Sorry, you need to enable JavaScript to visit this website.
Skip to main content

Symfony Station Communiqué - 22 July 2022

A white paragraph.

 


 

Symfony Station Logo

symfony logo

 

 


 

Welcome to this week's Symfony Station Communiqué. It's your weekly review of the essential news in the Symfony and PHP development communities. We also cover the cybersecurity world in detail this week.

Take your time and enjoy the items most relevant and valuable to you.

As always, thanks to Javier Eguiluz and Symfony for sharing our last communiqué in their Week of Symfony.

My opinions will be in bold.


Many of the items we curate are on Medium. I recommend investing in membership as you can access everything you want to read. It’s a small investment in boosting your career. As may have noticed non-members can only access a limited number of articles per month.

Become a member here! The compensation we receive from your use of this link helps pay for our weekly communiqué.


Symfony

As always, we will start with the official news from Symfony.

Highlight -> “This week, we focused on finishing several new features for the upcoming Symfony 6.2 version: Console added support for multiple choice questions; we applied the SensitiveParameter PHP attribute to all the parameters that can contain sensitive values such as security tokens and passwords; and we enabled the use of lazy-loading ghost object proxies in Dependency Injection. Finally, we moved #[IsGranted()], #[Template()] and #[Cache()] attributes into Symfony components so we can get rid of the SensioFrameworkExtra bundle.“

A Week of Symfony #811 (11-17 July 2022)

Symfony announced:

Zoom in on knowing your state machines - Symfony Workflow workshop at SymfonyCon Disneyland Paris 2022

SymfonyCasts continues expanding their Symfony 6 Fundamentals Course.

This week on SymfonyCasts

Featured Item

Featured Item graphic

How in the hell did I miss this from one of my favorite writers, Jason Knight?

The primary point he makes is that Bootstrap, Burma, and Tailwind are horseshit and unnecessary. This is true.

Why Are Front-End Framework Makers Illiterate And Utterly Ignorant Of HTML And CSS?

If you need all the details to be convinced here they are:

This Week

Dariel Vicedo continues his new series:

Creating a Symfony project from zero to success in 52 weeks (week 2)

Eduard Melnikov shares:

How to deploy a PHP application to AWS using AWS CodeDeploy and Github actions for beginners

Edouard Courty shows how to:

Make your PHP 8 apps twice as fast (OPCache & JIT)

Gerard Rico Botella demonstrates:

How to setup docker-compose for Symfony projects

Saeid Raei explains:

Why you can’t have a solid application using Laravel but can with Symfony.

eCommerce

Kinsta reveals its:

Top 10 Best Open Source Ecommerce Platforms

Most of these are built with Symfony Components.

Kuldeep Singh gives his:

Reasons why you should Choose Shopware for your eCommerce?

WebMeridian has:

Magento 2.3 End of Life | When Is It, And What Should You Expect?

CMSs

In an interesting post, Concrete CMS shows us:

How to make U.S Government PIV/CAC authentication work

LakeDrops shows us how to:

Control Drupal's page cache with cookies

DinoTechno looks at Drupal search optimization.

Significantly Improve The Search Speed Of Drupal 9 & 10

Prometsource explores:

Open Source vs Proprietary for Government Websites

Droptica covers using Gutenberg in Drupal.

Module for Creating and Editing Content in Drupal – Gutenberg

We use it on Symfony Station and it’s awesome.

Previous Weeks

Drupal has this:

Twig in Drupal Cheat Sheet

PHP logo

PHP

This Week

Stitcher.io explores:

What's new in PHP 8.2

Uncertainty, doubt, and static analysis

Farhan Tanvir shares:

7 Useful PHP Libraries You Should Use in Your Next Project

Good stuff from Daan here:

Tackling 7 Common PHP Problems With Elegant Solutions

Richard Dobroň demonstrates:

Localizing PHP application with FBT instead of standard i18n

Ali explains:

How to use Mockery in PHP

Nuno Maduro demonstrates:

How to install PHP 8.2 RC on Mac

Joshua Otwell shares:

7 PHP String Functions You Should Know and How To Use Them

Burhan Shah looks at:

Named Arguments in PHP

Hayden James explores:

PHP Performance: Additional CPU cores vs Faster CPU cores

Dino Cajic continues his extensive tutorial series.

PHP — P70: Sub Namespaces

Code logo

Other

Please visit our Support Ukraine page to learn how you can help kick Russia out of Ukraine (eventually).

The cyber response to Russia’s War Crimes

Vice looks at the heroes:

Inside Ukraine’s Decentralized Cyber Army

This is not cyber related per se but The Atlantic reports:

Russia’s Invasion Is Making Ukraine More Democratic

TechCrunch says:

Look out Putin — Ukrainian woman invents 'solar for balconies' to wean Europe off Russian gas

The Evil Empire Strikes Back

Forbes looks:

Inside The Russian Cybergang Thought To Be Attacking Ukraine—The Trickbot Leaks

TechCrunch reports:

State-sponsored cyberespionage campaigns continue targeting journalists and media

TikTok's chief security officer steps down amid increased scrutiny from U.S. officials

Axios reports on:

Russian state hackers’ new battleground: the cloud

Ars Technica reports:

Pro-Russia hack campaigns are running rampant in Ukraine

The Guardian reports:

A year on from the Pegasus project, governments still have access to surveillance technology

Decipher reports:

U.S. Journalists Targeted in ‘Sustained Effort’ By APTs

In related news Forbes says:

Cybersecurity Firm: What US Journalists Need To Know About The The Foreign Hackers Targeting Them

Cybersecurity/Privacy

And:

North Korean Threat Actors Target Small Businesses With Ransomware

In completely unsurprising news, The Next Web reports:

Homeland Security is tracking US citizens using phone location data

And:

The EU’s Digital Market Act takes aim at Big Tech’s monopoly

Ars Technica reports:

Hackers are targeting industrial systems with malware

There’s a lot out of VentureBeat this week including:

The difference between pseudonymity and anonymity: When zero is more

White House launches new Cybersecurity Apprenticeship Sprint to bridge the cyber skills gap

The MIT Technology Review reports:

The US military wants to understand the most important software on Earth

More

We have curated and written about new approaches to SSR in the past as an alternative to SPAs. Jonathan has:

Why Your Next Web App Frontend Might be The Backend

In a related post, Smashing Mag has:

A New Pattern For The Jamstack: Segmented Rendering

HTMX asks:

How Did REST Come To Mean The Opposite of REST?

TechCrunch reports:

After two years in development, Salesforce launches its web-based IDE in beta

Dissecting Microsoft's proposed policy to ban commercial open-source apps

The New Stack reports:

HTTP/3 Is Now a Standard: Why Use It and How to Get Started

VentureBeat says:

Software architecture could determine the winners as businesses digitize

And reports:

You.com launches open search platform for developers

Web Pro News reports:

Why You Should Consider Using Software Composition Analysis (SCA) for Open-Source Software

The Next Web reports:

Scathing study exposes Google’s harmful approach to AI development

Richard Rembert has:

An Introduction to the DOM Tutorial

That’s it for this week. Please share this communiqué.

