&gt;</span> <span class="nt">&lt;p&gt;</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nv">$err_message</span><span class="p">;</span> <span class="cp">?&gt;</span><span class="nt">&lt;/p&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="cp">&lt;?php</span> <span class="k">endif</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"tel"</span> <span class="na">id=</span><span class="s">"phone"</span> <span class="na">name=</span><span class="s">"phone"</span> <span class="na">placeholder=</span><span class="s">"Phone Number"</span> <span class="na">value=</span><span class="s">"</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="p">((</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'tel'</span><span class="p">]))</span> <span class="o">?</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'tel'</span><span class="p">]</span> <span class="o">:</span> <span class="s1">''</span><span class="p">);</span> <span class="cp">?&gt;</span><span class="s">"</span> <span class="na">required</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;span</span> <span class="na">id=</span><span class="s">"valid-msg"</span> <span class="na">class=</span><span class="s">"hide"</span><span class="nt">&gt;</span>✓ Valid<span class="nt">&lt;/span&gt;</span> <span class="nt">&lt;span</span> <span class="na">id=</span><span class="s">"error-msg"</span> <span class="na">class=</span><span class="s">"hide"</span><span class="nt">&gt;&lt;/span&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;button</span> <span class="na">class=</span><span class="s">"btn btn-primary d-block w-100"</span> <span class="na">type=</span><span class="s">"submit"</span> <span class="na">name=</span><span class="s">"telsign"</span> <span class="na">required</span><span class="nt">&gt;</span>Sign Up<span class="nt">&lt;/button&gt;&lt;/div&gt;&lt;a</span> <span class="na">class=</span><span class="s">"already"</span> <span class="na">href=</span><span class="s">"signin.php"</span><span class="nt">&gt;</span>Already have an account? Sign in here.<span class="nt">&lt;/a&gt;</span> <span class="nt">&lt;/form&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/section&gt;</span> <span class="nt">&lt;/div&gt;</span> </code></pre> </div> <p><em>step1.phtml</em> contains code that collects the user’s phone number and sends it to <em>process.php</em>. </p> <blockquote> <p><a href="https://www.twilio.com/blog/international-telephone-input-twilio">International telephone input</a> is used to get all country codes. </p> </blockquote> <p>Add the code below to <em>step2.phtml</em>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"page"</span><span class="nt">&gt;</span> <span class="nt">&lt;section</span> <span class="na">class=</span><span class="s">"register"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"form-container"</span><span class="nt">&gt;</span> <span class="nt">&lt;form</span> <span class="na">method=</span><span class="s">"POST"</span><span class="nt">&gt;</span> <span class="nt">&lt;h2</span> <span class="na">class=</span><span class="s">"text-center"</span><span class="nt">&gt;&lt;strong&gt;</span>Create<span class="nt">&lt;/strong&gt;</span> an account.<span class="nt">&lt;/h2&gt;</span> <span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$err_message</span><span class="p">)</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"callout text-danger"</span><span class="nt">&gt;</span> <span class="nt">&lt;p&gt;</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nv">$err_message</span><span class="p">;</span> <span class="cp">?&gt;</span><span class="nt">&lt;/p&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="cp">&lt;?php</span> <span class="k">endif</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"text"</span> <span class="na">name=</span><span class="s">"fullName"</span> <span class="na">placeholder=</span><span class="s">"Full Name"</span> <span class="na">value=</span><span class="s">"</span><span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'fullName'</span><span class="p">]))</span> <span class="k">echo</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'fullName'</span><span class="p">];</span> <span class="cp">?&gt;</span><span class="s">"</span> <span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"email"</span> <span class="na">name=</span><span class="s">"email"</span> <span class="na">placeholder=</span><span class="s">"Email"</span> <span class="na">value=</span><span class="s">"</span><span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">]))</span> <span class="k">echo</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">];</span> <span class="cp">?&gt;</span><span class="s">"</span> <span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"tel"</span> <span class="na">id=</span><span class="s">"phone"</span> <span class="na">name=</span><span class="s">"phone"</span> <span class="na">placeholder=</span><span class="s">"Phone Number"</span> <span class="na">value=</span><span class="s">"</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">][</span><span class="s1">'phone'</span><span class="p">];</span> <span class="cp">?&gt;</span><span class="s">"</span> <span class="na">disabled</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"password"</span> <span class="na">name=</span><span class="s">"password"</span> <span class="na">placeholder=</span><span class="s">"Password"</span> <span class="na">minlength=</span><span class="s">"8"</span> <span class="na">required</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"password"</span> <span class="na">name=</span><span class="s">"re_password"</span> <span class="na">placeholder=</span><span class="s">"Password (repeat)"</span> <span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"form-check"</span><span class="nt">&gt;&lt;label</span> <span class="na">class=</span><span class="s">"form-check-label"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-check-input"</span> <span class="na">type=</span><span class="s">"checkbox"</span><span class="na">required</span><span class="nt">&gt;</span>I agree to the license terms.<span class="nt">&lt;/label&gt;&lt;/div&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;button</span> <span class="na">class=</span><span class="s">"btn btn-primary d-block w-100"</span> <span class="na">type=</span><span class="s">"submit"</span> <span class="na">name=</span><span class="s">"signup"</span> <span class="na">required</span><span class="nt">&gt;</span>Sign Up<span class="nt">&lt;/button&gt;&lt;/div&gt;</span> <span class="nt">&lt;/form&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/section&gt;</span> <span class="nt">&lt;/div&gt;</span> </code></pre> </div> <p>Now, create a file named <em>signin.php</em> in the root directory and paste the following code into it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require_once</span><span class="p">(</span><span class="s1">'process.php'</span><span class="p">)</span> <span class="cp">?&gt;</span> <span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;meta</span> <span class="na">charset=</span><span class="s">"utf-8"</span><span class="nt">&gt;</span> <span class="nt">&lt;meta</span> <span class="na">name=</span><span class="s">"viewport"</span> <span class="na">content=</span><span class="s">"width=device-width, initial-scale=1.0, shrink-to-fit=no"</span><span class="nt">&gt;</span> <span class="nt">&lt;title&gt;</span>Sign in-OTP<span class="nt">&lt;/title&gt;</span> <span class="nt">&lt;link</span> <span class="na">href=</span><span class="s">"https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css"</span> <span class="na">rel=</span><span class="s">"stylesheet"</span><span class="nt">/&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"https://fonts.googleapis.com/css?family=Karla"</span><span class="nt">&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"assets/styles.css"</span><span class="nt">&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body</span> <span class="na">style=</span><span class="s">"font-family: Karla, sans-serif;"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"page"</span><span class="nt">&gt;</span> <span class="nt">&lt;section</span> <span class="na">class=</span><span class="s">"register"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"form-container"</span><span class="nt">&gt;</span> <span class="nt">&lt;form</span> <span class="na">method=</span><span class="s">"post"</span><span class="nt">&gt;</span> <span class="nt">&lt;h2</span> <span class="na">class=</span><span class="s">"text-center"</span><span class="nt">&gt;&lt;strong&gt;</span>Sign in<span class="nt">&lt;/strong&gt;</span> to your account.<span class="nt">&lt;/h2&gt;</span> <span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$err_message</span><span class="p">)</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"callout text-danger"</span><span class="nt">&gt;</span> <span class="nt">&lt;p&gt;</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nv">$err_message</span><span class="p">;</span> <span class="cp">?&gt;</span><span class="nt">&lt;/p&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="cp">&lt;?php</span> <span class="k">endif</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"email"</span> <span class="na">name=</span><span class="s">"email"</span> <span class="na">placeholder=</span><span class="s">"Email"</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"password"</span> <span class="na">name=</span><span class="s">"password"</span> <span class="na">placeholder=</span><span class="s">"Password"</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;button</span> <span class="na">class=</span><span class="s">"btn btn-primary d-block w-100"</span> <span class="na">type=</span><span class="s">"submit"</span> <span class="na">name=</span><span class="s">"signin"</span><span class="nt">&gt;</span>Sign in<span class="nt">&lt;/button&gt;&lt;/div&gt;&lt;a</span> <span class="na">class=</span><span class="s">"already"</span> <span class="na">href=</span><span class="s">"signup.php"</span><span class="nt">&gt;</span>Don't have an account? Sign up here.<span class="nt">&lt;/a&gt;</span> <span class="nt">&lt;/form&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/section&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <p>Then, create a file named <em>styles.css</em> in the assets folder and paste the following code in to it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight css"><code><span class="nt">body</span> <span class="p">{</span> <span class="nl">background</span><span class="p">:</span> <span class="m">#f1f7fc</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.register</span> <span class="p">{</span> <span class="nl">padding</span><span class="p">:</span> <span class="m">80px</span> <span class="m">0</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nc">.form-container</span> <span class="p">{</span> <span class="nl">display</span><span class="p">:</span> <span class="n">table</span><span class="p">;</span> <span class="nl">max-width</span><span class="p">:</span> <span class="m">500px</span><span class="p">;</span> <span class="nl">width</span><span class="p">:</span> <span class="m">90%</span><span class="p">;</span> <span class="nl">margin</span><span class="p">:</span> <span class="m">0</span> <span class="nb">auto</span><span class="p">;</span> <span class="nl">box-shadow</span><span class="p">:</span> <span class="m">1px</span> <span class="m">1px</span> <span class="m">5px</span> <span class="n">rgba</span><span class="p">(</span><span class="m">0</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="m">0.1</span><span class="p">);</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="p">{</span> <span class="nl">display</span><span class="p">:</span> <span class="nb">table-cell</span><span class="p">;</span> <span class="nl">width</span><span class="p">:</span> <span class="m">400px</span><span class="p">;</span> <span class="nl">background-color</span><span class="p">:</span> <span class="m">#ffffff</span><span class="p">;</span> <span class="nl">padding</span><span class="p">:</span> <span class="m">40px</span> <span class="m">60px</span><span class="p">;</span> <span class="nl">color</span><span class="p">:</span> <span class="m">#505e6c</span><span class="p">;</span> <span class="p">}</span> <span class="k">@media</span> <span class="p">(</span><span class="n">max-width</span><span class="p">:</span><span class="m">991px</span><span class="p">)</span> <span class="p">{</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="p">{</span> <span class="nl">padding</span><span class="p">:</span> <span class="m">40px</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nt">h2</span> <span class="p">{</span> <span class="nl">font-size</span><span class="p">:</span> <span class="m">24px</span><span class="p">;</span> <span class="nl">line-height</span><span class="p">:</span> <span class="m">1.5</span><span class="p">;</span> <span class="nl">margin-bottom</span><span class="p">:</span> <span class="m">30px</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nc">.form-control</span> <span class="p">{</span> <span class="nl">background</span><span class="p">:</span> <span class="m">#f7f9fc</span><span class="p">;</span> <span class="nl">border</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="nl">border-bottom</span><span class="p">:</span> <span class="m">1px</span> <span class="nb">solid</span> <span class="m">#dfe7f1</span><span class="p">;</span> <span class="nl">border-radius</span><span class="p">:</span> <span class="m">0</span><span class="p">;</span> <span