boringguys.com php, perl, mysql, xml, and other business and application development stuff that keeps boring guys like Rich Zygler occupied 2008-05-13T09:51:28Z WordPress http://www.boringguys.com/feed/atom/ Rich Zygler http://www.boringguys.com <![CDATA[PHP Developer Jobs are the Hottest EVER!!!]]> http://www.boringguys.com/2008/05/13/php-developer-jobs-are-the-hottest-ever/ 2008-05-13T09:51:28Z 2008-05-13T09:50:36Z ** I’ll preface this by saying that I’m not specifically looking for a new position but I think it is important to be aware of the market that you serve. Even in happy times during my employment, I routinely scan job ads to see the health of the market and to gauge its direction. **

If anecdotal evidence means anything, and sometimes it does… and at the risk of sounding like a teenage girl writing on a myspace page, the PHP job market is literally blasting off! I’ve never seen the market for PHP programmers as strong as it right now in the NYC/Philadelphia region.

While there are lots of PHP jobs in the usual suspects like small start-ups, there also seem to be a number of jobs at established companies and developer shops. I’m also seeing a definite split in PHP jobs where there are both entry level jobs as well as jobs for more experienced people with titles like “Senior PHP Developer” and “PHP Tech Lead.” I can’t remember seeing so many senior PHP positions. The salaries I’m seeing are also at an all time high. Many ads have salary ranges that extend well into 6 figures.

As far as requirements I have seen, there definitely seems to be a shift towards frameworks like Symfony and Zend Framework as well as items specifically mentioning IDEs like Eclipse and Zend Studio. However, I rarely see mention of source code management and unit testing. Hopefully those items were cut from the job ads due to space requirements. ;-)

If you are a PHP developer in the area and are highly experienced, get ready to reap the rewards for your hard work. If you are a hiring manager in the area, prepare to shell out more for top talent.

So what is everyone else seeing in their area with regards to PHP developer jobs?

.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[Setting up Google App Engine SDK]]> http://www.boringguys.com/2008/04/16/setting-up-google-app-engine-sdk/ 2008-04-16T09:30:53Z 2008-04-16T09:30:53Z I’ve started playing around with the Google App Engine SDK. So far I’ve found this fellow’s posts on setting up Python, Eclipse, PyDev, and the Google App Engine very helpful. He also has a great post on ER-modeling and relational models in Google App Engine.

Check them out.

.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[First impressions on Google App Engine]]> http://www.boringguys.com/2008/04/15/first-impressions-on-google-app-engine/ 2008-04-15T18:06:17Z 2008-04-15T18:06:17Z From the Google site:

Google App Engine lets you run your web applications on Google’s infrastructure. App Engine applications are easy to build, easy to maintain, and easy to scale as your traffic and data storage needs grow. With App Engine, there are no servers to maintain: You just upload your application, and it’s ready to serve your users.

You can serve your app using a free domain name on the appspot.com domain, or use Google Apps to serve it from your own domain. You can share your application with the world, or limit access to members of your organization.

Without actually firing up the SDK yet, here are my initial thoughts:

  1. Do we trust Google? With our data? With our users? I love the idea of the Google App Engine (GAE), a scalable web app system where you only have to worry about coding your business logic and structuring your models. This is kind of like Amazon’s EC2 on steroids. No sysadmin stuff like with EC2, just coding. However I do not love that Google is already in the web app space themselves and is now marketing a web app space hosting platform. You have to trust them a little bit more then I’m comfortable with. They’ve already got your users and your data and your code. Don’t they conceivably control your business at that point? Maybe I’m being paranoid here.

    Plus, there’s the lock-in factor. If I develop my app using MySQL as a backend, I know I could with only some minor pain change that backend to Oracle. It’s all SQL at some point. How would you swap out of using the Google DataStore API? It’s a proprietary system with no published standards.

  2. GAE is currently only in Python. No PHP love? I realize a lot of Google runs on Python and C++ and that’s what it is in their wheelhouse. But I still consider Python to be a fringe language. If GAE were opened up to support PHP and C#, it would blast off in popularity. Then again, a Python only crowd is a good beta test before the crush of PHP devs comes in.