Also, be sure to join our newsletter list at the bottom of our site’s pages. Joining gets you each week's communiqué in your inbox (a day early).

If you don't already follow us on Twitter at @symfonfystation.

And since it may be turning into a full-scale dumpster fire, we are now on Mastodon as well at @symfonystation@phpc.social. Consider joining the @phpc.social instance.

Do you own or work for an organization that would be interested in our promotion opportunities? If so, please get in touch with us. We’re in our infancy, so it’s extra economical. 😉

More importantly, if you are a Ukrainian company with coding-related products, we can offer free promotion on our Support Ukraine page. Or, if you know of one, get in touch.

Keep coding Symfonistas!

 

Visit our Communiqué Library

You can find a vast array of curated evergreen content.

 

Author

Reuben Walker photo

 

Reuben Walker

Founder
Symfony Station

 

 

 


 

Symfony Station Communiqué - 25 March 2022

A white paragraph.

 


 

Symfony Station Logo

symfony logo

 

 


 

Welcome to this week's Symfony Station Communiqué. It's your weekly review of the most essential news in the Symfony and PHP development communities.

We again cover the tech aspects of the war crimes going on in Ukraine and how you can help. Symfony news was light this week, so we’ve added extra Drupal and cybersecurity coverage.

Take your time and enjoy the items most valuable for you.

Thanks to Javier Eguiluz and Symfony for sharing our last communiqué in their Week of Symfony.

Please note that links will open in a new browser window. My opinions will be in bold.

 

Symfony

 

As always, we will start with the official news from Symfony.

Highlight -> “This week, Symfony announced the merging of SymfonyCloud into Platform.sh. In addition, SymfonyCasts published the new (and free) Symfony 6 video tutorials. Finally, SymfonyCon Disneyland Paris 2022 conference announced the end of its early bird registration period.”

A Week of Symfony #794 (14-20 March 2022)

 

They also announced there’s:

1 week left before the end of early bird registration for SymfonyCon Disneyland Paris 2022

 

SymfonyCasts continues their free look at Symfony 6 and the Easy Admin paid courses.

This week on SymfonyCasts

 

Featured Item

 

Feature Item graphic

 

It’s long past time to make your Symfony applications as secure as possible.

As should be obvious to anyone not living under a rock, cybersecurity is critical. This has always been the case, but it’s even more important now thanks to the Russian war crimes in Ukraine.

The potential for a cyber-war has never been higher. As Russia struggles with illegally occupying Ukraine it may lash out with cyber-attacks against anyone supporting the Ukrainian nation.

Russia’s fellow rogue state allies, Belarus, Iran, North Korea, and China, could increase their current efforts. Plus, many cyber-criminal gangs are based in these countries.

 

Examine the Reassuringly Robust Flexibility and Extensibility of Symfony Security

 

This is the most important, original content Symfony Station has created to date so please be sure to read it.

 

This week

 

Jolicode writes “Once upon a time, a developer was asked to move a form from one application to another. The source application was a Symfony app. The target application was WordPress, the CMS that runs the Web.

 

Follow us in that journey that will take you to the edge of what is possible and what should not be done, but most importantly it will show you how to use the full power of Symfony Form inside the WordPress CMS.”

Using Symfony Form in WordPress

 

Prestaconcept shows us “how to cut out your code that has become too complex with the decorator pattern, using Symfony.”

Le pattern Décorateur avec Symfony

 

Rajesh Bhimani says, “Drupal 10 is coming soon. Are you ready for this new version? Are wondering since Drupal 9 is quite new, why is Drupal 10 being released? There are a few practical reasons for Drupal 10 early release, which we will discuss in this article. But before it arrives, we have to get prepared for it.”

Hint - It’s tightly tied to Symfony 6.

Are you ready to upgrade to Drupal 10? Know how to prepare for the upcoming update!

 

Evolving Web “Drupal's API-enabled architecture opens up infinite possibilities for a decoupled Drupal, separating its back-end CMS from its front-end theming system and giving us the tools to use our Drupal installation as a content hub for various technologies and applications.”

This two-part series should apply to straight Symfony in general.

Building Decoupled Drupal - Part 1

 

Building Decoupled Drupal - Part 2

 

Vishwa Chikate shows us “how to mock the global Drupal object when writing unit test cases for the custom code.”

Drupal 8/9: Unit Test cases mocking the global Drupal object and Services

 

He also has:

REST API: How we implement resource handlers for PATCH req:

 

Jacob Rockowitz notes “Recently, I shared a guide for auditing, reviewing, and improving a Drupal module. I suggested that developers experiment with the drush generate command, which uses the Drupal Code Generator to help gain an overall understanding of the potential architecture of a Drupal module. Here I put my recommendation to the test by generating an example module using the Drupal Code Generator library."

Understanding the architecture of a Drupal module using the Drupal Code Generator library (a.k.a. the drush generate command)

 

Nicolas Pennec says, “Drupal is an open-source content management platform powering millions of websites and applications. Here we will see how you can easily deploy a simple Drupal website on Docker to the cloud with ScaleDynamics.”

How to deploy Drupal on cloud with Docker

 

Timeless

Inspector logo

Sponsored Article

 

We published our third sponsored article on Symfony Station exploring how to Implement Code Execution Monitoring for your Symfony apps via Inspector. Like all our articles it is now available via audio.

 

How to Implement Code Execution Monitoring for your Symfony apps via Inspector

 

All sponsored articles are for products we have vetted and stand behind. We either use them or would do so if they applied to the Symfony Station site.

 

PHP logo

PHP

 

This week

 

Nabila Khansa writes “Clean code plays a major role in the understandability of a code, along with its readability, changeability, extensibility, and maintainability. It is vital for building a successful and maintainable product, especially when you are part of a developer team. You should always think about the next person who will maintain your code.”

Let’s Take Out the Trash: Writing Cleaner Code

 

Victor Todoran notes “Ever since the release of PHP 8.0 all I’ve been hearing is constructor property promotion. It’s a neat little trick and I like it, though it wasn’t of much help when I started work on PHP 8 compatibility. This article is a high-level overview meant to show you some of the things you need to look into before you can upgrade to PHP 8 and to encourage you to research the topic on your own.”

Migrating From PHP 7.4 to PHP 8.0

 

There are many PHP 8 articles, but this one directly compares code examples from 7 and ones refactored with 8.

What’s New in PHP 8.1?

 

Tomasz Dobrowolski says, “Functions are fundamental to writing code, making it vital that you write them well. Well-written functions make your code efficient, easy to read and reduce the chance of errors. Here is a list of advice on writing good functions with PHP examples.”