class="nl">box-shadow</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="nl">outline</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="nl">color</span><span class="p">:</span> <span class="nb">inherit</span><span class="p">;</span> <span class="nl">text-indent</span><span class="p">:</span> <span class="m">6px</span><span class="p">;</span> <span class="nl">height</span><span class="p">:</span> <span class="m">40px</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nc">.form-check</span> <span class="p">{</span> <span class="nl">font-size</span><span class="p">:</span> <span class="m">13px</span><span class="p">;</span> <span class="nl">line-height</span><span class="p">:</span> <span class="m">20px</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nc">.btn-primary</span> <span class="p">{</span> <span class="nl">background</span><span class="p">:</span> <span class="m">#f4476b</span><span class="p">;</span> <span class="nl">border</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="nl">border-radius</span><span class="p">:</span> <span class="m">4px</span><span class="p">;</span> <span class="nl">padding</span><span class="p">:</span> <span class="m">11px</span><span class="p">;</span> <span class="nl">box-shadow</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="nl">margin-top</span><span class="p">:</span> <span class="m">35px</span><span class="p">;</span> <span class="nl">text-shadow</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="nl">outline</span><span class="p">:</span> <span class="nb">none</span> <span class="cp">!important</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nc">.btn-primary</span><span class="nd">:hover</span><span class="o">,</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nc">.btn-primary</span><span class="nd">:active</span> <span class="p">{</span> <span class="nl">background</span><span class="p">:</span> <span class="m">#eb3b60</span><span class="p">;</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nc">.btn-primary</span><span class="nd">:active</span> <span class="p">{</span> <span class="nl">transform</span><span class="p">:</span> <span class="n">translateY</span><span class="p">(</span><span class="m">1px</span><span class="p">);</span> <span class="p">}</span> <span class="nc">.register</span> <span class="nt">form</span> <span class="nc">.already</span> <span class="p">{</span> <span class="nl">display</span><span class="p">:</span> <span class="nb">block</span><span class="p">;</span> <span class="nl">text-align</span><span class="p">:</span> <span class="nb">center</span><span class="p">;</span> <span class="nl">font-size</span><span class="p">:</span> <span class="m">12px</span><span class="p">;</span> <span class="nl">color</span><span class="p">:</span> <span class="m">#6f7a85</span><span class="p">;</span> <span class="nl">opacity</span><span class="p">:</span> <span class="m">0.9</span><span class="p">;</span> <span class="nl">text-decoration</span><span class="p">:</span> <span class="nb">none</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>Following that, create a file named <em>process.php</em> in the project's root directory, and add the following code to it. This code is responsible for processing all requests from the sign in and signup pages.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="c1">//Create Session</span> <span class="k">require_once</span><span class="p">(</span><span class="s2">"config.php"</span><span class="p">);</span> <span class="nb">ob_start</span><span class="p">();</span> <span class="nb">session_start</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'telsign'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$phone</span> <span class="o">=</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'tel'</span><span class="p">];</span> <span class="nv">$statement</span> <span class="o">=</span> <span class="nv">$pdo</span><span class="o">-&gt;</span><span class="nf">prepare</span><span class="p">(</span><span class="s2">"SELECT * FROM user WHERE tel=?"</span><span class="p">);</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">execute</span><span class="p">(</span><span class="k">array</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'tel'</span><span class="p">]));</span> <span class="nv">$total</span> <span class="o">=</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">rowCount</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$total</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'An account is already associated with the provided Phone Number&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span><span class="p">{</span> <span class="nv">$verification</span> <span class="o">=</span> <span class="nv">$twilio</span><span class="o">-&gt;</span><span class="n">verify</span><span class="o">-&gt;</span><span class="n">v2</span><span class="o">-&gt;</span><span class="nf">services</span><span class="p">(</span><span class="nv">$serviceId</span><span class="p">)</span> <span class="o">-&gt;</span><span class="n">verifications</span> <span class="o">-&gt;</span><span class="nf">create</span><span class="p">(</span><span class="nv">$phone</span><span class="p">,</span> <span class="s2">"call"</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$verification</span><span class="o">-&gt;</span><span class="n">status</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">]</span><span class="o">=</span> <span class="nv">$phone</span><span class="p">;</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: verify.php?p=signup"</span><span class="p">);</span> <span class="k">exit</span><span class="p">();</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="k">echo</span> <span class="s1">'Unable to send verification code'</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'signup_verify'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$code</span> <span class="o">=</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'code'</span><span class="p">];</span> <span class="nv">$phone</span> <span class="o">=</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">];</span> <span class="nv">$verification_check</span> <span class="o">=</span> <span class="nv">$twilio</span><span class="o">-&gt;</span><span class="n">verify</span><span class="o">-&gt;</span><span class="n">v2</span><span class="o">-&gt;</span><span class="nf">services</span><span class="p">(</span><span class="nv">$serviceId</span><span class="p">)</span> <span class="o">-&gt;</span><span class="n">verificationChecks</span> <span class="o">-&gt;</span><span class="nf">create</span><span class="p">(</span> <span class="nv">$code</span><span class="p">,</span> <span class="p">[</span><span class="s2">"to"</span> <span class="o">=&gt;</span> <span class="s2">"+"</span> <span class="mf">.</span> <span class="nv">$phone</span><span class="p">]</span> <span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$verification_check</span><span class="o">-&gt;</span><span class="n">status</span> <span class="o">==</span> <span class="s1">'approved'</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">][</span><span class="s1">'status'</span><span class="p">]</span> <span class="o">=</span> <span class="s1">'success'</span><span class="p">;</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'init'</span><span class="p">][</span><span class="s1">'phone'</span><span class="p">]</span> <span class="o">=</span> <span class="nv">$phone</span><span class="p">;</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"location: signup.php?p=step2"</span><span class="p">);</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Invalid code entered&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">//If the Signup button is triggered</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'signup'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">1</span><span class="p">;</span> <span class="cm">/* Validation to check if fullname is inputed */</span> <span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'fullName'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s2">" FullName can not be empty&lt;br&gt;"</span><span class="p">;</span> <span class="p">}</span> <span class="c1">//Filtering fullname if not empty</span> <span class="k">else</span> <span class="p">{</span> <span class="nv">$fullname</span> <span class="o">=</span> <span class="nb">filter_var</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'fullName'</span><span class="p">],</span> <span class="no">FILTER_SANITIZE_STRING</span><span class="p">);</span> <span class="p">}</span> <span class="cm">/* Validation to check if email is inputed */</span> <span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Email address can not be empty&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="cm">/* Validation to check if email is valid */</span> <span class="k">else</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nb">filter_var</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">],</span> <span class="no">FILTER_VALIDATE_EMAIL</span><span class="p">)</span> <span class="o">===</span> <span class="kc">false</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Email address must be valid&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="cm">/* Validation to check if email already exist */</span> <span class="k">else</span> <span class="p">{</span> <span class="c1">// Prepare our SQL, preparing the SQL statement will prevent SQL injection.</span> <span class="nv">$statement</span> <span class="o">=</span> <span class="nv">$pdo</span><span class="o">-&gt;</span><span class="nf">prepare</span><span class="p">(</span><span class="s2">"SELECT * FROM user WHERE email=?"</span><span class="p">);</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">execute</span><span class="p">(</span><span class="k">array</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">]));</span> <span class="nv">$total</span> <span class="o">=</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">rowCount</span><span class="p">();</span> <span class="c1">//If There is a match gives an error message</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$total</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'An account is already asociated with the provided email address&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="cm">/* Validation to check if password is inputed */</span> <span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">])</span> <span class="o">||</span> <span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'re_password'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s2">"Password can not be empty&lt;br&gt;"</span><span class="p">;</span> <span class="p">}</span> <span class="cm">/* Validation to check if passwords match*/</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">])</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'re_password'</span><span class="p">]))</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">]</span> <span class="o">!=</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'re_password'</span><span class="p">])</span> <span class="p">{</span> <span class="nv">$valid</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s2">"Passwords do not match&lt;br&gt;"</span><span class="p">;</span> <span class="p">}</span> <span class="c1">//If Passwords Matches Generates Hash</span> <span class="k">else</span> <span class="p">{</span> <span class="c1">//Generating Password hash</span> <span class="nv">$password</span> <span class="o">=</span> <span class="nb">filter_var</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">],</span> <span class="no">FILTER_SANITIZE_STRING</span><span class="p">);</span> <span class="nv">$hashed_password</span> <span class="o">=</span> <span class="nb">password_hash</span><span class="p">(</span><span class="nv">$password</span><span class="p">,</span> <span class="no">PASSWORD_DEFAULT</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$valid</span> <span class="o">==</span> <span class="mi">1</span><span class="p">)</span> <span class="p">{</span> <span class="c1">//if There Error Messages are empty Store data in the database</span> <span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$err_message</span><span class="p">))</span> <span class="p">{</span> <span class="c1">//Saving Data Into Database</span> <span class="nv">$statement</span> <span class="o">=</span> <span class="nv">$pdo</span><span class="o">-&gt;</span><span class="nf">prepare</span><span class="p">(</span><span class="s2">"INSERT INTO user (fullName,email,tel,password) VALUES (?,?,?,?)"</span><span class="p">);</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">execute</span><span class="p">(</span><span class="k">array</span><span class="p">(</span><span class="nv">$fullname</span><span class="p">,</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">],</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'tel'</span><span class="p">],</span> <span class="nv">$hashed_password</span><span class="p">));</span> <span class="k">unset</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">]);</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"location: signin.php"</span><span class="p">);</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s2">"Problem in registration.Please Try Again!"