  3. The DataStore API (ie, BigTable) is difficult to wrap my head around. After spending so many years carefully crafting db tables and relationships to get the most bang for my buck, I now have to throw out a lot of that hard-earned knowledge. I need to think in terms of objects (or columns) instead of rows.There are still relationships and keys to keep track of but not in the traditional ways of SQL. It seems like much more of your data fetching is done in code rather then in SQL. The shift in thinking reminds me of my own move to Object-Oriented Programming. I whined like a baby during that phase of my programming development (well, at least I did on the inside).

Hopefully I’ll get some more time to play with this stuff soon and report back.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[wordpress 2.5 and subversion]]> http://www.boringguys.com/2008/04/09/wordpress-25-and-subversion/ 2008-04-09T21:22:25Z 2008-04-09T21:22:25Z For some reason, performing an svn update on the external repository http://svn.automattic.com/wordpress/trunk/ does absolutely nothing.  This is pretty baffling behavior.  Same wordpress and subversion issue also mentioned here.

I’ve also tried /tags/2.5  and /branches/2.5 and nothing.  No changes come across.  Very weird.  Anyone else getting this?

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[Symfony sfException Call to undefined method BaseModel::__toString]]> http://www.boringguys.com/2008/03/19/symfony-sfexception-call-to-undefined-method-basemodel__tostring/ 2008-03-19T13:51:50Z 2008-03-19T13:46:17Z Working on some projects in Symfony recently. I ran into a problem when I used the symfony admin generator to create a "backend" module for a table that has a foreign key relationship.

Symfony was looking for me to have a __toString() function in my model so it could create the drop down menu. So for instance, let's say you have tables like countries and states in your schema.xml. Country_id in the states table is a foreign key to the Countries table like so:

PLAIN TEXT
XML:
  1. <table name="states" idmethod="native"><column name="id" type="SMALLINT" required="true" autoincrement="true" primarykey="true">
  2. </column><column name="country_id" type="SMALLINT" required="true">
  3. <foreign -key foreigntable="countries">
  4. <reference local="country_id" foreign="id">
  5. </reference>
  6. </foreign>
  7. </column><column name="name" type="VARCHAR" size="40">
  8. </column><column name="abbrev" type="VARCHAR" size="2">
  9. </column></table>

When you do:

PLAIN TEXT
CODE:
  1. symfony propel-init-admin backend states States

Symfony is going to create the edit and create actions of the States screens with a drop-down menu of countries that the state is a part of. The value of the country drop down is the country_id. the value needs to be set in a __toString() function in your Country propel model. The easiest thing is to just return a simple string name (if that's in your db model):

PLAIN TEXT
PHP:
  1. function __toString()
  2. {
  3. return $this->name;
  4. }

That should solve the problem. It's odd that this comes up. And I couldn't find anything on it when googling.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[Drupal 6 and new Apress Drupal book]]> http://www.boringguys.com/2008/03/10/drupal-6-and-new-apress-drupal-book/ 2008-03-10T13:20:41Z 2008-03-10T13:20:41Z I have been working on a couple of projects using Drupal lately that required creating some custom modules. So again, I flipped thru my well-worn copy of Pro Drupal Development. Here is my earlier review of Pro Drupal Development.

Drupal has released version 6 now. So I click to the Apress site and lo and behold, they're already working on Pro Drupal Development, 2nd edition which will feature updates for Drupal 6. If it is as good as the first book, it will be a must have for any Drupal developer.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[Using Subversion externals property for WordPress upgrades]]> http://www.boringguys.com/2008/02/18/using-subversion-externals-property-for-wordpress-upgrades/ 2008-03-12T14:26:46Z 2008-02-18T22:33:30Z I find that upgrading apps like WordPress, Drupal, Symfony and open source PHP apps is simple for less complicated environments, but once you start adding in things like new directories, custom themes/modules, source code control as well as separate development, test, and production systems, the upgrades start to get pretty hairy.

Take WordPress for example. A typical upgrade of WordPress involves copying the new WordPress files over your existing files. Then you have to copy back safe versions of things like wp-config.php, .htaccess (if you're using it), as well as any custom themes/modules from the wp-content/ directory. Not to mention any of your own directories that should exist alongside your wp-includes/ and wp-content/ directories. After that you can run the upgrade.php file.