10 Ways to Use Functions in Your Code to Become a Better PHP Developer

 

Brent is back and writes “Collections; they are probably the easiest way to explain what generics are about, but they also are the example that everyone talks about when discussing generics. It’s not uncommon for people to think that “generics” and “collections with a type” are the same thing. That’s definitely not the case.”

Generics in depth

 

This tutorial shows us how to work with files in PHP.

PHP File — Open/Read/Write/Close

 

Italo Baeza Cabrera notes “If you want a free and simple route to host a private package in Github and download it to your project, there is one.”

PHP: Use your private repository in Composer, without SSH keys

 

Vitalii Marenkov says, “Domain-driven design advises to create aggregates and other complicated objects in factories. In PHP we can define constructor as private or protected and then the object can be created only in a factory method in the class itself. But it violates the single-responsibility principle. Is there another way?”

Forbidding of creating objects outside factory in PHP

 

This one is self-explanatory:

Open Swoole 4.11.0 released with HTTP2 improvements, PHP GRPC server, bug fixes, and more

 

Frank Prins writes “The last few months I’ve been working a lot on optimizing our Gitlab pipelines for a large private codebase to keep the runtime of them below 4 minutes. As there is not a lot of info about optimizing Gitlab pipelines for PHP projects in general, I decided it was time to change that. As there is a lot to unpack here, this will be the third in a multipart series.”

Optimizing Gitlab pipelines - PHPStan (3)

 

Pascal Landau says, “In the fourth part of this tutorial series on developing PHP on Docker we will revisit the previous tutorials and update some things to be up-to-date in 2022.”

Docker from scratch for PHP 8.1 Applications in 2022

 

Beau Beauchamp notes “Now you can add self-updating elegance to your downloadable applications using a WordPress-style update utility using JavaScript, PHP, Composer and GitHub.”

Add A WordPress-Style Update Utility To Any Application

Code logo

Other

 

Please visit our Support Ukraine page to learn how you can help kick Russia out of Ukraine (eventually).

 

The cyber response to Russia’s War Crimes

 

TechCrunch opines “Russia's current talent outflow might well be the last wave of its chronic brain drain stretching back decades.”

Tech talent flees Russia as Western sanctions bite

 

Venture Beat notes “Vera Chernysh is the СЕО and managing editor of the three largest technology and business news publications in Ukraine —  MC.today, ITC.UA,  and Highload. Chernysh and her husband, Timur Vorona, who run and manage the news outlets together, made the business decision to shift the operations of their entire business from covering the latest tech trends to war and survival reporting.”

Ukrainian tech publications pivot to cover the war and provide survival advice

 

FP reports “Russia’s communications systems are failing at higher-than-expected rates during the nearly monthlong war in Ukraine, U.S. and European officials and experts said, forcing invading troops in the field to rely on open systems that can be readily intercepted by Ukrainian forces.”

‘The Ukrainians Are Listening’: Russia’s Military Radios Are Getting Owned

 

In other communications news CNBC reports “SpaceX has sent “thousands” of Starlink satellite internet kits...which come with an antenna, a mounting tripod and a Wi-Fi router to Ukraine shortly after Russia invaded. Ukrainians can use the Starlink kits to connect directly to SpaceX’s network in orbit, with the company having launched about 2,000 satellites to date.”

Elon Musk's SpaceX sent thousands of Starlink satellite internet dishes to Ukraine, company's president says

 

WP Tavern reports “WordPress managed hosting company WP Engine has joined Acquia, Fastly, Gatsby, Netlify, and Pantheon to begin booting Russian companies off their platforms.”

WP Engine, Pantheon, and Others Drop Support for Russian Business Customers

 

Fast Company reports “The “Play for Ukraine” game, developed by IT pros in Lviv, crowdsources and gamifies DDOS attacks on Russian websites. It’s already racking up successes.”

This game crowdsources cyberattacks against Russian websites

 

Wired reports “The developer of a popular open-source package has been caught adding malicious code to it, leading to wiped files on computers located in Russia and Belarus. The move was part of a protest that has enraged many users and raised concerns about the safety of free and open-source software.”

A Developer Altered Open-Source Software to Wipe Files in Russia

This is the way not to do it. Indiscriminately. Not yet.

 

Politico quotes President Biden “The more Putin’s back is against the wall, the greater the severity of the tactics he may employ … one of the tools he’s most likely to use in our view, is cyber-attacks...The magnitude of Russia’s cyber capacity is fairly consequential and it’s coming.”

Biden warns Russian cyberattacks 'coming'

 

The Evil Empire Strikes Back

 

Laptop reports “As Russia deploys brute force to invade Ukraine, the US fears that the nation may have another tactic up its sleeves: cyber warfare. On Monday, President Joe Biden warned business leaders about the looming threat of cyber attacks that could cripple US infrastructure.

You may be wondering, "What does cyberwarfare look like and how can it affect me?" Let's take a look at what the experts have to say so that you can keep your data and devices protected in the event of a cyber-attack.”

A Russian cyber-attack may hit the US — how to protect your data and devices

 

Wired also reports “For years, Russia’s cybercrime groups have acted with relative impunity. The Kremlin and local law enforcement have largely turned a blind eye to disruptive ransomware attacks as long as they didn’t target Russian companies. Despite direct pressure on Vladimir Putin to tackle  ransomware groups, they’re still intimately tied to Russia’s interests. A recent leak from one of the most notorious such groups provides a glimpse into the nature of those ties.”

Leaked Ransomware Docs Show Conti Helping Putin From the Shadows

 

The Guardian reports “The US has unveiled criminal charges against four Russian government officials, saying they engaged in two major hacking campaigns between 2012 and 2018 that targeted the global energy sector and affected thousands of computers across 135 countries.”

US charges four Russian hackers over earlier cyber-attacks on global energy sector

 

The Next Web notes “the continued operation of cryptocurrency exchanges in Russia, such as Binance, Yobit, and Local Bitcoins, has been worrying US officials for some time. Even before Russia’s latest invasion of Ukraine, the US Treasury Department warned cryptocurrencies could undermine the sanctions already imposed on Russia over its 2014 annexation invasion of Crimea.”

Russians are using crypto to evade sanctions — but it’s not just the elite

 

So, where is this humanitarian disaster created by evil men leading us? My Master’s Degree is in International Relations, so this deep dive into where the world economy may go from here is quite interesting to me.

Putin and Xi Exposed the Great Illusion of Capitalism

 

Cybersecurity

 

Venture Beat writes “There are a lot of myths surrounding open-source software, but one that continues to permeate conversations is that open source is not as secure as proprietary offerings. At face value, this claim would seem to hold merit as how do you secure a supply chain for a product that is created in an environment where anyone can contribute to it?

But perceptions are changing, as open-source code is running many of the most sophisticated computational workloads known to mankind.”