</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'signin'</span><span class="p">]))</span> <span class="p">{</span> <span class="c1">//Checks if Both input fields are empty</span> <span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">]</span> <span class="o">||</span> <span class="k">empty</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">])))</span> <span class="p">{</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Email and/or Password can not be empty&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="c1">//Checks if email is valid</span> <span class="k">else</span> <span class="p">{</span> <span class="nv">$email</span> <span class="o">=</span> <span class="nb">filter_var</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'email'</span><span class="p">],</span> <span class="no">FILTER_VALIDATE_EMAIL</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$email</span> <span class="o">===</span> <span class="kc">false</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Email address must be valid&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="c1">//Checks if email exists</span> <span class="nv">$statement</span> <span class="o">=</span> <span class="nv">$pdo</span><span class="o">-&gt;</span><span class="nf">prepare</span><span class="p">(</span><span class="s2">"SELECT * FROM user WHERE email=?"</span><span class="p">);</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">execute</span><span class="p">(</span><span class="k">array</span><span class="p">(</span><span class="nv">$email</span><span class="p">));</span> <span class="nv">$total</span> <span class="o">=</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">rowCount</span><span class="p">();</span> <span class="nv">$result</span> <span class="o">=</span> <span class="nv">$statement</span><span class="o">-&gt;</span><span class="nf">fetchAll</span><span class="p">(</span><span class="no">PDO</span><span class="o">::</span><span class="no">FETCH_ASSOC</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$total</span> <span class="o">==</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Email Address does not match&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="c1">//if email exists save all data in the same column of the email in the row array</span> <span class="k">foreach</span> <span class="p">(</span><span class="nv">$result</span> <span class="k">as</span> <span class="nv">$row</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$stored_password</span> <span class="o">=</span> <span class="nv">$row</span><span class="p">[</span><span class="s1">'password'</span><span class="p">];</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">//Checks Provided password matches the password in database if it does logs user in</span> <span class="k">if</span> <span class="p">(</span><span class="nb">password_verify</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">],</span> <span class="nv">$stored_password</span><span class="p">))</span> <span class="p">{</span> <span class="c1">//setting the session variables</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">]</span> <span class="o">=</span> <span class="nv">$row</span><span class="p">;</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">][</span><span class="s1">'status'</span><span class="p">]</span> <span class="o">=</span> <span class="s1">''</span><span class="p">;</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">]</span> <span class="o">=</span> <span class="nv">$row</span><span class="p">[</span><span class="s1">'tel'</span><span class="p">];</span> <span class="c1">//setting the session signin time</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">][</span><span class="s1">'loggedin_time'</span><span class="p">]</span> <span class="o">=</span> <span class="nb">time</span><span class="p">();</span> <span class="nv">$verification</span> <span class="o">=</span> <span class="nv">$twilio</span><span class="o">-&gt;</span><span class="n">verify</span><span class="o">-&gt;</span><span class="n">v2</span><span class="o">-&gt;</span><span class="nf">services</span><span class="p">(</span><span class="nv">$serviceId</span><span class="p">)</span> <span class="o">-&gt;</span><span class="n">verifications</span> <span class="o">-&gt;</span><span class="nf">create</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">],</span> <span class="s2">"sms"</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$verification</span><span class="o">-&gt;</span><span class="n">status</span><span class="p">)</span> <span class="p">{</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: verify.php?p=signin"</span><span class="p">);</span> <span class="k">exit</span><span class="p">();</span> <span class="p">}</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Password does not match&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'signin_verify'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$code</span> <span class="o">=</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'code'</span><span class="p">];</span> <span class="nv">$phone</span> <span class="o">=</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">];</span> <span class="nv">$verification_check</span> <span class="o">=</span> <span class="nv">$twilio</span><span class="o">-&gt;</span><span class="n">verify</span><span class="o">-&gt;</span><span class="n">v2</span><span class="o">-&gt;</span><span class="nf">services</span><span class="p">(</span><span class="nv">$serviceId</span><span class="p">)</span> <span class="o">-&gt;</span><span class="n">verificationChecks</span> <span class="o">-&gt;</span><span class="nf">create</span><span class="p">(</span> <span class="nv">$code</span><span class="p">,</span> <span class="p">[</span><span class="s2">"to"</span> <span class="o">=&gt;</span> <span class="s2">"+"</span> <span class="mf">.</span> <span class="nv">$phone</span><span class="p">]</span> <span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$verification_check</span><span class="o">-&gt;</span><span class="n">status</span> <span class="o">==</span> <span class="s1">'approved'</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">][</span><span class="s1">'status'</span><span class="p">]</span> <span class="o">=</span> <span class="s1">'success'</span><span class="p">;</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"Location: index.php"</span><span class="p">);</span> <span class="c1">//destroy created session</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nv">$err_message</span> <span class="mf">.</span><span class="o">=</span> <span class="s1">'Invalid code entered&lt;br&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Stepping through the code, first, <em>config.php</em>, which contains the app's configuration settings, is included. Then, a session is created with a condition that checks if the provided number is not registered in the database. It then sends a verification code to the user, who is then directed to a page that verifies the authenticity of the code. If it is, then a session that allows the user to access the <em>step2.phtml</em> file, which collects the data which would be stored in the database, is created.</p> <p>The next line verifies the form input and saves it to a database. If a user signs in successfully, they are routed to the verification page, and if authorized a session named <code>user</code> and a sub-array called <code>status</code> are initialized to success, allowing the user to access <em>index.php</em>, which is the dashboard. </p> <p>Now, create three files in the root directory: </p> <ul> <li> <em>index.php</em> for the dashboard</li> <li> <em>verify.php</em> for inputting the verification code</li> <li> <em>logout.php</em> which signs out a user from the existing session</li> </ul> <p>After they're created, paste the following code into <em>index.php</em>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="nb">session_start</span><span class="p">();</span> <span class="c1">//require_onces database config</span> <span class="k">require_once</span><span class="p">(</span><span class="s2">"config.php"</span><span class="p">);</span> <span class="c1">// Check if the user is logged in or not</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">]))</span> <span class="p">{</span> <span class="nb">header</span><span class="p">(</span><span class="s1">'location: signin.php'</span><span class="p">);</span> <span class="k">exit</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Check if the user has verified number or not</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">][</span><span class="s1">'status'</span><span class="p">]</span><span class="o">!==</span><span class="s1">'success'</span><span class="p">)</span> <span class="p">{</span> <span class="nb">header</span><span class="p">(</span><span class="s1">'location: signin.php'</span><span class="p">);</span> <span class="k">exit</span><span class="p">;</span> <span class="p">}</span> <span class="cp">?&gt;</span> <span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;meta</span> <span class="na">charset=</span><span class="s">"utf-8"</span><span class="nt">&gt;</span> <span class="nt">&lt;meta</span> <span class="na">name=</span><span class="s">"viewport"</span> <span class="na">content=</span><span class="s">"width=device-width, initial-scale=1.0, shrink-to-fit=no"</span><span class="nt">&gt;</span> <span class="nt">&lt;title&gt;</span>DashBoard<span class="nt">&lt;/title&gt;</span> <span class="nt">&lt;link</span> <span class="na">href=</span><span class="s">"https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css"</span> <span class="na">rel=</span><span class="s">"stylesheet"</span><span class="nt">/&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"https://fonts.googleapis.com/css?family=Karla"</span><span class="nt">&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"assets/styles.css"</span><span class="nt">&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body</span> <span class="na">style=</span><span class="s">"font-family: Karla, sans-serif;"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"page"</span><span class="nt">&gt;</span> <span class="nt">&lt;section</span> <span class="na">class=</span><span class="s">"register"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"form-container"</span><span class="nt">&gt;</span> <span class="nt">&lt;h2</span> <span class="na">class=</span><span class="s">"text-center"</span><span class="nt">&gt;&lt;strong&gt;</span>User <span class="nt">&lt;/strong&gt;</span> DashBoard.<span class="nt">&lt;/h2&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"callout text-primary"</span><span class="nt">&gt;</span> Welcome <span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">][</span><span class="s1">'fullName'</span><span class="p">];</span> <span class="cp">?&gt;</span>. Click here to <span class="nt">&lt;a</span> <span class="na">href=</span><span class="s">"logout.php"</span> <span class="na">tite=</span><span class="s">"Logout"</span><span class="nt">&gt;</span>Logout. <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/section&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <p>Now, start PHP's built-in web server by running the following command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>php <span class="nt">-S</span> localhost:8000 </code></pre> </div> <p>Then, open <a href="http://localhost:8000/">http://localhost:8000/</a> in your browser, the sign in screen should look like:</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--PAaT1os_--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/nz60lj0bzfop3stb5oay.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--PAaT1os_--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/nz60lj0bzfop3stb5oay.png" alt="Sign in form." width="549" height="379"></a></p> <p>In <em>verify.php</em>, paste the code below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require_once</span><span class="p">(</span><span class="s1">'process.php'</span><span class="p">);</span> <span class="nv">$page</span> <span class="o">=</span> <span class="p">((</span><span class="k">empty</span><span class="p">(</span><span class="nv">$_GET</span><span class="p">[</span><span class="s1">'p'</span><span class="p">]))</span> <span class="o">?</span> <span class="s1">''</span> <span class="o">:</span> <span class="nb">strval</span><span class="p">(</span><span class="nv">$_GET</span><span class="p">[</span><span class="s1">'p'</span><span class="p">]));</span> <span class="nv">$number</span> <span class="o">=</span> <span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">];</span> <span class="cp">?&gt;</span> <span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;meta</span> <span class="na">charset=</span><span class="s">"utf-8"</span><span class="nt">&gt;</span> <span class="nt">&lt;meta</span> <span class="na">name=</span><span class="s">"viewport"</span> <span class="na">content=</span><span class="s">"width=device-width, initial-scale=1.0, shrink-to-fit=no"</span><span class="nt">&gt;</span> <span class="nt">&lt;title&gt;</span>Voice OTP<span class="nt">&lt;/title&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"https://fonts.googleapis.com/css?family=Karla"</span><span class="nt">&gt;</span> <span class="nt">&lt;link</span> <span class="na">href=</span><span class="s">"https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css"</span> <span class="na">rel=</span><span class="s">"stylesheet"</span><span class="nt">/&gt;</span> <span class="nt">&lt;link</span> <span class="na">rel=</span><span class="s">"stylesheet"</span> <span class="na">href=</span><span class="s">"assets/styles.css"</span><span class="nt">&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body</span> <span class="na">style=</span><span class="s">"font-family: Karla, sans-serif;"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"page"</span><span class="nt">&gt;</span> <span class="cp">&lt;?php</span> <span class="k">if</span><span class="p">(</span><span class="nv">$page</span><span class="o">==</span><span class="s1">'signup'</span> <span class="o">&amp;&amp;</span> <span class="k">isset</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">]))</span><span class="o">:</span> <span class="cp">?