Introducing Laravel Security Reviews! 🔒
Worried about app security but a full audit is outside your budget? I'm trialling a new reviews service -> get a quick check for vulnerabilities & misconfigurations that you can easily miss! https://valsec.au/reviews/#Laravel#PHP
@ramsey OK
For the love of God learn #PHP before touching a framework like #symfony or #laravel
There’s a pretty good #laravel learning path at Laracasts that starts with #PHP
Ok, Security Tip #50 is locked and ready to go out in 2 days. This week I'm covering a vulnerability I discovered in a recent audit that lead to complete PII exposure... 😱
Super simple to find and exploit, due to a single line overlooked... https://securinglaravel.com#PHP#Laravel
Just sat down to write my Security Tip for this week and realised this one is Security Tip #50! 😲 🎂
To celebrate, I'll sneak a special 50% off discount code into the email somewhere, valid for 24 hours only.
Sign up so you don't miss it: https://securinglaravel.com #PHP#Laravel
Just sat down to write my Security Tip for this week and realised this one is Security Tip #50! 😲 🎂
To celebrate, I'll sneak a special 50% off discount code into the email somewhere, valid for 24 hours only.
Sign up so you don't miss it: https://securinglaravel.com #PHP#Laravel
If you need some #PHP development help, I can happily recommend Laura Tyler - @lauratyler - who has done lots of excellent freelance work for me in #Laravel and custom PHP, and can handle much more in programming as well. She's got a little availability every week and you'd be wise to hire her
We've identified several core concerns: Users, Locations, Customers... that might be candidates for modules.
Some 3rd party integrations, like Google Maps API, Logging/Monitoring might be Services living in the main app.
But maybe this is backwards? Maybe things that might be swapped out (Google maps vs Mapquest Maps) would be better as modules and the core concerns in the main app?
I've got a weird thing going on when trying to test an Http request made with #Laravel.
I'm using the HTTP client with a custom middleware to modify the request using
->withMiddleware(
Middleware::mapRequest()
)
When doing the Http::assertSent() the request that is passed to the callback does not seem like it's passed through the middleware, although when I inspect the response, the request seem correct. Did I find a bug? Help! #PHP
Having now built and maintained my first, proper, large, multi-contributor (15+ at this point), multi-client (as in companies), multi-version (started on PHP 7.2, now 8.2) #Laravel application over the last 4.5 years, I have a laundry list of regrets in how I designed it.
The biggest one, by far, is not having a consistent, single-entry, well-encapsulated API for all the various features, functions and services.
The thing I regret the absolute least? Not having docblocks everywhere 😂
Biggest thing I've figured out in #Laravel lately - how to bootstrap your app from a blank script (as in, pure PHP, from anywhere on the server). After doing that, you're in the context of your application.
Paired with VSCode + Remote-SSH + Integrated Terminal, you get a great IDE for live-coding directly in your project.
Next security tip for https://securinglaravel.com is queued and ready to go tomorrow!
Here's a hint for the topic: What do Telescope and Clockwork have in common?🤔
(I've snuck a two cool extras in there too. 🤫) #PHP#Laravel
Learn about Hyvor Blogs, the blogging platform for Laravel and Symfony. Hyvor includes awesome features for your blog such as multi-language support, in-built SEO, custom domains, APIs, syntax highlighting, and much more.
@Crell out of curiosity: did you already work on many #Laravel projects? I think the biggest problem is eloquent, but I am trying to go open-minded into this 🙈
@Crell I was already thinking if #Laravel would be nicer to use if you just would not use eloquent, but from the documentation pages I've read until now I've got the feeling that it is so deeply integrated that it might be hard to do so.
@thgs@Crell@Konafets In #Symfony there is no pollution of static classes and I don't know what you mean by pollution of persistent collection. And I currently cannot see how #Laravel helps with any of these pollutions, the way I see it, it even embraces them.
Hyvor Blogs: A blogging platform for Laravel & Symfony Applications (ashallendesign.co.uk)
Learn about Hyvor Blogs, the blogging platform for Laravel and Symfony. Hyvor includes awesome features for your blog such as multi-language support, in-built SEO, custom domains, APIs, syntax highlighting, and much more.