The risk of undermanaged open-source software

 

The Next Web reports “the communications between thousands of SaaS platforms are also an emerging threat to corporate cybersecurity. Most existing cybersecurity solutions still do not offer adequate protection or a convenient way to monitor the communications between these apps and platforms, leaving companies vulnerable to cyberattacks and unable to effectively know or control which parties have access to sensitive corporate or personal data.

The next big cybersecurity threat is connected SaaS platforms

 

Digital Ocean says, “IaaS, PaaS, and SaaS are all different options for cloud delivery models. They each have their own pros and cons, and the difference between them is the level of abstraction they offer the end-user.”

IaaS vs. PaaS vs. SaaS: What’s the Difference?

 

ZNet opines “A combination of resourcing, government initiatives, and innovation will mean some organizations are able to handle cyber threats in real-time -- and then there is everyone else.”

We are headed for an ecosystem of cyber haves and cyber nots

 

More

 

The New Stack reports “HTML over-the-wire has been picking up steam as a more straightforward way to create web applications, without needing to use as much JavaScript. It works by sending HTML, and not JSON, “over the wire.” Now a new “unobtrusive JavaScript framework” called Unpoly has emerged as a contender to Basecamp’s HTML over-the-wire framework, Hotwire. Unpoly promises “fast and flexible frontends for server-rendered HTML views.”

JavaScript Framework Unpoly and the HTML Over-the-Wire Trend

This is comparable to Symfony’s StimulusUX which is based on Hotwire.

 

StoryLab exclaims “All the coding has been completed and it’s (almost) perfect. So, now what? - How do we make sure it stays (almost) perfect? - Is linting ok? - Are all tests passing? - Do we have all builds (versions) archives? - And… all above for all our 19 (nineteen, in words) GitHub repositories!”

3, 2, 1 and Action - Github Action

 

Time reports “as crypto has soared in value and volume, Vitalik Buterin has watched the world he created evolve with a mixture of pride and dread. Ethereum has made a handful of white men unfathomably rich, pumped pollutants into the air, and emerged as a vehicle for tax evasion, money laundering, and mind-boggling scams. “Crypto itself has a lot of dystopian potential if implemented wrong,” the Russian-born Canadian explains.”

The Man Behind Ethereum Is Worried About Crypto's Future

 

TechCrunch reports “In a formalization of an earlier Twitter-led push to try to exert influence over fast-forming European digital regulations, the social media firm has used its Twitter Spaces platform to host the official kick-off of a policy advocacy lobby group that’s being branded the Open Internet Alliance (OIA). Alongside Twitter, video streaming platform Vimeo; Automattic, the company behind WordPress.com, WooCommerce and Tumblr; the Czech and Slovak-focused search engine company, Seznam; and Jodel, a Berlin-based (profile-less) social network, are named as founding members.”

Twitter leads call for EU lawmakers to 'think beyond Big Tech'

 

That's it for this week. Thanks for making it to the end of another edition. I look forward to sharing next week's Symfony and PHP news with you on Friday.

 

Please share this post. :) Be sure to join our newsletter list at the bottom of our site’s pages. Joining gets you each week's communiqué in your inbox (a day early). And follow us on Twitter at @symfonfystation.

 

Do you own or work for an organization that would be interested in our promotion opportunities? If so, please contact us. We’re in our infancy so it’s extra economical. ;)

 

More importantly, if you are a Ukrainian company with coding-related products, we can provide you with free promotion on our Support Ukraine page. Or if you know of one, get in touch.

 

Keep going Symfonistas!

 

Visit our Communiqué Library

You can find a vast array of curated evergreen content.

 

Author

Reuben Walker photo

 

Reuben Walker

Founder
Symfony Station

 

 

 


 

Symfony Station Communiqué - 18 March 2022

A white paragraph.

 


 

Symfony Station Logo

symfony logo

 

 


 

Welcome to this week's Symfony Station Communiqué. It's your weekly review of the most essential news in the Symfony and PHP development communities.

This week, we again cover tech aspects of the war crimes going on in Ukraine and how you can help.

Take your time and enjoy the items most valuable for you.

Thanks to Javier Eguiluz and Symfony for sharing our last communiqué in their Week of Symfony.

Please note that links will open in a new browser window. My opinions will be in bold.

 

Symfony

 

As always, we will start with the official news from Symfony.

Highlight -> “This week, Symfony development focused on fixing bugs and finishing new features for the upcoming Symfony 6.1 version. One of those new features is a button to copy requests as cURL commands in the Symfony Profiler. Meanwhile, the SymfonyLive Paris 2022 conference, which will take place in just 4 weeks, announced its complete workshop and talk schedule.

A Week of Symfony #793 (7-13 March 2022) (Symfony Blog)

 

Early bird registration for SymfonyCon Disneyland Paris 2022 ends on March 31st

 

Unsurprisingly after the recent merger they announced:

Symfony in the Cloud: Platform.sh becomes the official Symfony PaaS

 

Fabien Potencier asks “How can you get started with Symfony 6? What are the best resources to learn Symfony? How can I learn about the latest best practices? Those are legitimate questions I get from the community.”

Get started with Symfony 6

 

SymfonyCast has started a new course on Symfony 6!

This week on SymfonyCasts

 

Elise Hamimi reports “As the creator of Symfony, SensioLabs strengthens its relationship with its long-time partner in the US: Unleashed Technologies. This strategic partnership is the result of successful joint projects with Unleashed Technologies. In 2022, SensioLabs and Unleashed Technologies are speeding up to better serve American users of Symfony.

SensioLabs strengthens its partnership with Unleashed Technologies

She also has:

Learn how to migrate to the PHP framework Symfony

 

Featured Item

 

Featured Item Graphic

 

Forbes writes Ukraine’s IT pros are “ fixing internet in bombed-out buildings, finding rogue operators providing Russians with mobile connections and thwarting hackers. The telecom companies of Ukraine and their employees are being hailed as heroes in the war.”

Bombs And Hackers Are Battering Ukraine’s Internet Providers. ‘Hidden Heroes’ Risk Their Lives To Keep Their Country Online

 

If these heroes can do this, we can do more ourselves to stand with Ukraine and protect democratic values.

 

This Week

 

Sergii Demianchuk writes “welcome to the second article devoted to the theme:  “How to work with ElasticSearch using Symfony PHP framework”. Here we will prepare our local environment for further development. As you remember from Part 1 we have to create a web server, microservice application, and Elasticsearch as standalone docker containers.”

Symfony, Elasticsearch, and Docker environment

 

Michał Romańczuk notes “There are many tools for static PHP code analysis, but one of the most popular is PHPStan. It may be due to its ease of use, versatility and the possibility of using many extensions for example to Symfony, Doctrine, Elasticsearch, Monolog, Guzzle, etc.”

Using PHPStan with Symfony - static analysis for better PHP code quality

 

Fabien Lemoine show us “How to combine the power of the Symfony Mailer component with the features offered by an email provider.”

