php-general Digest 23 May 2008 21:15:32 -0000 Issue 5475
Topics (messages 274647 through 274653):
WSDL-problem
274647 by: Espen Frimann Koren
Re: maximum lengths
274648 by: Robert Cummings
Re: A Little Something.
274649 by: Michelle Konzack
274652 by: Andrew Ballard
Re: PHP + MySQL transactions
274650 by: Philip Thompson
autoload issues
274651 by: Joakim Ling
PHP authenticating user over SSL
274653 by: Gunnar Vestergaard
Administrivia:
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
--- Begin Message ---
Hi.
I have a problem with two messages in different namespaces, but with the
same name. Example sketch:
one.wsdl:
---------
<definitions targetNamespace="urn:one" xmlns:tns="urn:one" xmlns="
http://schemas.xmlsoap.org/wsdl/";>
<message name="getInt" ...>
<portType> ....
<binding name="OneBinding"> ...
</definitions>
two.wsdl:
---------
<definitions targetNamespace="urn:two" xmlns:tns="urn:two" xmlns="
http://schemas.xmlsoap.org/wsdl/";>
<message name="getInt" ...>
<portType> ....
<binding name="TwoBinding"> ...
</definitions>
server.wsdl:
------------
<definitions targetNamespace="urn:server" xmlns:tns="urn:server"
xmlns:one="urn:one" xmlns:two="urn:two" xmlns="
http://schemas.xmlsoap.org/wsdl/";>
<import namespace="urn:one" location="one.wsdl" />
<import namespace="urn:two" location="two.wsdl" />
<service>
<port binding="one:OneBinding"> ....
<port binding="two:TwoBinding"> ....
</service>
</definitions>
I have a server made using gSOAP, and get the functions one__getInt ang
two__getInt. Also using gSOAP to make a C client, I get
soap_call_one__getInt and soap_call_two__getInt.
Using SoapClient("server.wsdl") in PHP I get an error that 'getInt' is
already defined. I suppose this is a bug or a not-yet-implemented feature.
Any comments?
Sp1
--- End Message ---
--- Begin Message ---
On Fri, 2008-05-23 at 01:11 -0600, Jay Rogozinsky wrote:
> Hello All,
>
> I would like to know the maximum length I can expect certain variables to
> be, as follows:
>
> Session_Id
> Session_Name
> REQUEST_URI
> HTTP_USER_AGENT
> QUERY_STRING
>
> Thanks Kindly,
> KiJa
Less than or equal to the amount returned by ini_get( 'memory_limit' ).
Cheers,
Rob.
--
http://www.interjinn.com
Application and Templating Framework for PHP
--- End Message ---
--- Begin Message ---
Am 2008-05-22 10:18:19, schrieb Philip Thompson:
> This statement appears to be one of ignorance. You claim that because
> you don't know what it does and it has a certain name, it MUST be a
> violation of your privacy. A violation of your privacy would be
> gaining *personally-identifiable* information w/o your knowledge -
> G.A. can't tell a web admin my first, middle, last names and DOB from
> my browser. Do some reading about the product and then make an
> educated statement.
Your asumption is very wrong since:
First of all:
1) Google is Archiving Mailinglists
2) I use an E-Mail Address and a REAL NAME
3) Google KNOW from where I am am sending the message
4) urchinTracker() now track my IP if I am @CUSTOMER,
@HOME or in a Internet Cafe
5) Google can identify my Mozilla/Iceape by cookies
6) and if I am in a time slot from 1) to 3) then Google
can assign my cookies and personal data to it...
Do you get it?
Sicne I generaly send only Mailinglist messages from 3 different
places it is hard to detect where I am, but additional surfing
the Internet over customer
There is NO human intervention neccesary...
It can be done entirely automaticaly.
And even no one is intersted in tracking me, ANY *.gov organisation
can access the Database at any time since Google is an US enterprise
and fall under the "Patriot Act"
Please search Google for it since there are several threads...
In Europe, such practice IS "privacy violation".
> Again, no personally-identifiable information being sent...
Read the thing above...
The analysys was done by the DGSE and the french "Ministry of Defense"
by simulating if with over 2000 test-persons.
> These statements are what really made me want to respond. From this
> statement, you are basically saying that a majority of the sites out
> there would have to have disclaimers. I know! Why don't we just
> require web developers to reveal the secrets!(TM) of their sites and
> give the source code so we can verify that they're not trying to find
> the name of my cat when I was 8? I mean, come on. "[W]arn users of
> your website"?? Don't get me wrong - I am all about security, but this
> appears to be taking it a bit far. As a web surfer, one should be
> aware of the potential risks and prepare reasonably!(TM) However, I
> must question if you should even be on the web... how do you sleep at
> night with all those javascript functions and cookies just parading
> around the 'net?!
In Germany and France are laws and EACH website must have such
disclaimer including its full address and the name of the responsable...
> I must say that I can't speak for other countries (non-US), but I
> don't see how this is a privacy violation - no personally-identifiable
> information is being transmitted. If you consider an IP or web browser
> as personally-identifiable, then I say you're wrong.
