Fix Email Issues in CyberPanel with SMTP Relay Setup Free Method. First Create a email using your Cyberpanel Under Emai Tab Create Email Second go to the SSL tab and click …
You’ve probably seen many examples of password strength indicators around the web. They let users know the password they’re using is weak and indicate how the strength changes when it’s modified. …
In this articles I am going to show how to install composer in windows 7 First we have to download composer link is given below https://getcomposer.org/ Click on Run Click on …
How to create a multi-user auth system in Laravel 8. Different login for user and admin configuration Larave8. Let,s Start composer create-project –prefer-dist laravel/laravel UserRegistrationSystem cd /UserRegistrationSystem create .env file in …
DB_DATABASE=your databse name
DB_USERNAME=Your database username
DB_PASSWORD=Your database password
composer require laravel/breeze
php artisan breeze:install
npm install
npm run dev
php artisan migrate
php artisan serve
Now you can see in the right side top bar login and register link appear
Create model as named Admin and migrate table using below command
php artisan make:model Admin -m
Go to the migrations folder and open the newly created 2021_10_07_154242_create_admins_table
Paste the below code
<?php
use Illuminate\Database\Migrations\Migration;
use Illuminate\Database\Schema\Blueprint;
use Illuminate\Support\Facades\Schema;
class CreateAdminsTable extends Migration
{
/**
* Run the migrations.
*
* @return void
*/
public function up()
{
Schema::create('admins', function (Blueprint $table) {
$table->id();
$table->string('name');
$table->string('email')->unique();
$table->timestamp('email_verified_at')->nullable();
$table->string('password');
$table->rememberToken();
$table->timestamps();
});
}
/**
* Reverse the migrations.
*
* @return void
*/
public function down()
{
Schema::dropIfExists('admins');
}
}
Go to the Model folder and open the newly created Admin model and paste the below code
<?php
namespace App\Models;
use Illuminate\Contracts\Auth\MustVerifyEmail;
use Illuminate\Database\Eloquent\Factories\HasFactory;
use Illuminate\Foundation\Auth\User as Authenticatable;
use Illuminate\Notifications\Notifiable;
use Laravel\Sanctum\HasApiTokens;
class Admin extends Authenticatable
{
use HasApiTokens, HasFactory, Notifiable;
/**
* The attributes that are mass assignable.
*
* @var string[]
*/
protected $fillable = [
'name',
'email',
'password',
];
/**
* The attributes that should be hidden for serialization.
*
* @var array
*/
protected $hidden = [
'password',
'remember_token',
];
/**
* The attributes that should be cast.
*
* @var array
*/
protected $casts = [
'email_verified_at' => 'datetime',
];
}
Now Set Route for Admin, go to the routes folder and open web.php file, and paste the below code
Create seed for admin using below command( we can manually import admin data but there will be password issue because we are inserted password has format).
php artisan make:seed AdminSeeder
Now you can see AdminSeeder.php file under the database→seeders→AdminSeeder.php
Paste the below code
AdminSeeder.php
<?php
namespace Database\Seeders;
use Illuminate\Database\Seeder;
use App\Models\Admin;
class AdminSeeder extends Seeder
{
/**
* Run the database seeds.
*
* @return void
*/
public function run()
{
//
$admin =[
'name'=>'Admin',
'email'=>'admin@gmail.com',
'password'=> bcrypt('password')
];
Admin::create($admin);
}
}
Now we have seed the data into the database using below command
we have to call DatabaseSeeder. Go to the DatabaseSeeder.php file and add the below code
public function run()
{
// \App\Models\User::factory(10)->create();
$this->call(AdminSeeder::class);
}
php artisan migrate:fresh --seed
Now create a guard for admin
Http→Model→Admin.php
below the use HasApiTokens, HasFactory, Notifiable;
protected $guard= 'admin';
Now go to the config folder and define the newly created Admin gurd on auth.php file.
<?php
return [
/*
|--------------------------------------------------------------------------
| Authentication Defaults
|--------------------------------------------------------------------------
|
| This option controls the default authentication "guard" and password
| reset options for your application. You may change these defaults
| as required, but they're a perfect start for most applications.
|
*/
'defaults' => [
'guard' => 'web',
'passwords' => 'users',
],
/*
|--------------------------------------------------------------------------
| Authentication Guards
|--------------------------------------------------------------------------
|
| Next, you may define every authentication guard for your application.
| Of course, a great default configuration has been defined for you
| here which uses session storage and the Eloquent user provider.
|
| All authentication drivers have a user provider. This defines how the
| users are actually retrieved out of your database or other storage
| mechanisms used by this application to persist your user's data.
