You want to hide some sensitive business rules of your application securely.

There are many different options for securing php-gtk applications. One method is to encode your script. But Here we present another method quite similar to the concept as described in the article How to distribute your PHP - GTK applications - Method 1?

This method basically stores your sensitive business rules on your server. Your local php-gtk application sends in the input. The server does the computation and pass back the values to your php-gtk application for display.

Please take a look first at the sample code below. Run the code, and you should get the output as shown below.

• Note that this is only 70% of the sample code. You have to be a registered member to see the entire sample code. Please login or register.
• Registration is free and immediate.
• Have some doubt about the registration? Please read this forum article.

PHP starts off as a web language, and PHP-GTK is an extension of PHP. By leveraging on PHP's strength in web and PHP-GTK's capability in GUI application development, one can come out with very interesting ways of doing things.

Please first take a look at the article How to distribute your PHP - GTK applications - Method 1? if you haven't.

Just like an include statemet, the file_get_contents statement can take in any valid url too. And this is exactly what we are using here.

$z

The statement $output = file_get_contents("http://www.kksou.com/php-gtk2 /remote/secured_business_rules.php?n=$input") calls this file located on the server, passing in the value of the $input via standard url protocol. The server performs the computation and returns the output to the php-gtk application which then displays the result in the GUI window.

The demo here simply computes the square of the number. Of course one can perform any kind of business rules and computations here.

Note that this method is based on the assumption that the client running the php-gtk application is connected by LAN or broadband to your server.

This method of hiding your sensitive business rules of your application is as secured as how well your server is protected.

User reviews   Average user ratings:    5.0   (from 3 users)

1. Pankti from India
   July 25, 2007 10:39pm
   
   

   I am trying to do remote access from linux server but getting following error:
   Warning: include_once() [function.include-once]: URL file-access is disabled in the server configuration in file name on line 3
   
   Warning: include_once(http://linux-host/php-gtk2/test.php) [function.include-once]: failed to open stream: no suitable wrapper could be found in file name on line 3
   
   Warning: include_once() [function.include]: Failed opening 'http://linux host/php-gtk2/test.php' for inclusion
   (include_path='.;C:\xampplite\php\pear\') in
   
   file name on line 3
   Please help me out

2. Ray
   August 07, 2007 9:30pm
   
   

   Pankti, that mesage means that your server
   has fopen_url turned off, which is very very
   good because many PHP security holes are
   based on fopen_url. What you want to do is cURL
   instead when you really want to retrieve a
   remote file. See:
   http://blog.unitedheroes.net/curl/
   
   Alternatively, you can turn on fopen_url just for
   that one short section of your script, then
   turn it off again.

3. martti pitkanen
   March 07, 2009 3:08pm
   
   

Note: You have to be a registered member to leave a comment. Free registration here.