Sead above about sending E-Mails and tracking it back to Web-Surfing.
Note: Google need to archive Mailinglist infos to do that...
> >This is not only a privacy violation, it is spionage...
>
> Prove it.
Read the thing abouve
> >This is HOW secret services (the NSA is using Google) are working.
>
> Oh neat. You worked for Secret Services before you worked for the
> French Ministry of Defense. You must be quite the security-guru. ;)
I was nearly 11 years at the French Foreign Fegion and then coming to
the regular army where I was I am programmer and analyst and was working
for the french concurence of the DIA (USA) and there anre many security
issues in the Internet.
I was coding such stuff for years... And now with cellphones , WAP,
GPRS and GSM it is even more easier to track someone
> If you used Google Analytics, you could find where I'm typing this
> email... =P
If I do such things on my website, I know there was someone form IP
a.b.c.d and thats all for the moment.
Then, my mailserver is on the same machine and it tracks sending IP's
by date and from whom...
Now a third job run the two databases together...
...and mybe I get you!
> Ok, enough said from me - must get back to writing malicious code that
> will tell me what IP you're ISP has given you!
You can look in the headers of the E-Mail...
Ah... I see, <lists.php.net> is striping the "Received:" headers...
But anyway, I know your name and E-Mail...
...and will find you maybe on other Mailinglists:-)
Thanks, Greetings and nice Day
Michelle Konzack
Systemadministrator
24V Electronic Engineer
Tamay Dogan Network
Debian GNU/Linux Consultant
--
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack Apt. 917 ICQ #328449886
+49/177/9351947 50, rue de Soultz MSN LinuxMichi
+33/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com)
signature.pgp
Description: Digital signature
--- End Message ---
--- Begin Message ---
On Fri, May 23, 2008 at 9:40 AM, Michelle Konzack
<[EMAIL PROTECTED]> wrote:
> I was coding such stuff for years... And now with cellphones , WAP,
> GPRS and GSM it is even more easier to track someone
If you have a cell phone, privacy went out the window a while ago anyway.
http://news.zdnet.com/2100-1035_22-6140191.html
Andrew
--- End Message ---
--- Begin Message ---
On May 22, 2008, at 7:25 PM, Chris wrote:
Philip Thompson wrote:
Hi all.
I'm currently working on a project that's in its beta stage. Due to
time
restraints, we were unable to build in transactions from the
beginning.
Well, we're getting to the point where we can now put in
transactions.
Basically, I'm curious to find out your opinion on the best way to
accomplish this.
Currently, my thoughts for doing this are:
<?php
function someFunctionThatNeedsTransactions ()
{
$this->db->begin(); // Start transaction
$this->db->query("SELECT..."); // Run my queries here
$this->db->query("UPDATE...");
// Do some PHP logic here
$this->db->query("SELECT..."); // Run more queries
$this->db->query("INSERT...");
$this->db->commit(); // Commit transaction
}
?>
If there was a failure in one of the queries, that would be caught in
the database class ('db' instance) and <?php $this->rollback(); ?>
would
be called. Note that all the tables are InnoDB and the above
code/functionality works.
Ideally, I would have liked to use stored procedures, but that
decision
was not mine. So are there any complications I'm potentially missing?
I'd get your db class to handle nested transactions, so if you had
something like this:
$db->begin();
....
someFunctionThatNeedsTransactions();
...
.. oops, need to rollback.
$db->rollback();
the bits between "someFunction" and the "rollback" will be committed
(by
the function) and can't be rolled back.
See http://dev.mysql.com/doc/refman/5.0/en/savepoints.html
The situation might not come up but it can't hurt to have it already
built in "just in case".
This doesn't appear deal with *nested transactions.* It appears that
it will use a single transaction and you can just save up to a certain
point upon failure. As of this point, it's all or nothing b/c we are
dealing with fairly crucial information. However, I will look into
building savepoints into the class so that I'll have that option in
the future.
It seems like I've used savepoints or nested transactions in MSSQL in
the past (in stored procedures). I hope MySQL will support nested
transactions in future releases.
So, am I taking the best approach (at this point) for dealing with
transactions? I will basically have to evaluate every situation in the
program where a failure would occur and put in a $db->rollback();
call....?
What about try/catch blocks? I'm not currently using them, but maybe
it would be the best way to handle exceptions when dealing with
multiple queries. If there's *any* query failure, explode!
Thanks!
~Philip
--- End Message ---
--- Begin Message ---
hi fellas
Anyone have a solution for using autoload with encoded php files?
cheers
joakim ling
--- End Message ---
--- Begin Message ---
Where do I post feature requests for PHP?
I need some functions in PHP to let a user log on to a server with his
SSL client certificate. I mean, when a user has his own SSL client
certificate, then a server should be able to log the user in without
needing user name and password. Wouldn't that be a great improvement in
PHP? Is it possible at all?
Gunnar Vestergaard
--- End Message ---