|
| Supported: "session"
|
*/
'guards' => [
'web' => [
'driver' => 'session',
'provider' => 'users',
],
'admin' => [
'driver' => 'session',
'provider' => 'admins',
],
],
/*
|--------------------------------------------------------------------------
| User Providers
|--------------------------------------------------------------------------
|
| All authentication drivers have a user provider. This defines how the
| users are actually retrieved out of your database or other storage
| mechanisms used by this application to persist your user's data.
|
| If you have multiple user tables or models you may configure multiple
| sources which represent each model / table. These sources may then
| be assigned to any extra authentication guards you have defined.
|
| Supported: "database", "eloquent"
|
*/
'providers' => [
'users' => [
'driver' => 'eloquent',
'model' => App\Models\User::class,
],
'admins' => [
'driver' => 'eloquent',
'model' => App\Models\Admin::class,
],
// 'users' => [
// 'driver' => 'database',
// 'table' => 'users',
// ],
],
/*
|--------------------------------------------------------------------------
| Resetting Passwords
|--------------------------------------------------------------------------
|
| You may specify multiple password reset configurations if you have more
| than one user table or model in the application and you want to have
| separate password reset settings based on the specific user types.
|
| The expire time is the number of minutes that the reset token should be
| considered valid. This security feature keeps tokens short-lived so
| they have less time to be guessed. You may change this as needed.
|
*/
'passwords' => [
'users' => [
'provider' => 'users',
'table' => 'password_resets',
'expire' => 60,
'throttle' => 60,
],
],
/*
|--------------------------------------------------------------------------
| Password Confirmation Timeout
|--------------------------------------------------------------------------
|
| Here you may define the amount of seconds before a password confirmation
| times out and the user is prompted to re-enter their password via the
| confirmation screen. By default, the timeout lasts for three hours.
|
*/
'password_timeout' => 10800,
];
Then go-to the Http→Middleware→RedirectIfAuthenticated.php and replace the below code
<?php
namespace App\Http\Middleware;
use App\Providers\RouteServiceProvider;
use Closure;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
class RedirectIfAuthenticated
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @param string|null ...$guards
* @return mixed
*/
public function handle(Request $request, Closure $next, ...$guards)
{
$guards = empty($guards) ? [null] : $guards;
foreach ($guards as $guard) {
if (Auth::guard($guard)->check()) {
if(Auth::guard($guard)->check()){
if($guard == 'admin'){
return redirect(RouteServiceProvider::ADMIN_HOME);
}
}
return redirect(RouteServiceProvider::HOME);
}
}
return $next($request);
}
}
Next, go to the Http→controllers→Admin→Auth→AuthenticatedSessionController.php
under the store function chek data is coming or not
dd($request->all());
Login with /login/admin
You can see successfully data has returned
Now go to the again AuthenticatedSessionController.php and change LoginRequest to AdminLoginRequest
Next, go to the Requests→Auth and create a new file AdminLoginRequest.php. paste the below code
<?php
namespace App\Http\Requests\Auth;
use Illuminate\Auth\Events\Lockout;
use Illuminate\Foundation\Http\FormRequest;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Support\Str;
use Illuminate\Validation\ValidationException;
class AdminLoginRequest extends FormRequest
{
/**
* Determine if the user is authorized to make this request.
*
* @return bool
*/
public function authorize()
{
return true;
}
/**
* Get the validation rules that apply to the request.
*
* @return array
*/
public function rules()
{
return [
'email' => ['required', 'string', 'email'],
'password' => ['required', 'string'],
];
}
/**
* Attempt to authenticate the request's credentials.
*
* @return void
*
* @throws \Illuminate\Validation\ValidationException
*/
public function authenticate()
{
$this->ensureIsNotRateLimited();
if (! Auth::guard('admin')->attempt($this->only('email', 'password'), $this->boolean('remember'))) {
RateLimiter::hit($this->throttleKey());
throw ValidationException::withMessages([
'email' => __('auth.failed'),
]);
}
RateLimiter::clear($this->throttleKey());
}
/**
* Ensure the login request is not rate limited.
*
* @return void
*
* @throws \Illuminate\Validation\ValidationException
*/
public function ensureIsNotRateLimited()
{
if (! RateLimiter::tooManyAttempts($this->throttleKey(), 5)) {
return;
}
event(new Lockout($this));
$seconds = RateLimiter::availableIn($this->throttleKey());
throw ValidationException::withMessages([
'email' => trans('auth.throttle', [
'seconds' => $seconds,
'minutes' => ceil($seconds / 60),
]),
]);
}
/**
* Get the rate limiting throttle key for the request.