Envoyer des e-mails transactionnels avec un service tiers sous Symfony

 

Mchojrin takes a look at how to handle exceptions in Rest APIs with Symfony. It’s in Spanish.

Cómo manejar las excepciones en API Rest con Symfony

 

Webkul writes “PrestaShop employs various types of cache such as Smarty, assets (CSS/JS), XML cache, etc. It also provides ways to clear individual cache types from our module. So in this blog, we will discuss how we can clear PrestaShop cache in module code.”

Clear PrestaShop Cache in module

They also have:

Custom Events and Event Subscribers in Symfony

 

Sylius notes “Since the very beginning of Sylius’ existence, our philosophy was to focus on our domain and not reinvent the wheel. That’s why Sylius is entirely based on Symfony which gave us a solid foundation to build specific e-commerce bundles within the already existing and highly standardized framework.

Following the very same core idea, Sylius never intended to solve problems of other domains. There are wonderful tools in different categories, which allows us to focus on what we know best – the e-commerce domain.”

Why best-of-breed is the best thing that can happen to your mid-market e-commerce?

I agree that unless you have a small and simple application, best-of-breed is the way to go for your stack.

 

Joseph Ndedde Udonsak writes “Recently, I was working on a feature and needed to generate and mail a PDF document whenever a payment was made. I dispatched a Message and in the message handler, I used the KNP Snappy Bundle to generate a PDF from a twig template. It was pretty straightforward (or so I thought) until I saw the mayhem that had been let loose in my failed transport.

Today I Learned — Twig and Services

He also has:

How to inject multiple instances of an interface in a service

 

The Drop Times has an interview with Drupal’s founder with some interesting takes on headless and low code.

Dries Buytaert: Low Code No Code Adoption Good for Drupal

 

And speaking of headless Drupal here’s an article and a solution taking a look.

Five basic things I’ve learned using GraphQL in Drupal

 

The future of Drupal is headless

Dries disagrees with the headless opinion and so do I. That applies to WordPress as well.

 

Ryan Szrama writes “We've long recommended Swift Mailer for formatting and sending HTML emails from Drupal Commerce. Symfony announced the project's deprecation late last year, recommending folks switch to using the 3-year-old Symfony Mailer instead after they brought it up to full feature parity with the Swift Mailer library.

Fortunately, there's a module for that!”

Replace Swift Mailer with Symfony Mailer for HTML email

 

Timeless

Inspector Logo

Sponsored Article

 

We published our third sponsored article on Symfony Station exploring how to Implement Code Execution Monitoring for your Symfony apps via Inspector. Like all our articles it is now available via audio.

 

How to Implement Code Execution Monitoring for your Symfony apps via Inspector

 

All sponsored articles are for products we have vetted and stand behind. We either use them or would do so if they applied to the Symfony Station site.

PHP logo

PHP

 

This week

 

Dariusz Gafka writes “We often need to schedule the execution of given business functionality in our applications. The timing depends on what we want to achieve. It may be monthly executed invoices or notifications sent after the user was registered on the website. And in this article, we will deep into different ways of scheduling execution in PHP.”

Scheduling Execution in PHP

 

PHPStan asks:

What's Up With @template-covariant?

They also look at:

Generics By Examples

 

Digital Ocean shows us:

How To Use Functions in PHP

 

Gaurav Makhecha says, “Thanks to the PSR-4 autoloading, we can define the namespaces prefix and their corresponding base directories.”

PHP Namespaces are not the same as the Directory Structure

 

Marcin Szydlowski writes “I have recently spotted an interesting vulnerability in a PHP application, which was in the scope of a private bug bounty program. This vulnerability has nothing to do with standard web app issues like SQLi, XSS, or IDOR, hence despite relatively small impact I decided to write about it.”

Insecure comparison in PHP — Business Logic Bypass vulnerability

 

Brent Roose & Freek Van der Herte are starting a series of posts with tips for writing clean PHP. They’re from a course the duo offers.

Code that breathes

 

Joshua Otwell says, “I'm sharing my 5 favorite Programming/Developer newsletters that I think you should read too.”

5 Developer/Programming Newsletters You Should Be Reading

There are good SQL and PHP choices on the list.

 

Meet Simseck states “I’d like to talk about Swoole in this article but it won’t be covering the cumbersome processes such as installing, configuring, using, and so on. I’d like to cover the philosophy behind it. Why do we need it in the PHP world? Which scenarios are the best to use this kind of external package/extension?”

Let’s Tackle PHP Swoole Solemnly

Code Logo

Other

 

Please visit our Support Ukraine page to learn how you can help kick Russia out of Ukraine (eventually).

 

The cyber response to Russia’s War Crimes

 

MarketWatch writes “One reason that some military analysts and Russia experts believe may have contributed to Putin miscalculating his chances of a quick victory, or his ability to outlast the Ukrainians, is that he underestimated the efficacy of Western sanctions in sapping Russia’s power to wage war, specifically by denying it access to critical technologies.”

Putin tried to create a homegrown tech industry. His failure could be key to a Russian defeat, experts say

 

The Hill notes “With the assistance of the West, Ukraine has become more resilient since the initial cyberattacks, especially given that it is uniquely vulnerable to Russian attacks since most of its infrastructure was built by Moscow during the Soviet era.”

US and EU cyber investments in Ukraine pay off amid war

 

Reface, a synthetic media app that’s developed out of Ukraine has added push notifications informing its ~200 million-strong global user-base about Russia’s invasion of the country — urging people to #StandWithUkraine, including by watermarking face-swapped videos created with the app.

Reface, a viral face-swap app from Ukraine adds anti-war push notifications

 

Wired writes, “Within three days of the first missiles falling on Kyiv, Mykhailo Fedorov and his staff launched a public campaign to pressure US tech giants to cut off Russia, began accepting cryptocurrency donations to support Ukraine’s military, secured access to Elon Musk’s Starlink satellite internet service, and began recruiting a volunteer “IT Army” to hack Russian targets. More recent projects include a chatbot for citizens to submit images or videos of Russian troop movements.”

Ukraine’s Digital Ministry Is a Formidable War Machine

 

The Guardian reports “about 300,000 people have signed up to a group on the chat app Telegram called “IT Army of Ukraine”, through which participants are assigned tasks designed to take the fight to Vladimir Putin. In so doing, they are trying to level the playing field between one of the world’s (so-called) superpowers and Ukraine as it faces bombardment and invasion.

‘It’s the right thing to do’: the 300,000 volunteer hackers coming together to fight Russia

 

Anonymous continue their efforts.

Anonymous releases 364,000 files about Russia's censorship of invasion

 

They also hit the German subsidiary of Russian energy giant Rosneft with a cyberattackRosneft withal Office for Information Security (BSI) says.

Hackers target German branch of Russian oil giant Rosneft

 

Fast Company reports on how “A group of techies-turned-hackers called the Cyber Partisans are targeting railways carrying Russian troops and exposing a brutal Belarusian regime.”