These upgrade steps aren't terrible. They're quite a bit better then most open source apps out there but they still suffer from a few problems:

  1. If you have your code, including your WordPress install, in Subversion or another source code control system, you have to commit all the files that change with each WordPress version. There may be files added, deleted, etc. You'll have to keep combing thru "svn status" messages to figure out everything you need to do to get all the WordPress files into your repository. This can be painful. And take a long time.
  2. WordPress is specifically written so that you don't ever have to muck with the guts of it. You create themes and plugins for added functionality. So, since you're not maintaining the code that powers WordPress, do you really need all those deltas in your Subversion repository? I think not.
  3. What do you do with your own code in directories that sits alongside wp-includes/? What if it’s in a Subversion repo?

The WordPress site also has instructions for using Subversion with your site. Here, they advocate the use of “svn switch” to update your site. This is much more manageable and solves a few of the above problems. Most svn users can probably can get away with this method. But unfortunately not me.

I have additional directories on some of my sites that I need to add into my WordPress install. So I have to copy/move them into the WordPress dirs which gets tough. And then my “svn status” will get all wonky because my WordPress dir is under one repo and my code is under another. This was endlessly confusing for me.

So I found myself looking for a way to completely wall off my WordPress install from the rest of my files. I was reminded recently of the use of the Subversion externals property and my mind started buzzing with possibilities. With "externals," I can say:

Pull the stable WordPress code from WordPress.org and put it into this directory named /docs/wp/

Then my other directories, which are under my own local subversion repo can exist at /docs/dir1, /docs/dir2, etc. Of course, some Apache Alias magic is needed to make all this work.

Here's the way I set it up for my some of my projects. So far so good. This is a bit hairy to set up but subsequent upgrades are a breeze. I use this across development, testing, and production systems (how to get those environments to work with WordPress will be another entry)

First off, the previous Apache document root for domain1 was at /www/domain1/docs, so the WordPress files wound up like this:

/www/domain1/docs/wp-content/
/www/domain1/docs/wp-includes/

But I also have a lot of dirs that sit alongside of wordpress like this:

/www/domain1/docs/dir1
/www/domain1/docs/dir2

We're going to wind up changing that.

Create an subversion external property in /www/domain1/docs for WordPress

PLAIN TEXT
CODE:
  1. $$ cd /www/domain1/docs
  2. $$ export SVN_EDITOR=vi     ( or your editor of choice )
  3. $$ svn propedit svn:externals <strong>.</strong>

vi starts up and you can add the following line:

PLAIN TEXT
CODE:
  1. wp http://svn.automattic.com/WordPress/tags/2.3.3

Save and exit

PLAIN TEXT
CODE:
  1. $$ svn commit
  2. $$ svn update

( This downloads the WordPress code from the above address into your wp/ directory. Now we are cooking. )

  • Now, /www/domain1/docs/wp is where all your WordPress code lives.
  • Copy wp-config.php to /www/domain1/docs/wp/
  • Copy .htaccess to /www/domain1/docs/wp/
  • Create a link from the stock wp-content/ dir to your personal wp-content dir like this
PLAIN TEXT
CODE:
  1. $$ cd /www/domain1/docs/wp
  2. $$ rm -Rf wp-content/    ( use -Rf with care please! )
  3. $$ ln -s /www/domain1/docs/wp-content wp-content

  • In Apache config, set document root for this domain to /www/domain1/docs/wp
  • Put wp-content/ dir and any other non-WordPress dirs/files into /www/domain1/docs
  • Create an alias for wp-content/ and any other non-WordPress dirs/files in Apache config
PLAIN TEXT
CODE:
  1. Alias /wp-content     /www/domain1/docs/wp-content
  2. Alias /dir1           /www/domain1/docs/dir1
  3. Alias /dir2           /www/domain1/docs/dir2

This looks like a lot of work, but it's really only a lot the first time around. Next time WordPress has an upgrade:

PLAIN TEXT
CODE:
  1. $$ cd /www/domain1/docs
  2. $$ svn propedit svn:externals .      ( change the tag to new version of WordPress )
  3. $$ cd wp/
  4. $$ rm wp-content      (to remove the link)
  5. $$ svn update         (to update to new version of WordPress)
  6. $$ rm -Rf wp-content/
  7. $$ ln -s /www/domain1/docs/wp-content  wp-content

Everything after the propedit in this group can and should be scripted which will basically give you a 2 step process for upgrading WordPress, while keeping you wp-content/ dir under local source code control, as well as leaving room for any other directories or files your site might require.