*
* @return string
*/
public function throttleKey()
{
return Str::lower($this->input('email')).'|'.$this->ip();
}
}
Create a dashboard for admin
resources→views→admin- create a file name dashboard.blade.php
Now create a route for the admin dashboard under web.php file
Now create a HomeController under Admin folder using below command
php artisan make:controller Admin/HomeController
For windows, user command will
php artisan make:controller Admin\HomeController
And Linux User command will
php artisan make:controller Admin/HomeController
HomeController.php
<?php
namespace App\Http\Controllers\Admin;
use App\Http\Controllers\Controller;
use Illuminate\Http\Request;
class HomeController extends Controller
{
//
public function index()
{
return view('admin.dashboard');
}
}
Now you can see the error of Navigation
Now we will solve the error
simply compy the user layout folder and past it to admin folder
Next, go to the app/View/Components folder and create AdminLayout and paste the below code
AdminLayout.php
<?php
namespace App\View\Components;
use Illuminate\View\Component;
class AdminLayout extends Component
{
/**
* Get the view / contents that represents the component.
*
* @return \Illuminate\View\View
*/
public function render()
{
return view('admin.layouts.app');
}
}
Note: Under the Admin -layouts folder open navigation.blade.php file and replace all dashboard to admin.dashboard and change {{ Auth::user()->name }} to {{ Auth::guard(‘admin’)->user()->email }}
And most important things to do
Open admin→dashboard.blade.php change <x-app-layout> to<x-admin-layout>
Now you can see I logged in as an admin but when I typed but still access the admin login page, So it should not access the page, now we will solve the issue.
Open the welcome.blade.php file and add the below code
Now go to the Http→Controllers→Admin→Auth→AuthenticatedSessionController.php and replace with Auth::guard(‘web’)->logout(); to Auth::guard(‘admin’)->logout(); because we need to logout for admin guard.
Now you can see I have logged in as an admin but still access the admin login page. So, it should not access if already logged in, So, for this solution, we create middleware and set configuration
php artisan make:middleware AdminMiddleware
Now got to the middleware folder and open AdminMiddleware.php file and paste below code
AdminMiddleware.php
<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Http\Request;
use Auth;
class AdminMiddleware
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle(Request $request, Closure $next)
{
if(!Auth::guard('admin')->check()){
return redirect()->route('admin.lgin');
}
return $next($request);
}
}
Next, go to the web.php file and create a middleware group, and put the protected Url in a middleware group
Now you can see we can’t access the dashboard if I am not logged in but still we have another problem that is we can access the login page as I have already logged in. it should not access if I have already logged in. So we need to add middleware where login route running
In this article, I am going to show how to implement loadmore button using API and simple array data How to implement Load more button in React js from fetching API …
Introduction Composer is a popular dependency management tool for PHP, created mainly to facilitate installation and updates for project dependencies. It will check which other packages a specific project depends on and …
Composer is a popular dependency management tool for PHP, created mainly to facilitate installation and updates for project dependencies. It will check which other packages a specific project depends on and install them for you, using the appropriate versions according to the project requirements. Composer is also commonly used to bootstrap new projects based on popular PHP frameworks, such as Symfony and Laravel.
In this tutorial, you’ll install and get started with Composer on an Ubuntu 20.04 system
Prerequisites
In order to follow this guide, you will need access to an Ubuntu 20.04 server as a non-root sudo user, and a firewall enabled on your server. To set this up, you can follow our initial server setup guide for Ubuntu 20.04.
Step 1 — Installing PHP and Additional Dependencies
In addition to dependencies that should be already included within your Ubuntu 20.04 system, such as git and curl, Composer requires php-cli in order to execute PHP scripts in the command line, and unzip to extract zipped archives. We’ll install these dependencies now.
First, update the package manager cache by running:
sudo apt update
Next, run the following command to install the required packages:
sudo apt install php-cli unzip
You will be prompted to confirm installation by typing Y and then ENTER.
Once the prerequisites are installed, you can proceed to install Composer.
Step 2 — Downloading and Installing Composer
Composer provides an installer script written in PHP. We’ll download it, verify that it’s not corrupted, and then use it to install Composer.
Make sure you’re in your home directory, then retrieve the installer using curl:
cd ~
curl -sS https://getcomposer.org/installer -o composer-setup.php
Next, we’ll verify that the downloaded installer matches the SHA-384 hash for the latest installer found on the Composer Public Keys / Signatures page. To facilitate the verification step, you can use the following command to programmatically obtain the latest hash from the Composer page and store it in a shell variable:
If the output says Installer corrupt, you’ll need to download the installation script again and double-check that you’re using the correct hash. Then, repeat the verification process. When you have a verified installer, you can continue.