How hackers in Belarus are complicating Putin’s Ukraine invasion

 

Rest of World asks:

In Ukraine’s cyber-war with Russia, who is a civilian, and what is a war crime?

 

The Wall Street Journal notes “People around the world are using a new website to circumvent the Kremlin’s propaganda machine by sending individual messages about the war in Ukraine to random people in Russia.”

Using a New Cyber Tool, Westerners Have Been Texting Russians About the War in Ukraine

 

The Guardian also notes “Experts say both sides may understand that large-scale cyber-attacks will result in ‘mutually assured destruction of systems’.”

‘Catastrophic’ cyberwar between Ukraine and Russia hasn’t happened (yet), experts say

 

Cybersecurity

 

I thought this would have been a no-brainer but:

Germany warns against using Kaspersky software citing 'considerable' cyber risk after Russia's invasion

 

VentureBeat reports “Cloudflare unveiled a new tool in its suite of security offerings, the Cloudflare API Gateway, which seeks to simplify the protection of increasingly prevalent application programming interfaces (APIs). The solution also aims to feature a significantly lower price point than many of the other API security products now on the market, which could go a long way toward “democratizing” API security for the market.

Cloudflare aims to boost API security with a new gateway

 

On the Public API Network, Postman gathers some of the best APIs to ramp up productivity including Notion (just released to GA!), Peruse Code, and Machine Learning Tools for Developer Professionals.

Build Software Faster with These Productivity APIs

 

This was from a while back but is worth another look. Via Github:

The Open Source Software Security Summit: securing the world’s code together

 

C.S. Rhymes says, “GitHub offers a dependabot service that can let you know of any potential security issues with your dependencies and automatically create a Pull Request for you. This works great without any configuration if you have a repo that contains npm, composer, or gem dependencies, but you may need additional configuration if your lock files aren’t in the root directory, or in separate directories in the case of a monorepo.”

Using GitHub Dependabot with a Monorepo

 

GitHub also has a video exploring “ some of the shortcomings of legacy application security solutions, and share a developer-first approach that can help your organization overcome challenges with an end-to-end security process and improved collaboration.”

Developer-first security: The next step for AppSec

 

If you are having trouble getting cybersecurity buy-in with your CEO or CFO, share this with them. Plus, it’s a good review for anyone.

Cybersecurity: What Every CEO and CFO Should Know

 

More

 

Core DNA writes “We take a close look at the evolution of the CMS platform, specifically, how the management of content has changed and how platforms have been designed to cater for the changing browsers, new channels, and client needs.”

Custom CMS & Backend Frameworks Be Damned

 

Postman asks us to “Explore the World of APIs. Browse the largest network of APIs, workspaces, and collections by developers across the planet.”

Postman API Network

 

Ben Gurney shares an effective way to approach improving the web accessibility of your apps.

My secret to better web accessibility

 

Chris Saxon notes “We all know that many modern apps rely on REST APIs to talk to other services, especially in the cloud. We all know those APIs usually send and receive data using a recent innovation: JavaScript Object Notation (JSON) documents. And we know there are a lot of methods for storing, managing and sharing these documents in your applications.

What many people don’t know is that the best way to manage JSON is with a seemingly ancient tool: the SQL language. Let’s look at why that is and five examples of how to do it.”

Why (and How) You Should Manage JSON with SQL

 

That's it for this week. Thanks for making it to the end of another extended edition. I look forward to sharing next week's Symfony and PHP news with you on Friday.

 

Please share this post. :) Be sure to join our newsletter list at the bottom of our site’s pages. Joining gets you each week's communiqué in your inbox (a day early). And follow us on Twitter at @symfonfystation.

 

Do you own or work for an organization that would be interested in our promotion opportunities? If so, please contact us. We’re in our infancy so it’s extra economical. ;)

 

More importantly, if you are a Ukrainian company with coding-related products, we can provide you with free promotion on our Support Ukraine page. Or if you know of one, get in touch.

 

Keep going Symfonistas!

 

 

Visit our Communiqué Library

You can find a vast array of curated evergreen content.

 

Author

Reuben Walker photo

 

Reuben Walker

Founder
Symfony Station

 

 

 


 

Symfony Station Communique - 7 January 2022

A white paragraph.

 


 

Symfony Station Logo

symfony logo

 

 


 

Welcome to this week's Symfony Station Communique. It's your weekly review of the most valuable and essential news in the Symfony and PHP development communities. Take your time and enjoy the items most valuable for you.

Thanks to Javier Eguiluz and Symfony for sharing our last communique in their Week of Symfony.

*Please note that links will open in a new browser window. My opinions, if I present any, will be in bold.
 

Symfony


As always, we will start with the official news from Symfony.

Highlight -> "This week, Symfony 4.4.36, 5.3.13, 5.4.2 and 6.0.2 maintenance versions were released. In addition, Symfony announced the open sourcing of Symfony CLI, and we published the traditional Symfony 2021 Year in Review summary."

A Week of Symfony #783 (27 December 2021 - 2 January 2022)


There's a week left to enjoy the early bird registration for SymfonyLive Paris 2022 conference organized on April 7-8 2022. Join the team for a week of Symfony in French: 2-day workshops and 2-day conference!

SymfonyLive Paris 2022 : l'inscription early bird se termine le 10 janvier 2022


They have announced the workshops as well.

Les formations du SymfonyLive Paris 2022 sont en ligne


Early bird registration for SymfonyWorld Online 22 Summer edition ends January 14. Calls for presentations are open for it and SymfonyLive Paris.

CFP and Early Bird registrations are open for SymfonyLive Paris 2022 and SymfonyWorld Online 2022 Summer Edition


SymfonyCasts picks back up on their security series and writes "we added an “email verification” step to our registration by leveraging the symfonycasts/verify-email-bundle (hey! I know them!). Then we looked at actually validating the signed URL that we sent to the user to show *why* it failed when it does, and mark our user as “verified”.

And apart from being more powerful and less complex, the new Symfony security system comes with new stuff! Like “login throttling”. We enable this & open up its source code to see how it works. Hint: it works via events!"

This week on SymfonyCasts

 

Featured Item graphic

 

Featured Item


We continue to highlight a post of the week. This one was an obvious and easy decision.

This week I am choosing one of the most useful posts I've found in a long time. It's primarily about the frontend and self-explanatory.

10 Resources for Web Developers

 

This Week


API Platform creator Kévin Dunglas writes: "I’m very excited to announce that after 6 years of teamwork, Symfony and API Platform now include an industry-first set of tools designed to automatically create, manage and run the Docker containers needed for your applications."

Symfony’s New Native Docker Support (Symfony World) Presentation


Dariusz Gafka explores "pushing the refactoring of our Symfony Applications to their boundaries. We will focus on dropping boilerplate completely so we can write only the code that matters, allowing us for easy modifications, maintenance and future extensions." We will focus on dropping boilerplate completely so we can write only the code that matters, allowing us for easy modifications, maintenance and future extensions."