&gt;</span> <span class="nt">&lt;section</span> <span class="na">class=</span><span class="s">"register"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"form-container"</span><span class="nt">&gt;</span> <span class="nt">&lt;form</span> <span class="na">method=</span><span class="s">"post"</span><span class="nt">&gt;</span> <span class="nt">&lt;h2</span> <span class="na">class=</span><span class="s">"text-center"</span><span class="nt">&gt;&lt;strong&gt;</span>Verify<span class="nt">&lt;/strong&gt;</span> your account.<span class="nt">&lt;/h2&gt;</span> <span class="nt">&lt;/p&gt;</span>A verification code has been sent through Voice call to <span class="nt">&lt;b&gt;</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nf">mask_no</span><span class="p">(</span><span class="nv">$number</span><span class="p">);</span> <span class="cp">?&gt;</span><span class="nt">&lt;/b&gt;</span>, <span class="nt">&lt;br</span> <span class="nt">/&gt;</span> enter the code below to continue.<span class="nt">&lt;/p&gt;</span> <span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$err_message</span><span class="p">)</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"callout text-danger"</span><span class="nt">&gt;</span> <span class="nt">&lt;p&gt;</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nv">$err_message</span><span class="p">;</span> <span class="cp">?&gt;</span><span class="nt">&lt;/p&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="cp">&lt;?php</span> <span class="k">endif</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"text"</span> <span class="na">name=</span><span class="s">"code"</span> <span class="na">placeholder=</span><span class="s">"Code"</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;button</span> <span class="na">class=</span><span class="s">"btn btn-primary d-block w-100"</span> <span class="na">type=</span><span class="s">"submit"</span> <span class="na">name=</span><span class="s">"signup_verify"</span><span class="nt">&gt;</span>Verify<span class="nt">&lt;/button&gt;&lt;/div&gt;&lt;a</span> <span class="na">class=</span><span class="s">"already"</span> <span class="na">href=</span><span class="s">"signup.php"</span><span class="nt">&gt;</span>Wrong Number?<span class="nt">&lt;/a&gt;</span> <span class="nt">&lt;/form&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/section&gt;</span> <span class="cp">&lt;?php</span> <span class="k">elseif</span><span class="p">(</span><span class="nv">$page</span><span class="o">==</span><span class="s1">'signin'</span> <span class="o">&amp;&amp;</span> <span class="k">isset</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'phone'</span><span class="p">]))</span><span class="o">:</span><span class="cp">?&gt;</span> <span class="nt">&lt;section</span> <span class="na">class=</span><span class="s">"register"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"form-container"</span><span class="nt">&gt;</span> <span class="nt">&lt;form</span> <span class="na">method=</span><span class="s">"post"</span><span class="nt">&gt;</span> <span class="nt">&lt;h2</span> <span class="na">class=</span><span class="s">"text-center"</span><span class="nt">&gt;&lt;strong&gt;</span>Verify<span class="nt">&lt;/strong&gt;</span> your account.<span class="nt">&lt;/h2&gt;</span> <span class="nt">&lt;/p&gt;</span>A verification code has been sent through Voice call to <span class="nt">&lt;b&gt;</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nf">mask_no</span><span class="p">(</span><span class="nv">$number</span><span class="p">);</span> <span class="cp">?&gt;</span><span class="nt">&lt;/b&gt;</span>, <span class="nt">&lt;br</span> <span class="nt">/&gt;</span> enter the code below to continue.<span class="nt">&lt;/p&gt;</span> <span class="cp">&lt;?php</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$err_message</span><span class="p">)</span> <span class="o">:</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"callout text-danger"</span><span class="nt">&gt;</span> <span class="nt">&lt;p&gt;</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nv">$err_message</span><span class="p">;</span> <span class="cp">?&gt;</span><span class="nt">&lt;/p&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="cp">&lt;?php</span> <span class="k">endif</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;input</span> <span class="na">class=</span><span class="s">"form-control"</span> <span class="na">type=</span><span class="s">"text"</span> <span class="na">name=</span><span class="s">"code"</span> <span class="na">placeholder=</span><span class="s">"Code"</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mb-3"</span><span class="nt">&gt;&lt;button</span> <span class="na">class=</span><span class="s">"btn btn-primary d-block w-100"</span> <span class="na">type=</span><span class="s">"submit"</span> <span class="na">name=</span><span class="s">"signin_verify"</span><span class="nt">&gt;</span>Verify<span class="nt">&lt;/button&gt;&lt;/div&gt;</span> <span class="nt">&lt;/form&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/section&gt;</span> <span class="cp">&lt;?php</span> <span class="k">else</span><span class="o">:</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="nb">header</span><span class="p">(</span><span class="s1">'HTTP/1.0 403 Forbidden'</span><span class="p">);</span> <span class="k">echo</span> <span class="s1">'Error Cannot access resource'</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="cp">&lt;?php</span> <span class="k">endif</span><span class="p">;</span> <span class="cp">?&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <p>The Verification screen:</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--RhQ01j_I--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/kh0yw13qqmbn59redoqt.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--RhQ01j_I--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/kh0yw13qqmbn59redoqt.png" alt="Verify your account form." width="555" height="399"></a></p> <p>Parameters were set in place to prevent a user from accessing the <em>verify.php</em> page, if they haven't gone through the verification process. <br> And in <em>logout.php</em>, paste the code below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="nb">ob_start</span><span class="p">();</span> <span class="nb">session_start</span><span class="p">();</span> <span class="c1">//includes app config file</span> <span class="k">require_once</span><span class="p">(</span><span class="s1">'config.php'</span><span class="p">);</span> <span class="c1">//Unset the session variable</span> <span class="k">unset</span><span class="p">(</span><span class="nv">$_SESSION</span><span class="p">[</span><span class="s1">'user'</span><span class="p">]);</span> <span class="c1">//destroy created session</span> <span class="nb">session_destroy</span><span class="p">();</span> <span class="c1">// Redirect to login page</span> <span class="nb">header</span><span class="p">(</span><span class="s2">"location: signin.php"</span><span class="p">);</span> </code></pre> </div> <blockquote> <h4> Note </h4> <p>If you are making calls from a trial account, the "To" phone number must be <a href="https://www.twilio.com/docs/usage/tutorials/how-to-use-your-free-trial-account#verify-your-personal-phone-number">verified with Twilio</a>. You can verify your phone number by adding it to your <a href="https://www.twilio.com/console/phone-numbers/verified">Verified Caller IDs</a> in the console.</p> </blockquote> <h3> That's how to use Twilio Verify to deliver an OTP via calls with PHP. </h3> <p>There you have it, a mechanism to encrypt crucial activities in your app using one-time passwords sent via phone calls to users. In this tutorial, you learned how to send an OTP via a phone call with Twilio verify. <br> However, Verify has a great deal more functionality than has been covered in this tutorial. Check out Twilio’s Verify <a href="https://www.twilio.com/docs/verify/quickstarts/php-laravel">docs</a> if you're keen to learn more about the available functionality. For your convenience, the whole code for this article is accessible on <a href="https://github.com/prosperyong/Twilio-OTP-System/">Github</a>.</p> <p>If you enjoyed this piece you can follow me on twitter @<a href="https://twitter.com/_yongdev?ref_src=twsrc%5Etfw"> _yongdev</a></p> twilio php webdev tutorial Yong Dev Thu, 21 Apr 2022 20:24:43 +0000 https://forem.com/yongdev/help-me-please-ndi https://forem.com/yongdev/help-me-please-ndi <p>Hi, am prosper and am having a downtime currently. My pc is broken and I need a replacement. please help<br> You can support me via <a href="https://www.buymeacoffee.com/yongdev" rel="noopener noreferrer">buy me a coffee</a> or via <a href="https://paypal.me/yongdev" rel="noopener noreferrer">PayPal</a> <br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fuimn0qvhfohy2salk1cr.jpg" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fuimn0qvhfohy2salk1cr.jpg" alt="my pc"></a></p> Yong Dev Sun, 09 Jan 2022 06:37:08 +0000 https://forem.com/yongdev/how-to-manage-dates-and-times-in-php-using-carbon-1jne https://forem.com/yongdev/how-to-manage-dates-and-times-in-php-using-carbon-1jne <p>Date and time manipulation is one of a few frequently-experienced challenges of developing web apps in PHP. And one of it's most prevalent issues is identifying time disparities and making them readable, such as "one hour ago". </p> <p>However, handling dates and times — and issues such as this — is greatly simplified by using <a href="https://carbon.nesbot.com/docs/">Carbon</a>; it's a library which reduces lengthy hours of coding and debugging to only a few lines of code. This is because Carbon, created by Brian Nesbit, extends PHP's own <a href="https://www.php.net/manual/en/class.datetime.php">DateTime class</a> and makes it much simpler to use. </p> <p>If you've not heard of it before, it is self-described as:</p> <blockquote> <p><em>A basic PHP API extension for DateTime</em></p> </blockquote> <p>In this tutorial, you will learn Carbon's core features and capabilities, giving you the ability to far more easily manipulate date and time in PHP.</p> <h2> Prerequisites </h2> <p>To follow this tutorial you need the following components:</p> <ul> <li>PHP 7.4 or higher.</li> <li> <a href="https://getcomposer.org/">Composer</a> globally installed.</li> </ul> <h2> Installation </h2> <p>To install Carbon, first create a new project directory called <em>carbon</em>, change into the directory, and install the package, by executing the following commands:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>carbon <span class="nb">cd </span>carbon composer require nesbot/carbon </code></pre> </div> <p><strong>!!!tip</strong></p> <p>Carbon is already included if you're using Laravel. If you are, have a look at the suggested <a href="https://carbon.nesbot.com/laravel">Laravel settings and best practices</a>. If you're using Symfony, have a look at the <a href="https://carbon.nesbot.com/symfony">Symfony configuration and best-practices guidelines</a>. </p> <p><strong>!!!tip</strong></p> <h2> Format dates using Carbon </h2> <p>With Carbon installed, in your editor or IDE, create a new PHP file, named <em>index.php</em> in the root of your project directory. Then, add the code below to <em>index.php</em> to include Composer's Autoloader file, <em>vendor/autoload.php</em>, and imported Carbon's core class_._<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="s1">'vendor/autoload.php'</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">Carbon\Carbon</span><span class="p">;</span> </code></pre> </div> <h2> Print dates </h2> <p>Now that Carbon's installed, let's start working through some examples, starting with the most essential: printing out some dates. To do that, we'll use <code>carbon::today</code> to retrieve today's date via Carbon, which you can see in the example below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="k">echo</span> <span class="n">carbon</span><span class="o">::</span><span class="nf">today</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> </code></pre> </div> <p>Add that to <em>index.php</em> and then run it.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>2021-10-25 00:00:00 </code></pre> </div> <p>The output, which you can see an example of above, returns the current date, with the time being blank. However, if you update <em>index.php</em> to use <code>carbon:: now</code> instead, which you can see in the example below, you can retrieve the time along with the date.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$now</span> <span class="o">=</span> <span class="n">carbon</span><span class="o">::</span><span class="nf">now</span><span class="p">()</span> <span class="k">echo</span> <span class="s2">"</span><span class="nv">$now</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> </code></pre> </div> <p>After updating <em>index.php</em> and running it, you should see output similar to the example below, in your terminal.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>2021-01-25 22:49:56 </code></pre> </div> <p>In contrast to <code>Carbon::now()</code> which returns the current date <strong>and</strong> time, and <code>Carbon:today()</code> which only returns the current date, <code>Carbon::yesterday()</code> and <code>Carbon::tomorrow()</code> generate Carbon instances for yesterday and tomorrow, respectively, as in the examples below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$yes</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">yesterday</span><span class="p">();</span> <span class="k">echo</span> <span class="s2">"Yesterday: </span><span class="nv">$yes</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> <span class="nv">$tomorrow</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">tomorrow</span><span class="p">();</span> <span class="k">echo</span> <span class="s2">"Tomorrow: </span><span class="nv">$tomorrow</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> </code></pre> </div> <p>The functions <code>today()</code>, <code>yesterday()</code>, <code>now</code>, and <code>tomorrow()</code> are examples of common static instantiation helpers.