To install composer globally, use the following command which will download and install Composer as a system-wide command named composer, under /usr/local/bin:
output
All settings correct for using Composer Downloading... Composer (version 1.10.5) successfully installed to: /usr/local/bin/composer Use it: php /usr/local/bin/composer
To test your installation, run:
Output
______
/ ____/___ ____ ___ ____ ____ ________ _____
/ / / __ \/ __ `__ \/ __ \/ __ \/ ___/ _ \/ ___/
/ /___/ /_/ / / / / / / /_/ / /_/ (__ ) __/ /
\____/\____/_/ /_/ /_/ .___/\____/____/\___/_/
/_/
Composer version 1.10.5 2020-04-10 11:44:22
Usage:
command [options] [arguments]
Options:
-h, --help Display this help message
-q, --quiet Do not output any message
-V, --version Display this application version
--ansi Force ANSI output
--no-ansi Disable ANSI output
-n, --no-interaction Do not ask any interactive question
--profile Display timing and memory usage information
--no-plugins Whether to disable plugins.
-d, --working-dir=WORKING-DIR If specified, use the given directory as working directory.
--no-cache Prevent use of the cache
-v|vv|vvv, --verbose Increase the verbosity of messages: 1 for normal output, 2 for more verbose output and 3 for debug
...
This verifies that Composer was successfully installed on your system and is available system-wide.
In this article, I will show how to install a Cyber panel on Digital ocean. One-click install very Simple and easy process In this article, I am going to show how …
In this article, I will show how to install a Cyber panel on Digital ocean. One-click install very Simple and easy process
In this article, I am going to show how to install Cyber Panel on Digitalocean. One-click install very Simple and easy process. Host a PHP based website on Cyberpanel full process Step by Step
Let’s start…
If you have already registered then login into your Digital Ocean panel
Click Marketplace and search Cyberpanel.
Choose a plan Basic and Select Regular Intel with SSD and choose 10$/month CPU option.
Choose a data center region
if you are from India choose Bangalore
Select an additional option IPV6
Create a root password to access Droplet (less secure)
Create a Complex Password for your droplet otherwise, you cant create a droplet
Note: You can choose SSH keys this is more secure.
Click on Create Droplet. it will take 5 to 10 minutes according to your internet speed.
Once your droplet is ready then you can get your droplet IP on the top.
Copy the IP and open your terminal.
ssh root@your droplet ip
password= your droplet password
Once Successfully log in you were asked for an update. Simply type Y and press Enter. Once Complete the update restart your terminal or exit.
Again login with ssh and you will get the cyber panel link and PHPMyAdmin link
sudo cat .litespeed_password
This command will generate your cyber panel admin user and password.
Now You can log in with this credential. Cyber Panel Completely installed
While WordPress itself is a secure platform, this doesn’t make your site immune to break-ins. One of the most common attacks is human or bot hackers trying to force their way …
While WordPress itself is a secure platform, this doesn’t make your site immune to break-ins. One of the most common attacks is human or bot hackers trying to force their way through your login page by trying various username and password combinations until something works. To keep them from succeeding, you can use a WordPress limit login attempts plugin.
By default, people can continuously try to log into your site, with no restrictions on attempts. However, most legitimate users won’t need more than a few tries (at most). Therefore, you can limit the number of login attempts made from a specific IP address in a set amount of time. Any user who goes over the limit can be temporarily or permanently locked out.
In this post, we’re going to show you how to set the feature up using a free WordPress limit login attempts plugin. Then, we’ll share some of the pros and cons of this approach. Let’s get to work!
Step 1: Install the WordPress limit login attempts plugin
For most users, a WordPress limit login attempts plugin is the best option to restrict login attempts. There are several quality options, but we recommend the free Limit Login Attempts Reloaded plugin because it’s:
100% free.
Popular – active on over 1 million sites, according to WordPress.org.
Well-rated – a 4.8-star rating (out of 5).
Easy to use.
While the plugin is easy to use at a basic level (it starts working as soon as you activateit), it also boasts a variety of configuration options, including some handy extras (such as the ability to whitelist or blacklist both IPs and usernames).
To get started, install and activate the Limit Login Attempts Reloaded plugin at your WordPress site. If you’re not sure how to install a WordPress plugin.
Step 2: Customize the plugin’s settings
As soon as you activate the plugin, it starts working right away. By default, users get four guesses before the plugin locks them out:
However, the plugin also provides a settings area where you can modify how this functionality works.