Build Your Symfony and Doctrine ORM Applications with ease using Ecotone


Fabio Hiroki has another excellent article for us. This one covers using Symfony with the RabbitMQ message broker.

Introduction to RabbitMQ and Symfony


Mike Zukowski follows up on an article he wrote how to improve your application’s response time with lazy Twig extensions.

Testing Twig Extensions The Right Way

 

In previous communiques I shared Anders Björkland's articles on the SilverStripe CMS. Here's the latest one.

Query me some Google Books API
 

Regarding CMSs our next original article will cover those built with Symfony Components. Check back next Wednesday to read it.


There was an explosion of Drupal news this week. So, here we go.

Speaking of Twig, Drupal 10 will update its implementation of Twig from version 2 to 3. Here are the details so you can prepare.

Twig Updated from 2.x to 3.x


Drupal uses the EventDispatcher component from Symfony, which implements the Mediator and Observer design patterns. This allows for business logic to be extensible without making systems entirely coupled. The originating system dispatches an event and allows any other system to react to that event or modify data associated with that event. The originating system can then perform other interactions after its observers have processed the event.

Registering your PHPUnit test as an event subscriber for testing events

 

Last Week


While the Drupal Content Management (CMS) system is a popular solution for all-in-one websites, it also works well as a “content warehouse” that other systems can pull from. In this tutorial, we will use Drupal Views to create two API endpoints that an app or website can use to request content from a Drupal CMS.

How to Create REST API Endpoints with Drupal Views


And finally on the Drupal front, here is a useful cheat sheet for developers.

Major Drupal configuration schema cheat sheet update.


Tanvir Ahmad shows us how to create PHP CLI application with the Symfony console component.

Easy Way to Create a Symfony Console Application

He also has this post.

How to Run Symfony Console Command in AWS Lambda

 

Timeless

Inspector logo

Sponsored Article

We published our first sponsored article on Symfony Station exploring how Code Execution Monitoring helps you identify bugs and bottlenecks in your Symfony app before your customers do. Like all our articles it is now available via audio.

Why You Should Use Code Execution Monitoring with Symfony

All sponsored articles are for products we have vetted and stand behind. We either use them or would do so if they were applicable to the Symfony Station site.

PHP logo

PHP

 

ThisWeek


Kévin Dunglas also writes: "In modern web applications, it’s a common pattern to serve the web API and the frontend app from different subdomains. This was the pattern implemented by API Platform until last year. But we changed that for 2 main reasons: performance and REST principles."

Preventing CORS Preflight Requests Using Content Negotiation


Alex Hernandez writes: "Over the years, I’ve learned how to set up Docker in a way it’s easy to use without needing to know every detail. Today I want to give you an easy-to-use template in order to use Docker with PHP, explained, so you can understand how it works in just 10 minutes."

Docker Template For PHP Explained


Vishwa Chikate asks: "how can we better implement the callback Class/Methods a.k.a the resource handlers associated with an REST HTTP API. The idea which will be covered will help #developers in having a Reusable, Extendable and an easily Maintainable code.

The approach outlined here can be applied to any PHP framework of choice or it can be considered as implementation practice in other languages / framework’s."

PHP: RESTful API resource handlers


Feel like building a PHP site from scratch? Jens Kuerschner, @jekuer, has the article for you.

Build a kick-ass PHP Microsite in under 4 hours


I found the following to be an interesting case study from Matt Kingshott @mattkingshott.

How I designed and built Lumeno’s recruitment search engine


I have shared work from Eelco Verbrugge, before. Here he explains PHP interfaces.

PHP Interfaces Explained


Christophe Avonture mentions that "As a loyal reader of several forums for years, I frequently find unreadable PHP code posted by beginners asking for help. Before we can try to help them, it is sometimes useful to reformat the code and rewrite it partially." He shows us how here.

Docker - Run/Refactor PHP code from a web interface


This is a short but very interesting post from Mike Zukowski.

Adding a watermark to a video in PHP


PHP Stripe API turns the agonizing task of collecting credit card payments into a matter of copy & paste. It’s basically a JavaScript library that interfaces your web page to Stripe’s web servers. The information is never sent to your servers making it so effective. You don’t have to stress over the server-side settings of your application.

The Stripe PHP library gives access to the Stripe API from applications composed within the PHP language. It incorporates a pre-defined set of classes for API that initialize themselves from the API which makes it compatible with a wide run of versions of the Stripe API.

Streamline Your Online Payments With PHP Stripe Payment Gateway Integration

 

Last Week


Based on the most recent Stack Overflow survey in 2020, Python was the most used language according to 70% of its respondents, while PHP was chosen by 25%. However, market reports from w3techs.com tell a different story, showing that nearly 78% of all websites today run PHP. Much of PHP’s mainstay can be attributed to Wordpress and Shopify, which constitute around 45% of all websites today.

8 Reasons Why PHP Development Is Not Dead

 

Timeless


Genuinely useful tips are always welcome, and Damian Brdej has these for PhPStorm.

8 most useful PhpStorm keyboard shortcuts

Code logo

Other


The State of the Octoverse from GitHub explores a year of change in programming. Its research tells you how to improve your performance and well-being by developing code, creating documentation, and supporting communities in smarter, more sustainable ways.

The State of the Octoverse


The Next Web looks at why shrinkflation is not a solution for inflation in the programming industry.

Don’t let ‘shrinkflation’ affect your software development


Kesk gives us "eight little tips that can save you time in your day-to-day as a programmer. Some are basic while others could be a little complex."

8 Super-useful SQL Snippets You’ll Want to Have on Hand


Have you published or seen something related to Symfony or PHP that we missed? If so, please contact us.


That's it for this week. Thanks for making it to the end of another extended edition. I look forward to sharing next week's Symfony and PHP news with you on Friday.


Please share this post. :) Be sure to join our newsletter list at the bottom of any of our site’s pages. Joining gets you each week's communique in your inbox (a day early). And follow us on Twitter at @symfonfystation.


Happy Coding Symfonistas!
 

 

Visit our Communiqué Library

You can find a vast array of curated evergreen content.

 

Author

Reuben Walker photo

 

Reuben Walker

Founder
Symfony Station

 

 

 


 

Symfony Station Communique - 5 November 2021

A white paragraph.

 


 

Symfony Station Logo

symfony logo

 

 


 

Welcome to this week’s Symfony Station Communique. It’s your weekly review of the most valuable and essential news in the Symfony and PHP development communities.

This week it's quite extensive, so take your time and peruse it for the items most helpful items.

Thanks to Javier Eguiluz and Symfony for sharing our last communique in their Week of Symfony.

*Please note all links will open in a new browser window. My opinions, if I present any, will be in bold.

 

Symfony

 

This week

 

As always, we will start with the official news from Symfony.

