php-gtk2 Cookbook by kksou

Google's CSE Search

Latest Comments

DirectPHP plugin
	today @ 02:25
	Jose1974: Fantastic job!!! And only 4Kb!!! Incredible, fantistic, no words, congratulation...
How to display multiple marker...
	yesterday @ 22:04
	Rk: I have another example http://www.etechpulse.com/2013/05/how-to-show-google-map-...
Yahoo Stock Quote (AJAX module...
	yesterday @ 04:43
	kufer: Hi guys I?ve a problem using your module I installed it successfully and I?m usi...
DirectPHP plugin
	May 16 @ 09:50
	Netsistence: As suggested by someone at the joomla forum I decided to reïnstall Joomla, using...
DirectPHP plugin
	May 16 @ 01:02
	Netsistence: Looking at joomla forum last night, found more issues on this error for Joomla 3...
DirectPHP plugin
	May 15 @ 21:04
	kksou: Hi, You mentioned that you're using PHP version 5.3.3-7 + Squeeze3 Could it be b...
DirectPHP plugin
	May 15 @ 11:56
	Netsistence: Hi, I tried new installation on the same server Get the same error. On the same ...
DirectPHP plugin
	May 15 @ 08:59
	kksou: Hi, That's really strange, because I just tried installing it on a fresh install...
Yahoo Currency Converter - AJA...
	May 15 @ 08:10
	rocketero: Thank you guys for all the input and help. apparently as Dusan and you Kksou sai...
DirectPHP plugin
	May 15 @ 08:08
	Netsistence: Sorry, forgot to answer that part of your question. Yes, the error comes up whil...

Twitter News

Twitter News (total 20)

PHP-GTK2 eBooks

Main Menu

Home

Sample Codes

List all sample codes

Browse all sample codes

RSS Feed (PHP-GTK2)

Joomla Samples Menu

Links

Kenneth Chen's Blog
Restaurants Review
Powerpoint Resources

PHP-GTK2 Newsletter

PHP-GTK2 Tips & Techniques
FREE Newsletter
by kksou

Your privacy is respected.

Sample Code 29: How to hide sensitive business rules of your application securely?

Written by kksou

Thursday, 21 September 2006

Problem

You want to hide some sensitive business rules of your application securely.

Solution

There are many different options for securing php-gtk applications. One method is to encode your script. But Here we present another method quite similar to the concept as described in the article How to distribute your PHP - GTK applications - Method 1?

This method basically stores your sensitive business rules on your server. Your local php-gtk application sends in the input. The server does the computation and pass back the values to your php-gtk application for display.

Please take a look first at the sample code below. Run the code, and you should get the output as shown below.

Sample Code

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30

<?php
$window = new GtkWindow();
$window->connect_simple('destroy', array( 'Gtk', 'main_quit'));
$window->set_size_request(400,200);
$window->add($vbox = new GtkVBox());

// display title
$title = new GtkLabel("Hide sensitive business rules securely");
$title->modify_font(new PangoFontDescription("Times New Roman Italic 10"));
$title->modify_fg(Gtk::STATE_NORMAL, GdkColor::parse("#0000ff"));
$title->set_size_request(-1, 60);
$vbox->pack_start($title, 0, 0);

// setup input label and text entry
$vbox->pack_start(new GtkLabel(), 0, 0);
$vbox->pack_start($hbox = new GtkHBox(), 0, 0);
$hbox->pack_start(new GtkLabel('Input an integer: '), 0, 0);
$hbox->pack_start($entry = new GtkEntry(), 0, 0);
$hbox->pack_start(new GtkLabel(' '), 0, 0);

// setup submit button
$hbox->pack_start($button = new GtkButton('Submit'), 0, 0);
$button->set_size_request(60, 24);

// setup output
$vbox->pack_start(new GtkLabel(), 0, 0);
$vbox->pack_start($hbox = new GtkHBox(), 0, 0);
$hbox->pack_start(new GtkLabel('Output from server: '), 0, 0);
$hbox->pack_start($result = new GtkLabel(''), 0, 0);

Note that this is only 70% of the sample code. You have to be a registered member to see the entire sample code. Please login or register.
Registration is free and immediate.
Have some doubt about the registration? Please read this forum article.

Explanation

PHP starts off as a web language, and PHP-GTK is an extension of PHP. By leveraging on PHP's strength in web and PHP-GTK's capability in GUI application development, one can come out with very interesting ways of doing things.

Please first take a look at the article How to distribute your PHP - GTK applications - Method 1? if you haven't.

Just like an include statemet, the file_get_contents statement can take in any valid url too. And this is exactly what we are using here.

The content of the file secured_business_rules.php is as shown below:
Parse error: syntax error, unexpected $end in /home/fann/kksou.com/php-gtk2/util/phpgtk2_lib_t34.php(715) : eval()'d code on line 5
"; $z = htmlentities($z); $z = str_replace("\r\n", "
", $z); $z = str_replace("\n", "
", $z); $z = str_replace(" ", " ", $z); $z = str_replace("\t", " ", $z); print "

"; ?>

The statement $output = file_get_contents("http://www.kksou.com/php-gtk2 /remote/secured_business_rules.php?n=$input") calls this file located on the server, passing in the value of the $input via standard url protocol. The server performs the computation and returns the output to the php-gtk application which then displays the result in the GUI window.

The demo here simply computes the square of the number. Of course one can perform any kind of business rules and computations here.

Note that this method is based on the assumption that the client running the php-gtk application is connected by LAN or broadband to your server.

Note

This method of hiding your sensitive business rules of your application is as secured as how well your server is protected.

Add comment

JComments

< Prev		Next >

[ Back ]