To access this area, go to Settings > Limit Login Attempts:
In the Statistics section, you can find details about how many ‘lockouts’ have occurred due to the plugin. This will be empty right now, but you can check back later to see how many potential brute force attempts the plugin has halted.
Then, under Options, you can customize how the lockout system works. This includes deciding how many guesses the plugin will allow, the length of time users will be locked out for, and more. You can even enable a GDPR-compliance setting, which will obfuscate all recorded IPs for privacy reasons.
Scrolling down a bit, you’ll also find sections labeled Whitelist and Blacklist:
Here, you can enter specific IPs and/or usernames. If you add a user to the whitelist, they’ll be able to log into your site as many times as they’d like, and won’t have to worry about getting locked out.
Adding someone to the blacklist, on the other hand, will permanently lock them out. The latter option is handy if you see a lot of suspicious activity coming from one or more specific IP addresses.
Don’t forget to save your changes to this page when you’re done configuring the settings. That’s all you need to do to limit login attempts in WordPress!
What is XML-RPC? XML-RPC is an API that warps the information or data into an XML file and sends it to the mobile app or remote software. This was introduced as …
XML-RPC is an API that warps the information or data into an XML file and sends it to the mobile app or remote software. This was introduced as in the olden days, internet speed is not fast, instead of writing it online. Users write their content offline and publish it all together using the API. As the internet services improved, most of us does not use the feature anymore, often it was forgotten by us.
XML-RPC is a remote procedure call protocol that allows anyone to interact with your WordPress website remotely. In other words, it’s a way to manage your site without having to log in manually via the standard “wp-login.php” page. It’s widely used by plugins, most famously by Automattic’s own Jetpack plugin. These days, however, the word “XML-RPC” has gotten a bad name. In this tutorial, we will explain what is WordPress XML-RPC and how to stop an XML-RPC attack on your WordPress website.
Is XML-RPC Enabled on Your WordPress Website?
A quick way to check if your site is vulnerable is to visit the following URL from a browser:
yoursite.com/xmlrpc.php
If it’s enabled, you should get a response that says “XML-RPC server accepts POST requests only.” Like this:
The Dangers and Benefits of XML-RPC
There’s been a lot of back and forth in the WordPress security community about XML-RPC. There are mostly two concerns:
XML-RPC can be used to DDoS a site
It can be used to repeatedly try username/password combinations
At least, these were possible. WordPress has since plugged loopholes that allowed people to try hundreds of usernames and passwords at once. Since version 4.4, it’s been quite improved. Now WordPress will silently fail all subsequent login attempts as soon as a single XML-RPC call has failed. Great!
However, there are those who are still concerned about the ease by while remote procedure calls like this can be made. So here are a few ways to secure your site against XML-RPC – starting from the lightest touch to the heaviest.
Method 1: Disable Pingbacks
This is a process that uses your server as an unwitting participant in an attack against another server. Basically, someone tells your site “Hey, this URL linked to your blog!” And then your site responds with a “pingback” to that URL. Except that there’s no verification that the URL actually did link back to you. Do this with hundreds of vulnerable WordPress sites, and you have a DDoS attack on your hands! The easiest way to prevent your site from being used in this manner is to add the following code to your theme’s functions.php:
Method 2: Prevent All Authentication Requests via XML-RPC
This second method determines whether you want to allow XML-RPC methods that authenticate users. Take for example, publishing a blog via e-mail. The site will receive your e-mail, authenticate you via XML-RPC, and then publish it if the credentials match.
A lot of people are uncomfortable with the ability of XML-RPC to just take in random calls like this. It’s what led to hundreds or thousands of authentication attempts in the first place. Even though WordPress has since addressed this particular form of hacking, there are those who recommend simply turning it off.
To do that, enter this code in functions.php:
add_filter('xmlrpc_enabled','__return_false');
It’s important to note that this is not the same as the first method. This code only disables authentication methods and leaves all others untouched – like pingbacks for example.
Method 3: Disable Access to xmlrpc.php
This is the most extreme method that completely disables all XML-RPC functionality. It requires you to edit the .htaccess file at the root of your WordPress directory. Add the following code to the top:
<files xmlrpc.php>
Order allow,deny
Deny from all
</files>
Note: If you find your WordPress installation doesn’t have a .htaccess file at its root folder, simply create one with the following default code.
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
Now with the above denial rules in effect, trying to access xmlrpc.php will be met with the following page:
What is PHP mail? PHP mail is the built in PHP function that is used to send emails from PHP scripts. The mail function accepts the following parameters: Email address Subject …
“$to_email_address” is the email address of the mail recipient
“$subject” is the email subject
“$message” is the message to be sent.