</p> <h2> Create dates with precision </h2> <p>Carbon also allows us to generate dates and times based on a set of parameters. For example, to create a new <code>Carbon</code> instance for a specific date use the <code>Carbon::createFromDate()</code> method, passing in the year, month, day, and timezone, as in the following example.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$year</span> <span class="o">=</span> <span class="mi">2020</span><span class="p">;</span> <span class="nv">$month</span> <span class="o">=</span> <span class="mi">08</span><span class="p">;</span> <span class="nv">$day</span> <span class="o">=</span> <span class="mi">21</span><span class="p">;</span> <span class="nv">$timezone</span> <span class="o">=</span> <span class="s1">'Europe/Berlin'</span><span class="p">;</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">createFromDate</span><span class="p">(</span><span class="nv">$year</span><span class="p">,</span> <span class="nv">$month</span><span class="p">,</span> <span class="nv">$day</span><span class="p">,</span> <span class="nv">$timezone</span><span class="p">);</span> </code></pre> </div> <p>You can also specify the time, by calling <code>Carbon::create()</code>, passing in the year, month, day, timezone, hour, minute, and second, as in the following example<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$year</span> <span class="o">=</span> <span class="mi">2021</span><span class="p">;</span> <span class="nv">$month</span> <span class="o">=</span> <span class="mo">04</span><span class="p">;</span> <span class="nv">$day</span> <span class="o">=</span> <span class="mi">21</span><span class="p">;</span> <span class="nv">$timezone</span> <span class="o">=</span> <span class="s1">'Europe/Berlin'</span><span class="p">;</span> <span class="nv">$hour</span> <span class="o">=</span> <span class="mi">11</span><span class="p">;</span> <span class="nv">$minute</span> <span class="o">=</span> <span class="mi">11</span><span class="p">;</span> <span class="nv">$second</span> <span class="o">=</span> <span class="mi">11</span><span class="p">;</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">create</span><span class="p">(</span><span class="nv">$year</span><span class="p">,</span> <span class="nv">$month</span><span class="p">,</span> <span class="nv">$day</span><span class="p">,</span> <span class="nv">$hour</span><span class="p">,</span> <span class="nv">$minute</span><span class="p">,</span> <span class="nv">$second</span><span class="p">,</span> <span class="nv">$timezone</span><span class="p">);</span> </code></pre> </div> <p>If any one or more of <code>$year</code>, <code>$month</code>, <code>$day</code>, <code>$hour</code>, <code>$minute</code>, or <code>$second</code> are set to <code>null</code> their <code>now()</code> equivalent values will be used. If <code>$hour</code> is not <code>null</code>, however, then the default values for <code>$minute</code> and <code>$second</code> will be <code>0</code>. </p> <p>If you pass in <code>null</code> for any of those attributes, it will default to the current date and time.</p> <p>Update <em>index.php</em> in your editor or IDE to match the code below and run it.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">Carbon\Carbon</span><span class="p">;</span> <span class="nv">$date1</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">create</span><span class="p">(</span><span class="mi">2021</span><span class="p">,</span><span class="mi">10</span><span class="p">,</span> <span class="mi">25</span><span class="p">,</span> <span class="mi">12</span><span class="p">,</span> <span class="mi">48</span><span class="p">,</span> <span class="mo">00</span><span class="p">);</span> <span class="k">echo</span> <span class="nv">$date1</span> <span class="mf">.</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> <span class="nv">$date2</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">create</span><span class="p">(</span><span class="mi">2021</span><span class="p">,</span> <span class="mi">8</span><span class="p">,</span> <span class="mi">25</span><span class="p">,</span> <span class="mi">22</span><span class="p">,</span> <span class="mi">48</span><span class="p">,</span> <span class="mo">00</span><span class="p">,</span> <span class="s1">'Europe/Moscow'</span><span class="p">);</span> <span class="k">echo</span> <span class="nv">$date2</span> <span class="mf">.</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> <span class="nv">$date3</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">createFromDate</span><span class="p">(</span><span class="mi">2018</span><span class="p">,</span> <span class="mi">8</span><span class="p">,</span> <span class="mi">14</span><span class="p">,</span> <span class="s1">'America/Chicago'</span><span class="p">);</span> <span class="k">echo</span> <span class="nv">$date3</span> <span class="mf">.</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> <span class="nv">$date4</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">createFromDate</span><span class="p">(</span><span class="mi">2021</span><span class="p">,</span><span class="mi">10</span><span class="p">,</span> <span class="mi">25</span><span class="p">,</span> <span class="s1">'Africa/Lagos'</span><span class="p">);</span> <span class="nv">$date5</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">createFromTimestamp</span><span class="p">(</span><span class="mi">1633703084</span><span class="p">);</span> <span class="k">echo</span> <span class="nv">$date5</span><span class="mf">.</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> </code></pre> </div> <p>The <code>create()</code> function in the first variable creates a <code>Carbon</code> instance from date and time components; A timezone was supplied on the constructor to the second variable.</p> <p>A Carbon object was constructed using date components with <code>Carbon::createFromDate()</code> when initializing the third and fourth variables. Doing so generates a <code>Carbon</code> instance based on just on a date. </p> <p>It's worth pointing out that if no timezone is specified, your default timezone is used. However, if a timezone <em>other</em> than yours is specified, the timezone's actual time is supplied. The current time is set in the time section. </p> <p>The final variable, initialized using <code>Carbon::createFromTimestamp</code>, generates a date based on a timestamp.</p> <h2> Relative Modifiers </h2> <p>Another fantastic feature of Carbon is relative modifiers. These allow strings such as "<em>next friday</em>" or "<em>a year ago</em>" to be used when constructing <code>Carbon</code> instances <em>relative</em> to the current date. </p> <p>The following are examples of strings that are considered relative modifiers.</p> <ul> <li><code>+</code></li> <li><code>-</code></li> <li><code>ago</code></li> <li><code>first</code></li> <li><code>next</code></li> <li><code>last</code></li> <li><code>this</code></li> <li><code>today</code></li> <li> <p><code>tomorrow</code></p> <p>Modify the date and time</p> </li> </ul> <p>When working with dates, you'll need to do more than just get the date and time. You'll frequently need to modify the date or time as well, such as adding a day or a week or subtracting a month.</p> <p>A good example of needing this functionality is when building an affiliate program. In this scenario you'll want the affiliate cookie which the user receives to expire after a specified period of time, making the referral invalid. </p> <p>Let's assume a cookie has a 90-day lifespan. With Carbon's <code>add</code> and <code>subtract</code> methods, we could compute that time quite trivially. The example below uses <code>addDays()</code> to determine when the cookie expires.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$name</span> <span class="o">=</span> <span class="s1">'Affliate_Program'</span><span class="p">;</span> <span class="nv">$value</span> <span class="o">=</span> <span class="s1">'Referrer ID'</span><span class="p">;</span> <span class="nv">$path</span> <span class="o">=</span> <span class="s1">'/'</span><span class="p">;</span> <span class="nv">$current</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">now</span><span class="p">();</span> <span class="c1">// add 90 days to the current time</span> <span class="nv">$time</span> <span class="o">=</span> <span class="nv">$current</span><span class="o">-&gt;</span><span class="nf">addDays</span><span class="p">(</span><span class="mi">90</span><span class="p">);</span> <span class="nv">$expires</span> <span class="o">=</span> <span class="nb">strtotime</span><span class="p">(</span><span class="nv">$time</span><span class="p">);</span> <span class="nb">setcookie</span><span class="p">(</span><span class="nv">$name</span><span class="p">,</span> <span class="nv">$value</span><span class="p">,</span> <span class="nv">$expires</span><span class="p">,</span> <span class="nv">$path</span><span class="p">);</span> </code></pre> </div> <p>It also uses some of the other <code>add()</code> and <code>sub()</code> methods <a href="https://carbon.nesbot.com/docs/#api-addsub">which Carbon provides</a>. If you're adding a single date, such as a day, you use <code>addDay()</code>, but if you're adding several days, you use <code>addDays()</code>. Using Carbon’s add and subtract methods can provide you with adjusted date and times.</p> <h2> Looking forward and back </h2> <p>Carbon also provides the <code>next()</code> and <code>previous()</code> functions which return the upcoming and previous occurrences of a particular weekday, which you can see an example of in the code below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">Carbon\Carbon</span><span class="p">;</span> <span class="nv">$now</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">now</span><span class="p">();</span> <span class="k">echo</span> <span class="s2">"</span><span class="nv">$now</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> <span class="nv">$next_monday</span> <span class="o">=</span> <span class="nv">$now</span><span class="o">-&gt;</span><span class="nb">next</span><span class="p">(</span><span class="nc">Carbon</span><span class="o">::</span><span class="no">MONDAY</span><span class="p">);</span> <span class="k">echo</span> <span class="s2">"Next monday: </span><span class="nv">$next_monday</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> <span class="nv">$prev_monday</span> <span class="o">=</span> <span class="nv">$now</span><span class="o">-&gt;</span><span class="nf">previous</span><span class="p">(</span><span class="nc">Carbon</span><span class="o">::</span><span class="no">MONDAY</span><span class="p">);</span> <span class="k">echo</span> <span class="s2">"Previous monday: </span><span class="nv">$prev_monday</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> </code></pre> </div> <h2> Format the date and time </h2> <p>Yet another fantastic option Carbon provides is the ability to format dates and times in whatever format that you desire. </p> <p>As Carbon is an expanded version of <a href="https://www.php.net/manual/en/refs.calendar.php">PHP's built-in date and time functions</a>, Carbon can use PHP's built-in date formats via the <code>format()</code> function. In addition, <code>toXXXString()</code> methods are available to display dates and times with predefined formatting.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$dt</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">create</span><span class="p">(</span><span class="mi">2021</span><span class="p">,</span><span class="mi">10</span><span class="p">,</span> <span class="mi">25</span><span class="p">,</span> <span class="mi">12</span><span class="p">,</span> <span class="mi">48</span><span class="p">,</span> <span class="mo">00</span><span class="p">);</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toDateString</span><span class="p">();</span><span class="c1">//2021-10-25</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toFormattedDateString</span><span class="p">();</span><span class="c1">//Oct 25, 2021</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toTimeString</span><span class="p">();</span><span class="c1">//12:48:00</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toDateTimeString</span><span class="p">();</span><span class="c1">//2021-10-25 12:48:00</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toDayDateTimeString</span><span class="p">();</span><span class="c1">//Mon, Oct 25, 2021 12:48 PM</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">format</span><span class="p">(</span><span class="s1">'Y-m-d h:i:s A'</span><span class="p">);</span><span class="c1">//2021-10-25 12:48:00 PM</span> </code></pre> </div> <p>Other typical datetime formatting methods available to Carbon include the following.