globitek's People
globitek's Issues
Project Feedback!
Hello Promila,
๐ Nice work! In order to learn web security, we have to learn the basics of web development. Because web development isn't the goal of this course, everyone will receive the same UI score, so you can focus on the security aspects of the course.
We're using PHP because Facebook is sponsoring this course, but it's also the easiest framework to demonstrate some of these security issues. PHP without a framework is very similar to Sinatra (Ruby) or Flask (Python), which are two very popular barebones web frameworks. Modern PHP with a framework is very similar to Rails and Django. All of the tasks in the weekly projects are very similar and applicable to what you would need to do in Ruby or Python.
The purpose of this assignment was to explore the following concepts:
- Setting up a database table.
- Handling GET vs POST requests.
- Doing server-side form validation.
- Displaying form errors.
To evaluate your understanding this week, you should try to answer the following questions:
- How are form values sent to the URL in the form action?
- How can PHP access form values?
- How do you interpolate a variable into a string in PHP?
- What sanitization does PHP do automatically?
- When using PHP's mysqli_connect() to connect to MySQL, what gets returned?
- What does mysqli_fetch_assoc() do besides return a row of data?
- What happens if a loop's condition is never met?
- Why is it a good practice to use "LIMIT 1" when updating a MySQL record?
- What types of problems could arise if all validations were removed?
- Why should form attributes still be assigned values if a form has errors?
- What potential problem would the last name "D'Angelo" create for the database?
If you have any particular questions about the assignment or the feedback, email us at [email protected].
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.