“[$headers]” is optional, it can be used to include information such as CC, BCC
CC is the acronym for carbon copy. It’s used when you want to send a copy to an interested person i.e. a complaint email sent to a company can also be sent as CC to the complaints board.
BCC is the acronym for blind carbon copy. It is similar to CC. The email addresses included in the BCC section will not be shown to the other recipients.
Simple Mail Transmission Protocol (SMTP)
PHP mailer uses Simple Mail Transmission Protocol (SMTP) to send mail.
On a hosted server, the SMTP settings would have already been set.
The SMTP mail settings can be configured from “php.ini” file in the PHP installation folder.
Configuring SMTP settings on your localhost Assuming you are using xampp on windows, locate the “php.ini” in the directory “C:\xampp\php”.
Open it using notepad or any text editor. We will use notepad in this example. Click on the edit menu
Click on Find… menu
The find dialog menu will appear
Click on Find Next button
Locate the entries
[mail function]
; XAMPP: Don’t remove the semi column if you want to work with an SMTP Server like Mercury
; SMTP = localhost
; smtp_port = 25
Remove the semi colons before SMTP and smtp_port and set the SMTP to your smtp server and the port to your smtp port. Your settings should look as follows
SMTP = smtp.example.com
smtp_port = 25
Note the SMTP settings can be gotten from your web hosting providers.
If the server requires authentication, then add the following lines.
auth_username = example_username@example.com
auth_password = example_password
Save the new changes.
Restart Apache server.
PHP Mail Example
Let’s now look at an example that sends a simple mail.
<?php
$to_email = 'name @ company . com';
$subject = 'Testing PHP Mail';
$message = 'This mail is sent using the PHP mail function';
$headers = 'From: noreply @ company . com';
mail($to_email,$subject,$message,$headers);
?>
Output:
Note: the above example only takes the 4 mandatory parameters.
You should replace the above fictitious email address with a real email address.
Sanitizing email user inputs
The above example uses hard-coded values in the source code for the email address and other details for simplicity.
Let’s assume you have to create a contact us form for users fill in the details and then submit.
Users can accidently or intentional inject code in the headers which can result in sending spam mail
To protect your system from such attacks, you can create a custom function that sanitizes and validates the values before the mail is sent.
Let’s create a custom function that validates and sanitizes the email address using the filter_var built-in function.
Filter_var function The filter_var function is used to sanitize and validate the user input data.
It has the following basic syntax.
<?php
filter_var($field, SANITIZATION TYPE);
?>
HERE,
“filter_var(…)” is the validation and sanitization function
“$field” is the value of the field to be filtered.
“SANITIZATION TYPE” is the type of sanitization to be performed on the field such as;
FILTER_VALIDATE_EMAIL – it returns true for valid email addresses and false for invalid email addresses.
FILTER_SANITIZE_EMAIL – it removes illegal characters from email addresses. info\@domain.(com) returns info@domain.com.
FILTER_SANITIZE_URL – it removes illegal characters from URLs. http://www.example@.comé returns >http://www.example@.com
FILTER_SANITIZE_STRING – it removes tags from string values. <b>am bold</b> becomes am bold.
The code below implements uses a custom function to send secure mail.
<?php
function sanitize_my_email($field) {
$field = filter_var($field, FILTER_SANITIZE_EMAIL);
if (filter_var($field, FILTER_VALIDATE_EMAIL)) {
return true;
} else {
return false;
}
}
$to_email = 'name @ company . com';
$subject = 'Testing PHP Mail';
$message = 'This mail is sent using the PHP mail ';
$headers = 'From: noreply @ company. com';
//check if the email address is invalid $secure_check
$secure_check = sanitize_my_email($to_email);
if ($secure_check == false) {
echo "Invalid input";
} else { //send email
mail($to_email, $subject, $message, $headers);
echo "This email is sent using PHP Mail";
}
?>
Output:
Secure Mail
Emails can be intercepted during transmission by unintended recipients.
This can exposure the contents of the email to unintended recipients.
Secure mail solves this problem by transmitting emails via Hypertext Transfer Protocol Secure (HTTPS).
HTTPS encrypts messages before sending them.