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toAtomString</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toCookieString</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toIso8601String</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toIso8601ZuluString</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toRfc822String</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toRfc850String</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toRfc1036String</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toRfc1123String</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toRfc3339String</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toRfc7231String</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toRssString</span><span class="p">();</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">toW3cString</span><span class="p">();</span> </code></pre> </div> <h2> Calculate relative time </h2> <p>The <code>diffForHumans()</code> functions in Carbon also allow us to represent time in relative terms. Datetime discrepancies are frequently displayed in a so-called humanized format, such as in one year or three minutes ago.</p> <p>Let's assume we're developing an extension for a blog CMS and we want to display the article's publish time in "hours ago" or the comments publish time in "hours ago."</p> <p>First, the time and date the article was published, as well as other parameters, would be recorded in a database field. As a result, we extract the date from the database in the format <code>Y-m-d H:i:s</code> and store it in a variable. Let's call it <code>$time</code>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="cp">&lt;?php</span> <span class="nv">$time</span> <span class="o">=</span> <span class="nv">$row</span><span class="p">[</span><span class="s1">'articledate'</span><span class="p">];</span> </code></pre> </div> <p>If the date in our database is August 4th, 2021, such as in the example below, you would use the <code>carbonCreateFromFormat()</code> function to produce a Carbon date, and then use <code>diffForHumans()</code> to find the difference.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nv">$row</span><span class="p">[</span><span class="s1">'articledate'</span><span class="p">]</span> <span class="o">=</span> <span class="mi">2021</span><span class="o">-</span><span class="mi">08</span><span class="o">-</span><span class="mo">04</span> <span class="mi">16</span><span class="o">:</span><span class="mi">19</span><span class="o">:</span><span class="mi">49</span><span class="p">;</span> <span class="nv">$dt</span> <span class="o">=</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nf">createFromFormat</span><span class="p">(</span><span class="s1">'Y-m-d H:i:s'</span><span class="p">,</span> <span class="nv">$time</span><span class="p">);</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">diffForHumans</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> </code></pre> </div> <p>If the date was saved as a timestamp, you can call <code>Carbon::createFromTimestamp</code>. Carbon also provides user translator services. So if your site makes use of a user's language preferences, call the language. If you have a user that speaks French, for example, all you have to do is call the function before the code, as seen below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="k">__DIR__</span> <span class="mf">.</span> <span class="s2">"/vendor/autoload.php"</span><span class="p">;</span> <span class="nc">Carbon</span><span class="o">::</span><span class="nb">setLocale</span><span class="p">()</span><span class="s1">'.Carbon::setLocale('</span><span class="n">fr</span><span class="err">'</span><span class="p">);</span> <span class="k">echo</span> <span class="nv">$dt</span><span class="o">-&gt;</span><span class="nf">diffForHumans</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span> </code></pre> </div> <p>Output in this case would be, for example, 'il y a 2 mois'.</p> <h2> That's the essentials of managing dates and times in PHP using Carbon </h2> <p>In this tutorial, you learned how to install Carbon and its core functionality. However, Carbon has a great deal more functionality than has been covered in this tutorial. Check out their <a href="https://carbon.nesbot.com/docs/">docs</a> if you're keen to learn more about the available functionality.</p> php code api tutorial Yong Dev Fri, 15 Oct 2021 11:31:30 +0000 https://forem.com/yongdev/what-did-you-learn-this-week-22bo https://forem.com/yongdev/what-did-you-learn-this-week-22bo Yong Dev Fri, 08 Oct 2021 18:23:34 +0000 https://forem.com/yongdev/get-paid-writing-2i2j https://forem.com/yongdev/get-paid-writing-2i2j <p>Here are a few sites to assist you locate sites that pay technical authors if you're a geek who enjoys writing technical stuff.</p> <ul> <li><a href="https://github.com/malgamves/CommunityWriterPrograms">Community Writer Programs</a></li> <li><a href="https://whopayswriters.com">Who Pays Writers </a></li> <li><a href="https://whopaystechnicalwriters.com/">Who Pays Technical Writers </a></li> </ul> writing webdev motivation programming Yong Dev Thu, 23 Sep 2021 19:30:38 +0000 https://forem.com/yongdev/you-learnt-4ho5 https://forem.com/yongdev/you-learnt-4ho5 <p>Good day, folks! How are you doing? The week is almost up, so tell me what you've learned.</p> Yong Dev Sun, 12 Sep 2021 17:09:11 +0000 https://forem.com/yongdev/how-to-send-email-using-phpmailer-in-php-23pk https://forem.com/yongdev/how-to-send-email-using-phpmailer-in-php-23pk <h3> Introduction </h3> <p>In order to add email services to your PHP application, the PHPMailer class is the ideal choice. PHP frameworks of all kinds are supported (Laravel or Symfony are based on the SwiftMailer library, though, but it is still possible to use PHPMailer as well.) An HTML email with attachments is created using this sophisticated tool, which can then be sent out through SMTP or web server on your local network to a large number of recipients in real time. At the end of this article You'll be able to send a mail using the php library.</p> <h2> Prerequisites </h2> <p>The following criteria must be met in order to follow along with this guide:</p> <ul> <li>A PHP development environment that runs at least PHP 7.0.</li> <li>(Optional) Composer.</li> </ul> <h2> Installation </h2> <p>You can send emails using mail(), Sendmail or Qmail, or you can send them directly through SMTP servers.<br> Additional advanced features include:</p> <ul> <li>SSL/SMTP Authentication</li> <li>Attachments in fs, string, and binary</li> <li>A plain-text email can be sent to clients that do not support HTML email.</li> <li>An active development community maintains it secure and current.</li> </ul> <h2> Installing PHPMailer </h2> <p>You must install PHPMailer through Composer, a dependency management for PHP, starting with version 6.0 released in August 2017. This method is suggested by PHPMailer's developers on Github. <br> In your terminal, type the following code to install the library:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>composer require phpmailer/phpmailer </code></pre> </div> <p>PHPMailer can be added manually if you don't want to install Composer in a testing environment, for example. PHPMailer source code files may be downloaded <a href="https://github.com/PHPMailer/PHPMailer">here</a>. Once downloaded, transfer the PHPMailer folder to one of the include path directories provided in your PHP setup, then manually load each class file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="kn">use</span> <span class="nc">PHPMailer\PHPMailer\PHPMailer</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">PHPMailer\PHPMailer\Exception</span><span class="p">;</span> <span class="k">require</span> <span class="s1">'path_to_PHPMailer/src/Exception.php'</span><span class="p">;</span> <span class="k">require</span> <span class="s1">'path_to_PHPMailer/src/PHPMailer.php'</span><span class="p">;</span> <span class="k">require</span> <span class="s1">'path_to_PHPMailer/src/SMTP.php'</span><span class="p">;</span> </code></pre> </div> <p>See the PHPMailer documentation on Github for comprehensive information on how to install the package without composer.</p> <h2> Use PHPMailer to send emails from a local server </h2> <p>The most likely scenario is that you will utilize HTML to create your email message  As a result, you'll be using HTML techniques and attributes to deliver the messages to recipients.<br> Include the <code>autoload.php</code> file created by Composer if you have used Composer to install:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">require</span> <span class="s1">'path/to/composer/vendor/autoload.php'</span><span class="p">;</span> </code></pre> </div> <p>This is how to use PHPMailer if you have manually installed it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">require</span> <span class="s1">'path_to_PHPMailer/src/PHPMailer.php'</span><span class="p">;</span> <span class="k">require</span> <span class="s1">'path_to_PHPMailer/src/SMTP.php'</span><span class="p">;</span> <span class="k">require</span> <span class="s1">'path_to_PHPMailer/src/Exception.php'</span><span class="p">;</span> </code></pre> </div> <p>Then include the PHPMailer class:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="kn">use</span> <span class="nc">PHPMailer\PHPMailer\PHPMailer</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">PHPMailer\PHPMailer\Exception</span><span class="p">;</span> </code></pre> </div> <p>Creating a new PHPMailer object is the next stage in the process:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">PHPMailer</span><span class="p">();</span> </code></pre> </div> <p>In the next step, we'll provide the headers:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">setFrom</span><span class="p">(</span><span class="s1">'noreply@example.com'</span><span class="p">,</span> <span class="s1">'Admin'</span><span class="p">);</span><span class="c1">//Add a sender</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addAddress</span><span class="p">(</span><span class="s1">'joe@example.net'</span><span class="p">,</span> <span class="s1">'User'</span><span class="p">);</span><span class="c1">//Add a recipient</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addReplyTo</span><span class="p">(</span><span class="s1">'info@example.com'</span><span class="p">,</span> <span class="s1">'Information'</span><span class="p">);</span><span class="c1">//Add an address that the mail reply should be sent</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addCC</span><span class="p">(</span><span class="s1">'cc@example.com'</span><span class="p">);</span> <span class="c1">//Add a more recipient</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addBCC</span><span class="p">(</span><span class="s1">'bcc@example.com'</span><span class="p">);</span><span class="c1">//Add a more recipient</span> </code></pre> </div> <p>If you need to add many addresses, create a new code for each one:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">AddBCC</span><span class="p">(</span><span class="s1">'bcc2@example.com'</span><span class="p">,</span> <span class="s1">'mick'</span><span class="p">);</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">AddBCC</span><span class="p">(</span><span class="s1">'bcc3@example.com'</span><span class="p">,</span> <span class="s1">'doe'</span><span class="p">);</span> </code></pre> </div> <p>A file can be attached by specifying its path. Also, you can specify a filename, although it's not required: the script will use the real filename:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addAttachment</span><span class="p">(</span><span class="s1">'path_to/file.csv'</span><span class="p">,</span> <span class="s1">'file.csv'</span><span class="p">);</span> </code></pre> </div> <p>In other to add image,you use CID attachments to embed an image here:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addEmbeddedImage</span><span class="p">(</span><span class="s1">'path_to/image_file.jpg'</span><span class="p">,</span> <span class="s1">'image'</span><span class="p">);</span> </code></pre> </div> <p>and in the message body add<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Body</span> <span class="o">=</span> <span class="s1">'&lt;img src="cid:image"&gt;'</span><span class="p">;</span> </code></pre> </div> <p>Add a subject, indicate that it should delivered with sendmail, and specify that the message contains HTML.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Subject</span> <span class="o">=</span> <span class="s1">'Test Email Using PHPMailer'</span><span class="p">;</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">IsSendmail</span><span class="p">();</span><span class="n">sets</span> <span class="n">to</span> <span class="n">send</span> <span class="n">mail</span> <span class="n">using</span> <span class="nc">Sendmail</span><span class="mf">.</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">isHTML</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="c1">//Set email format to HTML</span> </code></pre> </div> <p>You may now enter the email body:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Body</span> <span class="o">=</span> <span class="s2">"&lt;H1&gt;Mail body in HTML&lt;/H1&gt;&lt;p&gt;Email testing&lt;/p&gt;"</span><span class="p">;</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">AltBody</span> <span class="o">=</span> <span class="s2">"This is the plain text version of the email content"</span><span class="p">;</span> </code></pre> </div> <p>Lastly, define the email sending features as follows:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">try</span> <span class="p">{</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">send</span><span class="p">();</span> <span class="k">echo</span> <span class="s2">"Message has been sent successfully"</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">(</span><span class="nc">Exception</span> <span class="nv">$e</span><span class="p">)</span> <span class="p">{</span> <span class="k">echo</span> <span class="s2">"Mailer Error: "</span> <span class="mf">.