This technique will probably also work with Symfony although I haven’t tried it yet.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[“SSL Error: certificate verify failed” for Amazon S3 using s3sync]]> http://www.boringguys.com/2008/02/17/ssl-error-certificate-verify-failed-for-amazon-s3-using-s3sync/ 2008-02-17T12:42:01Z 2008-02-17T12:42:01Z Amazon has changed their certificates for SSL access to the S3 service.  If you are receiving this error and you are using s3sync, you can look here for new certs for SSL access to S3.

Long term though, this is a problem with my (and possibly your) backup solution.  Look here for more info.  Specifically this bit:

The certificate chain supporting Amazon S3 SSL is an implementation detail of the system that may change from time to time. A robust application should not depend on the Amazon S3 SSL certificate being signed by a particular certification authority. However, you can depend on the fact that we will only use reputable CAs that are widely supported by existing user-agents. The easiest way to select root CAs to bundle with your application is to simply import the set from a modern web browser with a large market share.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[You know you’ve made it when the spammers start using your name.]]> http://www.boringguys.com/2008/01/17/you-know-you%e2%80%99ve-made-it-when-the-spammers-start-using-your-name/ 2008-01-17T13:20:13Z 2008-01-17T13:20:13Z All of a sudden, I have a bunch of returned email in one of my inboxes. Looking thru it, it appears that some spammer has been sending email thru various open relays around the world and using random names at this domain as the email address of the sender.

At first I freaked out thinking they were coming from my server. I looked around the box and didn’t see any evidence of abuse. And I’m not in any server blacklists either. On a whim, I tried connecting to some of the sending servers specified in the emails and sure enough, I could send email out from a couple, so I don’t believe there’s anything fishy going on with my server. I’ve notified the appropriate people regarding the open relays.

Most normal people will never have heard of my site. It’s not famous or popular. So when they get an email from an address at this site, they should immediately know that it’s spam. It’s not like sending an email out from a site that a lot of people use like the dozen “service at paypal” emails I receive each week. I’m just a rinky-dink site about programming that earns a few dollars a month in advertising, not even enough to cover my costs.

But I can see the spike in traffic this is creating as people either open the spam email or look at the sender and want to know more. (question – exactly who are these people that have time to research every single spam item they receive? I think I want their job ). With traffic going up, bandwidth usage goes up, and eventually costs go up. Traffic going up because more people are reading my site is great. Traffic going up because people are ticked off at me is not so great.

I’m still perplexed as to how to get this spammer to stop using my domain name as the sender’s address.

Share this via del.icio.us, digg, email, etc.

]]> Rich Zygler http://www.boringguys.com <![CDATA[People work with WS-* web services in PHP? Why?]]> http://www.boringguys.com/2007/12/13/people-work-with-ws-web-services-in-php-why/ 2007-12-13T14:15:01Z 2007-12-13T14:11:37Z I'd love to give ws02 a fair shake because they have an open source business model. They have a web services framework for PHP which seems interesting from an academic standpoint. But I think WS-* web services are WAY too complicated when compared to REST.

Just look at this new product description from ws02:

The WSO2 IS enables LAMP and Java websites to provide strong authentication based on the new interoperable Microsoft CardSpace technology, which is built on the open standards Security Assertion Mark-up Language (SAML) and WS-Trust.

Your life is now 1 minute shorter after trying to read and fully understand that paragraph. Nevermind how much time would be spent trying to actually get this stuff to work.

I spent a lot of time in 2001-2002 working with Amazon's merchant program and the SOAP feeds required for putting client product on the Amazon site. I generally think that Amazon has a pretty good clue about how to do things technically and they seemed to make it as easy as possible while using SOAP. But it was still way too complicated for what we were trying to achieve (ie, send a list of available product to Amazon to sell ). And at the time, it was a nightmare in PHP. Now of course, we have the official PHP SOAP extension and some items in PEAR to work with too (does nusoap still exist?)

But I've run screaming from WS-anything since then, only getting caught in its claws a few times. It hasn't gotten any easier. It's gotten more difficult. And more pointless. I'm not alone in this thinking.

So I guess the ws02 folks are trying to solve the issue of authentication for web services. Hasn't web services authentication been solved already in a much easier way too?

Share this via del.icio.us, digg, email, etc.

]]>