Summary
The PHP built in function mail() is used to send mail from PHP scripts
Validation and sanitization checks on the data are essential to sending secure mail
The PHP built in function filter_var() provides an easy to use and efficient way of performing data sanitization and validation
In this post, we have share tutorial on How to join multiple tables using Eloquent Model in Laravel framework and then after fetch data from multiple table and display on web …
In this post, we have share tutorial on How to join multiple tables using Eloquent Model in Laravel framework and then after fetch data from multiple table and display on web page in HTML table format. So in this post you will find the solution of how to fetch data from multiple table by join multiple table using Eloquent Model under this Laravel framework. In this post we will use inner join for fetch data data from multiple table using Eloquent join table relationship. So by using this tutorial, you can learn How to retrieve data from multiple tables using join multiple table with eloquent model relationship in single query run under this Laravel 8 framework.
So If you want to learn How to Join Multiple Tables in Laravel framework using Eloquent Model relationship then this post will help you, because in this post you can find step by step guide for implement how can we implement inner join for multiple tables join using Eloquent model under this Laravel framework. Under this post we have use Eloquent model in place of simple Laravel join, this is because Laravel Eloquent model is more effective that simple Laravel join while we have to fetch data from multiple table in single query. So for this here we have use Eloquent model for join multiple table in Laravel framework. Below you can find step by step guide for how to join multiple table using Laravel eloquent model.
Download Laravel Framework
Make Database connection
Create Model Class
Create Controller Class
Create View Blade file
Set Route
Run Laravel Server
Download Laravel Framework
For download fresh copy of Laravel framework, so first we have to into command prompt and run following command. This command will make join_table directory and under that directory it will download Laravel framework latest version.
After download and install Laravel framework and after this we want to make first database connection. So for make database connection, we have to open .env file and under this file, we have to define mysql database configuration. So it will create database connection in Laravel framework.
Once you have make database connection, then after we have to make table in mysql database. So for this you have to run following sql script in your local database, so it will create table in your define mysql database.
--
-- Table structure for table `city`
--
CREATE TABLE `city` (
`city_id` int(11) NOT NULL,
`state_id` int(11) NOT NULL,
`city_name` varchar(250) NOT NULL
) ENGINE=InnoDB DEFAULT CHARSET=latin1;
--
-- Dumping data for table `city`
--
INSERT INTO `city` (`city_id`, `state_id`, `city_name`) VALUES
(1, 1, 'New York city'),
(2, 1, 'Buffalo'),
(3, 1, 'Albany'),
(4, 2, 'Birmingham'),
(5, 2, 'Montgomery'),
(6, 2, 'Huntsville'),
(7, 3, 'Los Angeles'),
(8, 3, 'San Francisco'),
(9, 3, 'San Diego'),
(10, 4, 'Toronto'),
(11, 4, 'Ottawa'),
(12, 5, 'Vancouver'),
(13, 5, 'Victoria'),
(14, 6, 'Sydney'),
(15, 6, 'Newcastle'),
(16, 7, 'City of Brisbane'),
(17, 7, 'Gold Coast'),
(18, 8, 'Bangalore'),
(19, 8, 'Mangalore'),
(20, 9, 'Hydrabad'),
(21, 9, 'Warangal');
-- --------------------------------------------------------
--
-- Table structure for table `country`
--
CREATE TABLE `country` (
`country_id` int(11) NOT NULL,
`country_name` varchar(250) NOT NULL
) ENGINE=InnoDB DEFAULT CHARSET=latin1;
--
-- Dumping data for table `country`
--
INSERT INTO `country` (`country_id`, `country_name`) VALUES
(1, 'USA'),
(2, 'Canada'),
(3, 'Australia'),
(4, 'India');
-- --------------------------------------------------------
--
-- Table structure for table `state`
--
CREATE TABLE `state` (
`state_id` int(11) NOT NULL,
`country_id` int(11) NOT NULL,
`state_name` varchar(250) NOT NULL
) ENGINE=InnoDB DEFAULT CHARSET=latin1;
--
-- Dumping data for table `state`
--
INSERT INTO `state` (`state_id`, `country_id`, `state_name`) VALUES
(1, 1, 'New York'),
(2, 1, 'Alabama'),
(3, 1, 'California'),
(4, 2, 'Ontario'),
(5, 2, 'British Columbia'),
(6, 3, 'New South Wales'),
(7, 3, 'Queensland'),
(8, 4, 'Karnataka'),
(9, 4, 'Telangana');
--
-- Indexes for dumped tables
--
--
-- Indexes for table `city`
--
ALTER TABLE `city`
ADD PRIMARY KEY (`city_id`);
--
-- Indexes for table `country`
--
ALTER TABLE `country`
ADD PRIMARY KEY (`country_id`);
--
-- Indexes for table `state`
--
ALTER TABLE `state`
ADD PRIMARY KEY (`state_id`);
--
-- AUTO_INCREMENT for dumped tables
--
--
-- AUTO_INCREMENT for table `city`
--
ALTER TABLE `city`
MODIFY `city_id` int(11) NOT NULL AUTO_INCREMENT, AUTO_INCREMENT=22;
--
-- AUTO_INCREMENT for table `country`
--
ALTER TABLE `country`
MODIFY `country_id` int(11) NOT NULL AUTO_INCREMENT, AUTO_INCREMENT=5;
--
-- AUTO_INCREMENT for table `state`
--
ALTER TABLE `state`
MODIFY `state_id` int(11) NOT NULL AUTO_INCREMENT, AUTO_INCREMENT=10;
Create Model Class
In Laravel framework, we have to create model class for database related operation. So for create model classe using compost, we have go to command prompt and run following command, this command will make model class file with name Country.php under app/Models folder.