</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">ErrorInfo</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>Finally, let's put all the code you've created to send an email together.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="k">require</span> <span class="s1">'path/to/composer/vendor/autoload.php'</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">PHPMailer\PHPMailer\PHPMailer</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">PHPMailer\PHPMailer\Exception</span><span class="p">;</span> <span class="nv">$mail</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">PHPMailer</span><span class="p">();</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">setFrom</span><span class="p">(</span><span class="s1">'noreply@example.com'</span><span class="p">,</span> <span class="s1">'Admin'</span><span class="p">);</span><span class="c1">//Add a sender</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addAddress</span><span class="p">(</span><span class="s1">'joe@example.net'</span><span class="p">,</span> <span class="s1">'User'</span><span class="p">);</span><span class="c1">//Add a recipient</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addReplyTo</span><span class="p">(</span><span class="s1">'info@example.com'</span><span class="p">,</span> <span class="s1">'Information'</span><span class="p">);</span><span class="c1">//Add an address that the mail reply should be sent</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addCC</span><span class="p">(</span><span class="s1">'cc@example.com'</span><span class="p">);</span> <span class="c1">//Add a more recipient</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addBCC</span><span class="p">(</span><span class="s1">'bcc@example.com'</span><span class="p">);</span><span class="c1">//Add a more recipient</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addAttachment</span><span class="p">(</span><span class="s1">'path_to/file.csv'</span><span class="p">,</span> <span class="s1">'file.csv'</span><span class="p">);</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">addEmbeddedImage</span><span class="p">(</span><span class="s1">'path_to/image_file.jpg'</span><span class="p">,</span> <span class="s1">'image'</span><span class="p">);</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Subject</span> <span class="o">=</span> <span class="s1">'Test Email Using PHPMailer'</span><span class="p">;</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">IsSendmail</span><span class="p">();</span><span class="n">sets</span> <span class="n">to</span> <span class="n">send</span> <span class="n">mail</span> <span class="n">using</span> <span class="nc">Sendmail</span><span class="mf">.</span> <span class="nf">isHTML</span><span class="p">(</span><span class="kc">true</span><span class="p">)</span> <span class="n">sets</span> <span class="n">the</span> <span class="n">email</span><span class="err">'</span><span class="n">s</span> <span class="n">format</span> <span class="n">to</span> <span class="no">HTML</span><span class="mf">.</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">isHTML</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="c1">//Set email format to HTML</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Body</span> <span class="o">=</span> <span class="s2">"&lt;H1&gt;Mail body in HTML&lt;/H1&gt;&lt;p&gt;Email testing&lt;img src="</span><span class="n">cid</span><span class="o">:</span><span class="n">image</span><span class="s2">"&gt;&lt;/p&gt;"</span><span class="p">;</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">AltBody</span> <span class="o">=</span> <span class="s2">"This is the plain text version of the email content"</span><span class="p">;</span> <span class="k">try</span> <span class="p">{</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">send</span><span class="p">();</span> <span class="k">echo</span> <span class="s2">"Message has been sent successfully"</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">(</span><span class="nc">Exception</span> <span class="nv">$e</span><span class="p">)</span> <span class="p">{</span> <span class="k">echo</span> <span class="s2">"Mailer Error: "</span> <span class="mf">.</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">ErrorInfo</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h2> Sending emails with SMTP server </h2> <div class="highlight js-code-highlight"> <pre class="highlight php"><code> <span class="c1">//Server settings</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">SMTPDebug</span> <span class="o">=</span> <span class="mi">1</span><span class="p">;</span><span class="c1">//Enable SMTP debugging </span> <span class="c1">//Send using SMTP </span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">isSMTP</span><span class="p">();</span> <span class="c1">//Enable SMTP authentication</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">SMTPAuth</span> <span class="o">=</span> <span class="kc">true</span><span class="p">;</span> <span class="c1">//SMTP Host</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Host</span><span class="o">=</span><span class="s1">'smtp.example.com'</span><span class="p">;</span> <span class="c1">//SMTP username </span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Username</span><span class="o">=</span> <span class="s1">'user@example.com'</span><span class="p">;</span> <span class="c1">//SMTP password </span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Password</span><span class="o">=</span> <span class="s1">'secret'</span><span class="p">;</span> <span class="c1">//Enable implicit TLS encryption </span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">SMTPSecure</span><span class="o">=</span> <span class="nc">PHPMailer</span><span class="o">::</span><span class="no">ENCRYPTION_SMTPS</span><span class="p">;</span> <span class="c1">//TCP port to connect </span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Port</span><span class="o">=</span> <span class="mi">465</span><span class="p">;</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">isHTML</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="c1">//Set email format to HTML</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">Body</span> <span class="o">=</span> <span class="s2">"&lt;H1&gt;Mail body in HTML&lt;/H1&gt;&lt;p&gt;Email testing&lt;/p&gt;"</span><span class="p">;</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">AltBody</span> <span class="o">=</span> <span class="s2">"This is the plain text version of the email content"</span><span class="p">;</span> <span class="k">try</span> <span class="p">{</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nf">send</span><span class="p">();</span> <span class="k">echo</span> <span class="s2">"Message has been sent successfully"</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">(</span><span class="nc">Exception</span> <span class="nv">$e</span><span class="p">)</span> <span class="p">{</span> <span class="k">echo</span> <span class="s2">"Mailer Error: "</span> <span class="mf">.</span> <span class="nv">$mail</span><span class="o">-&gt;</span><span class="nc">ErrorInfo</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>Let's go through the variables now</p> <ul> <li> <code>$mail-&gt;SMTPDebug</code> is used to enable debugging and display error messages.</li> <li> <code>$mail-&gt;isSMTP()</code> is used to notify the PHPMailer to use SMTP to convey messages.</li> <li> <code>$mail-&gt;SMTPAuth</code> is used to set authentication.</li> <li> <code>$mail-&gt;Host</code> is used to define server host</li> <li> <code>$mail-&gt;Username</code> is used to define the username for smtp server host account.</li> <li> <code>$mail-&gt;Password</code> is used to define the password for smtp server host account</li> <li> <code>$mail-&gt;SMTPSecure</code> sets the encryption type.</li> <li> <code>$mail-&gt;Port</code> is used to define server port in which the email should be sent.</li> </ul> <h2> Conclusion </h2> <p>As a PHP developer, there's little chance you'll be able to avoid sending emails through script. Using third-party services like mailtrap or mailchimp may be a possibility in some cases, but developing your own email sending library may not be feasible. Therein lies the value of PHPMailer and its equivalents (such as Zend Mail and Swift Mailer).<br> Here we've covered the most frequent uses of Phpmailer: delivering pictures and attachments in HTML emails over SMTP or localhost, as well as debugging settings. </p> php email code dev Yong Dev Fri, 10 Sep 2021 12:13:15 +0000 https://forem.com/yongdev/how-to-debug-php-using-xdebug-on-vscode-3n4 https://forem.com/yongdev/how-to-debug-php-using-xdebug-on-vscode-3n4 <h3> Introduction </h3> <p>It's important to keep a few things in mind while developing web apps. <br> When it comes to building large and powerful applications, a competent developer will always follow best practices. Testing, debugging, performance, and security of websites or apps are some of these techniques. <br> Using VSCode and the PHP xDebug module, you'll enable full-featured functional debugging throughout your whole application.</p> <h2> Prerequisites </h2> <p>The following criteria must be met in order to follow along with this guide:</p> <ul> <li>A PHP development environment that runs at least PHP 7.0.</li> <li>An appropriate version of <a href="https://code.visualstudio.com/#alt-downloads" rel="noopener noreferrer">Visual Studio Code</a> for your operating system </li> </ul> <h2> Step 1 — How to Download and Install the XDebug Tool </h2> <p>Real-time debugging is made possible using Xdebug, a PHP extension. On the other hand, it can be useful for troubleshooting server-side problems. Since it shouldn't be active on most requests, Xdebug isn't enabled in the same manner as the other extensions are.You would install it following the steps below:</p> <h4> Windows </h4> <p>Xdebug provides a wizard tool for Windows users to obtain a <code>.dll</code> file. In order to do this, first create a PHP file in a folder, and then add the following code line:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="nb">phpinfo</span><span class="p">();</span> <span class="cp">?&gt;</span> </code></pre> </div> <p>Use your browser to launch the <code>index.php</code> file . This will provide the information displayed in the image below.<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fl5skbxjv9egtv64hqrxq.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fl5skbxjv9egtv64hqrxq.png" alt="php info" width="800" height="516"></a></p> <ul> <li>Select and copy all information on the page.</li> <li><p>You'll next need to go to the XDebug <a href="https://xdebug.org/wizard.php" rel="noopener noreferrer">Wizard tool</a> and paste the information into a Text Box input field.</p></li> <li><p>Look for 'Analyze my phpinfo() output' and click it.<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftz7s3xcvzz3prm7h3n4g.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftz7s3xcvzz3prm7h3n4g.png" alt="Xdebug wizard" width="662" height="623"></a></p></li> <li> <p>There is a module that may be downloaded under Instructions, number 1. As you can see in the image below:<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fe0l9e78lmomvui8ae8mb.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fe0l9e78lmomvui8ae8mb.png" alt="Instruction" width="654" height="246"></a><br> Please note that the path to the directory in this example may be different from yours, so please pay attention to the directions in the image above.</p> <h4> MAC </h4> <p>You can install PHP7 Xdebug using pecl extension:<br> </p> </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>pecl install xdebug </code></pre> </div> <h4> Linux </h4> <p>On Linux distribution like fedora 32, you can use Sudo to install Xdebug in PHP:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>sudo yum install php-xdebug </code></pre> </div> <p>you can refer to the <a href="https://xdebug.org/docs/install" rel="noopener noreferrer">xdebug</a> docs if you use other linux distribution.<br> It's time to enable Xdebug by adding the following code to file <code>xdebug.ini</code> under <code>etc/php/7.0/mods-available/</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="py">xdebug.profiler_enable_trigger</span> <span class="p">=</span> <span class="s">1</span> <span class="py">xdebug.profiler_enable</span> <span class="p">=</span> <span class="s">0</span> <span class="py">xdebug.remote_enable</span> <span class="p">=</span> <span class="s">1</span> <span class="py">xdebug.profiler_output_dir</span> <span class="p">=</span> <span class="s">"/tmp"</span> </code></pre> </div> <p>Now restart your server.</p> <h2> Step 2 — Enabling the XDebug extension in PHP </h2> <p>Microsoft's Visual Studio Code (VS Code) is a free open source text editor. VS Code is available for Windows, Linux, and Mac. There are significant features in the editor that make VS Code one of the most popular programming environments in recent years, despite its size.<br> Firt</p> <ul> <li><p>Launch VS Code</p></li> <li><p>Install the Felix Becker PHP Debug extension. The PHP Debug extension may be found in VSCode's Extensions tab by searching for it.<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fpbnqixt6qa7wtmvylj4k.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fpbnqixt6qa7wtmvylj4k.png" alt="PHP DEBUG" width="800" height="376"></a></p></li> <li><p>Click on the <code>Run</code> tab and click on add configuration.<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fp6tl0ctfvzlg1kudpycn.