php artisan make:model Country
After create model class, we have to open that file and under that file we have to define mysql table name details and column details.
<?php
namespace App\Models;
use Illuminate\Database\Eloquent\Factories\HasFactory;
use Illuminate\Database\Eloquent\Model;
class Country extends Model
{
use HasFactory;
protected $table = 'country';
protected $fillable = [
'country_name'
];
}
Create Controller Class
Under this Laravel framework, for handle HTTP request we have to create controller class. So for create controller using compost, we have go to command prompt and run following command.
php artisan make:controller JointableController
Once your controller class has been create then for open that file, we have go to app/Http/Controllers/JointableController.php file and under this file you have write following code for join multiple table using eloquent model and fetch data from multiple table in single query execution.
<?php
namespace App\Http\Controllers;
use Illuminate\Http\Request;
use App\Models\Country;
class JointableController extends Controller
{
function index()
{
$data = Country::join('state', 'state.country_id', '=', 'country.country_id')
->join('city', 'city.state_id', '=', 'state.state_id')
->get(['country.country_name', 'state.state_name', 'city.city_name']);
/*Above code will produce following query
Select
`country`.`country_name`,
`state`.`state_name`,
`city`.`city_name`
from `country`
inner join `state`
on `state`.`country_id` = `country`.`country_id`
inner join `city`
on `city`.`state_id` = `state`.`state_id`
*/
return view('join_table', compact('data'));
}
}
?>
Create View Blade file
For display HTML output in browser, so we have to create view blade file in Laravel framework. In Laravel framework view blade file has been store under resources/views folder. Under this file, we have create join_table.blade.php file. Under this file, it will received data from controller class file. You can find source code of this view blade file in below.
Under this Laravel framework, we have to set route of the controller method. For set route in Laravel 8 framework, we have to open routes/web.php file. In Laravel 8 framework for set route, we have to first import our controller class under this web.php file. And for set route you can find source code below.
<?php
use Illuminate\Support\Facades\Route;
use App\Http\Controllers\JointableController;
Route::get('/', function () {
return view('welcome');
});
Route::get('join_table', [JointableController::class, 'index']);
Run Laravel Server
After follow all above steps now all are set now we want to run Laravel application in browser. So for this, we have to go command prompt and run following command.
php artisan serve
Once you have run above command so after run this command it will provide us base url of our Laravel application. So for check above script output, we have to hit following url in browser.
If you were given two dates, that is start date and end date and You want to find the difference between two dates in PHP. Its very simple and easy to …
If you were given two dates, that is start date and end date and You want to find the difference between two dates in PHP.
Its very simple and easy to calculate the difference between two dates.
There are two methods to find the difference.
By using date_diff() in-built function to Calculate Difference Between Two Dates in PHP
For PHP version >=5.3 : Create two date objects and then use date_diff() function. It will return PHP Date Interval object.
$date1 = date_create("2018-03-24");
echo "Start date: ".$date1->format("Y-m-d")."<br>";
$date2 = date_create("2019-05-31");
echo "End date: ".$date2->format("Y-m-d")."<br>";
$diff = date_diff($date1,$date2);
echo "Difference between start date and end date: ".$diff->format("%y years, %m months and %d days");
Output by using date_diff() function
If you execute the above code to find the difference between start date and end date, you will get the below output
Start date: 2018-03-24
End date: 2019-05-31
Difference between start date and end date: 1 years, 2 months and 7 days
By using strtotime() function in PHP
You can use strtotime() to convert two dates to UNIX time and then calculate the number of seconds between them. From this it’s rather easy to calculate difference between start date and end date.
If you execute the above code to find the difference between start date and end date using strtotime() function, you will get the below output
1 years, 2 months, 8 days
That’s it. I hope you will like this tutorial. Please share this post with your friends in your social media by clicking share options. Please share your feedback via comments