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fp6tl0ctfvzlg1kudpycn.png" alt="Run Tab" width="768" height="590"></a><br> Now, you'll need to pick the PHP environment. A new <code>launch.json</code> file will be added to the root directory by VSCode.<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwr61mgfmvd2za9et74o2.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwr61mgfmvd2za9et74o2.png" alt="Alt Text" width="767" height="558"></a><br> Finally, add the <code>runtimeExecutable</code> property to the list after port replacing <code>path_to_php_executable</code> with the path to your php executable:<br> </p></li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="nl">"runtimeExecutable"</span><span class="p">:</span><span class="w"> </span><span class="s2">"path_to_php_executable"</span><span class="w"> </span></code></pre> </div> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fpbcoekvtknptin3sh0j8.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fpbcoekvtknptin3sh0j8.png" alt="Launch.json" width="708" height="554"></a><br> Please save the file <code>launch.json</code>. Start debugging by opening the debug mode tab and clicking the green debug button.<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4m3moxvtqpnv9gaol0vv.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4m3moxvtqpnv9gaol0vv.png" alt="debug" width="800" height="555"></a><br> You will now see several options in the window, via which you can pick what logs Xdebugger will show like:</p> <ul> <li>Notices</li> <li>Warnings</li> <li>Errors</li> <li>Exceptions</li> <li>Everything</li> </ul> <p>Access the Debug Console, which displays error information and debug execution buttons at the top.</p> <p>You have the option to make your selections. What I'm going to tell you now is something I've previously addressed in the early stage breakpoints. A breakpoint on a line of code is now available. It's important to note that Xdebug will display the PHP debug script name and line number in the bottom left area.</p> <p>In order to debug the application correctly you may launch it in the browser and then go through the code line-by line to spot the issues and fix them. A few shortcut keys for functions and lines of codes should also be remembered:</p> <p><code>F5</code>: Continue Debugging</p> <p><code>F10</code>: Step Over</p> <p><code>F11</code>: Step into</p> <p><code>Shift + F11</code>: Step out<br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Feqf89plvc6dtplkvt4pp.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Feqf89plvc6dtplkvt4pp.png" alt="debug" width="800" height="420"></a></p> <h2> Conclusion </h2> <p>Software development is never complete without debugging.<br> You can't tell what's wrong with the code without it.<br> A PHP debugger that identifies problems and warning signals fast is a fantastic idea if you're working on an application with thousands of lines of code and you want to be sure you've set up your debugging environment before you start writing code.</p> <p>In this article, you learnt how to enable PHP debugging with Xdebug and setup it in VSCode. IDEs like as Eclipse, PHPstorm, and others can also be used to incorporate it.</p> php vscode xdebug devops Yong Dev Sun, 05 Sep 2021 20:47:28 +0000 https://forem.com/yongdev/api-n54 https://forem.com/yongdev/api-n54 <p>Applications can access data and interact with external software components, operating systems, or microservices through APIs (Application Programming Interfaces).</p> <p>To put it simply, an API sends a user's response to a system and receives the system's response back. An API notifies the site that you have added a product to your cart; the website adds the product to your cart, and your cart is updated.<br> With regards to API, you could encounter the phrase "microservices." Nevertheless, they're not the same thing! In a web application, microservices are used to separate functions. API, on the other hand, is the structure through which web application developers communicate with a web site. As a matter of fact, microservices can communicate via APIs.</p> <h2> What are APIs and how do they work? </h2> <p>An Application programming interface is made up of two parts that are interconnected. Firstly, there is a specification that explains how information is shared between programmes, in the form of a request for processing and a return of the necessary data. An interface developed to that standard and made available for usage is the second. Calling and publishing are two terms that refer to software that wishes to use the features and capabilities of an API. In other words, APIs allow users and other programmes to access data that has been requested by them.For example, preset roles govern which services may access certain actions or data, and access to a given service or feature is authenticated against predefined roles. APIs also offer a system audit trail that shows who or what accessed the system when.</p> <p>A lot of the time, the applications that call APIs have been developed in a specific programming language. However, web APIs may also be accessible using HTML or application generation tools. Representative state transfer (REST) and Simple Object Access Protocol (SOAP) are the two most prevalent API architectures, and they both offer standard communication protocol specifications for XML-based message exchange. However, REST APIs are easier to scale and redeploy as well as to build and connect with websites and services than SOAP APIs, which need less low-level infrastructure-related code. Particularly for web-based interactions, REST APIs are the current industry standard.</p> Yong Dev Mon, 30 Aug 2021 11:18:32 +0000 https://forem.com/yongdev/sql-injection-101-1cc8 https://forem.com/yongdev/sql-injection-101-1cc8 <p>Security flaws such as SQL injection allow an attacker to meddle with a database query. It allows an attacker to access data that they would not usually be able to. Data belonging to other users, or any other data that the programme itself has access to, may be included in this. As a result, the application's content or behaviour can be permanently altered by an attacker in many instances.</p> <p>Sometimes, an attacker can use a denial-of-service attack in conjunction with a SQL injection attack to compromise a server.</p> <h2> SQL Injection - What is It? </h2> <p>SQL Injection (Sqli) is a sort of injection attack that allows malicious SQL queries to be executed. These statements are used to operate a database server that is hidden behind a web app. By exploiting SQL Injection vulnerabilities, attackers are able to circumvent application security controls. SQL Injection is a technique that allows hackers to add, edit, or remove entries in a database by bypassing the authentication and permission of a web page or online application.<br> Any website or online application that uses a SQL database, such as Oracle, SQL Server,MySQL, or others, may be vulnerable to the SQL Injection vulnerability. Cybercriminals may use it to obtain illegal access to your sensitive data, including your customer information, personal information, and more, Security experts consider SQL Injection attacks to be one of the web's oldest, most common, and most serious weaknesses. Injections are the number one danger to online application security, according to the OWASP organisation <a href="https://owasp.org/www-project-top-ten/">(Open Web Application Security Project)</a>.</p> <h2> An SQL Injection Attack: How It Works and Why it Is </h2> <p>An attacker must first discover immune - compromised user inputs on a web page or web application in order to launch a SQL Injection attack against them. Such user input is used directly in a SQL query on a web page or web application that contains a SQL Injection vulnerability. The attacker has the ability to produce input material and modify it. Malicious payloads are commonly used to describe this type of material. As soon as the attacker delivers this material to the database, malicious SQL instructions are performed.</p> <p>In relational databases, SQL is the query language of choice. Access, change and delete data is possible with it. As a result, SQL databases are used by many online apps and websites to store all the data. Additionally, you can utilise SQL commands to perform operating-system commands in specific situations. SQL Injection attacks can have significant repercussions if they succeed.</p> <ul> <li>It is possible for hackers to discover other users' passwords by using SQL Injections on the database. Then, they can pose as these users and get access to their accounts. Alternatively, the impersonated user may be an administrator of a database with full access capabilities.</li> <li>SQL allows you to retrieve and produce data from a database using a query language. Unpatched SQL Injection flaws might enable a hacker access to all of the information contained within an organization's database server.</li> <li>Some database servers allow you to connect to the operating system through the database server itself. This might be deliberate or unintentional. SQL Injection might be used in such a scenario to attack the internal network behind a firewall.</li> <li>SQL also allows you to add and edit data in a database. Example: An attacker might use SQL Injection in a banking software to manipulate balances and move money to their account.</li> <li>As well as deleting entries, you can also drop tables using SQL. In spite of database backups, loss of data might impair app availability until backups are restored, assuming they are made. In addition, backups may not include the most current data, which might be problematic.</li> </ul> <p>These attacks can be classified as in-band (using database faults or UNION commands), blind, and out-of-band (using a remote server). Please see the following articles for further information about them: <a href="https://owasp.org/www-community/attacks/SQL_Injection">SQL Injections</a>.</p> <h2> An Example of SQL Injection </h2> <p>To begin, let's look at a basic example. An attacker can circumvent application security by exploiting a SQL Injection vulnerability to authenticate as the administrator.</p> <p>A web server executes the following pseudocode. Authentication with a username and password is demonstrated in this example. Username and password are stored in a table named users in the sample database.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code># Define POST variables user = $_POST['username']; pass = $_POST['password']; # SQL query vulnerable to SQLi sql = “SELECT id FROM users WHERE username=’” + user + “’ AND password=’” + pass + “’” # Execute the SQL statement database.execute(sql) </code></pre> </div> <p>SQL Injection is possible in these input fields. An attacker might utilise SQL instructions in the input to change the SQL statement that the database server executes. They could, for example, use a single quote technique to change the pass field to:<code>badguy' OR 1=1</code><br> So, the database server executes this SQL query:<br> <code>SELECT id FROM users WHERE username='username' AND password='password' OR 1=1'</code><br> The <code>WHERE</code> clause returns the first id from the users table  regardless what the <code>username</code> and <code>password</code> are because of the <code>OR 1=1</code>statement. The administrator is frequently the initial user <code>id</code> in a database. The attacker not only gets administrator access but also bypasses authentication.</p> <h2> How to Prevent an SQL Injection </h2> <p>SQL Injection issues can be difficult to prevent. SQLi vulnerability subtypes, SQL database engines, and programming languages all have different protection methods. If you want to make your online application safe, there are a few broad strategic guidelines to follow.</p> <h4> Step 1: Train yourself and stay mindful </h4> <p>If you want to make your online application safe, everyone engaged in creating it has to know about SQL Injections. All your developers, QA personnel, DevOps, and SysAdmins should receive appropriate security training. You might start by directing them to this <a href="https://owasp.org">website</a>.</p> <h4> Step 2: Don't rely on any input from the user. </h4> <p>You should consider all user input to be suspect. As long as a user input is utilised in a SQL query, there is a possibility of SQL Injection occurring. Use the same approach when dealing with input from authorised and/or internal users.</p> <h4> Step 3:Take advantage of the newest technology. </h4> <p>There's no SQLi security in older web development tools. Ensure that you're using the newest version of the development environment and language, as well as the latest technology associated with those environments/languages Use PDO instead of MySQLi, for example, in PHP.</p> <h4> Step 4: Using whitelists instead of blacklists. </h4> <p>The usage of blacklists should not be used to censor the input of users. A smart attacker will almost always find a method to get around your blacklist. Whenever feasible, only employ tight whitelists to validate and restrict user inputs.<br> Step 5: Scan on a frequent basis.<br> It is possible for your developers to add SQL Injections, or for other libraries/modules/software to do so. A web vulnerability scanner should be used to check your online applications on a regular basis.</p> <h4> Step 6: Verify your methods. </h4> <p>Don't try to create SQLi protection from the ground up. Almost all of today's programming tools have techniques for protecting against SQLi. Such techniques should be used instead of attempting to try something new from scratch Use structured query language, for example, or stored procedures.</p> sql security php server