Highlight -> “This week, Symfony 4.4.33 and 5.3.10 maintenance versions were released. Meanwhile, Symfony development focused on finishing and polishing many new features for the upcoming Symfony 5.4 and 6.0 versions. Lastly, we announced new speakers for the SymfonyWorld Online 2021 Winter Edition conference (December 9–10, 2021) and some new additions to the Symfony Backers program.”

A Week of Symfony #774 (25–31 October 2021)

If you have a project using Symfony 4+ full-stack framework, there is a high chance that it is using Symfony Flex. Symfony Flex automatically configures packages when you install or upgrade them via official or contributed recipes. However, the way Symfony serves the recipes is changing, and you need to upgrade the symfony/flex package to take advantage of this change. They ask that you:

Upgrade Flex on your Symfony projects

Symfony 5.4 and Symfony 6.0 will be released simultaneously at the end of November 2021. According to the Symfony release process, both versions will have the same features, but Symfony 6.0 won’t include any deprecated features.

This post is the first article of a series that shows the most important new features introduced by Symfony 5.4 and 6.0 versions.

New in Symfony 5.4: Console Autocompletion

And the second.

New in Symfony 5.4: Faster Security Voters
 

They also announced the fourth round of speakers for SymfonyWorld 2021 Online. I look forward to “Runtime component: The game-changer” from Tobias Nyholm.

Fourth Round of Selected Speakers at SymfonyWorld 2021 Online 2021 Winter Conference


 

Featured Item graphic

Featured Item

 

We start to highlight the most significant post of the week in this edition.

The first is from Mindfire Solutions who say:

When you want to build and deploy an application at high speed, you need a good framework. Since PHP is the most popular web application development language, we recommend Symfony as a suitable framework for development ventures.

The distinct advantages of using PHP-Symfony Framework


 

Via SymfonyCasts: the heart of Symfony’s security system is the firewall. The firewall works by activating one or more “authenticators.” This week we bootstrap our very own.

This week on SymfonyCasts

 

Wouter Carabain, who provides some helpful info on his new blog, began a new series of posts looking at pairing Symfony with API Platform. Here’s the second one and a follow-up of the post we shared in our last communique.

How to create a simple application using Symfony and React Native — Part 2
 

Last Week

 

In this Stangebuzz post, we learn how to create custom PHPStan rules for a Symfony project. We explore Symfony best practices but also more specific rules.

Creating custom PHPStan rules for your Symfony project

 

Benjamin Beganović was experimenting with Symfony and realized he didn’t like the act of validating the request body in the controller method itself. So he thought it might be a good thing to try a cleaner way to do this.

Validating requests in the Symfony app

 

Timeless

 

I ran across Akashic Seer’s blog this week, which is a treasure chest of Symfony-related posts. He has quite the take on things, and I appreciate it as a curmudgeon and lover of profanity myself. I will share them with you in the coming weeks.

How to get URL Routes in your Javascript in Symfony 5+
 

He also has this gem.

How to create a cookie in Symfony 5.0+ and render a template in a controller
 

Coming from the WordPress side of PHP development, I enjoyed this older post from one of my favorite publications.

Using the Symfony Options Resolver in WordPress

Their owner had this to say “We’ve discussed WordPress many times, and it’s our favorite option for getting a website up and running. However, a PHP framework — essentially a basic structure or platform for development — also offers plenty of flexibility, although at the cost of additional time and possibly money.”

WordPress CMS vs. PHP Framework: Which is Better for My Website?
 

Here’s another WordPress and Symfony article. Carlos Matos notes that although WP_Query is primarily for internal requests, commonly it’s a data provider for WP API endpoints. Also, it grabs posts and data and generates export files. For this last situation, getting query responses automatically in different formats could be handy.

Using Symfony and WP_Query to return multiple formats

 

If you are interested in WordPress Development you can follow Mobile Atom Code on Twitter for useful articles.

PHP logo

PHP

 

This week

 

A PHP RFC proposes using GitHub Issues on the PHP repository in place of its own bugs.php.net bug tracker. Currently, GitHub issues are being used for documentation issues and website issues on the respective repositories. This RFC expands usage to the PHP implementation itself.

PHP RFC: Migrating to GitHub Issues
 

If you’re not familiar with PHPStan, it’s a static analyzer for PHP focused on finding bugs in your code. It catches whole classes of bugs even before you run your app at all. They also have a great logo. ;)

PHPStan 1.0 Released!
 

Managing a database can be complicated. phpMyAdmin exists to make the process much easier. Learn how to install and configure it with this detailed video tutorial.

How to Install phpMyAdmin on Any Operating System
 

PHP Architect’s October issue covers cryptography. Listen to this podcast for the details.

Decrypting Cryptography
 

Iacovos Constantinou writes that it is good to include all the third-party dependencies coming from composer install when working with PHP projects and Docker. This approach helps to reduce the time needed to spin off a new container. However, when not done right, it can significantly increase the build time. We will see how we can avoid this and optimize composer install for docker builds through his post.

Faster Docker builds with composer install
 

Frank De Jonge says bugs caused by race conditions can be a huge source of frustration. They are challenging to identify and often difficult to remedy. Guarding against data inconsistencies should always be top of mind. At the very least, unexpected inconsistencies require attention from support or a developer. In worse situations, inconsistencies can cause a company to lose its license to operate as a financial institution.

Ensuring data(base) consistency during concurrent requests
 

JoliCode has this review of the presentations at Forum PHP 2021 in Paris. C’est en francais si’ vous plait.

Forum PHP 2021 : l’édition des retrouvailles
 

Ahmed Khan highlights several IDE and code editors that have captured the attention of the global software development communities, like PHP and Python, and will continue to be popular in 2021.

Top Code Editors and IDE for PHP Development of 2021
 

Doeken.org’s blog continues its excellent series of posts on programming patterns with this article.

Visitor Pattern: Make entities more extendable by accepting a visitor

 

Last Week

 

Eugenio Carocci looks at mocking third-party services in integration testing in Docker with MockServer.

Mocking Third-Party Services in Integration Testing
 

Kerry Doyle notes that looking to keep up with the demand for increasingly sophisticated development capabilities, PHP 8 brings interesting new integrations that transcend the realm of web development. He makes an important point about how PHP will have to compete with Web Assembly.

PHP 8 features that prove it’s for more than just web

 

Last Month

 

Iain Cambridge says Doctrine is one of the most used ORMs in PHPLand, with many applications heavily coupled to it. With organizations moving to microservices one common task is to migrate their entities to come via microservice instead of Doctrine. Here he describes how to migrate an entity so that it’s stored in a Microservice instead of MySQL via Doctrine.

Migrate Entities to Microservice From Doctrine

Iain also has this convincing article.

How Much of a Difference does Opcache Preloading Make?

Code logo

Other

 

Let’s Git with it

 

There was lots of Git-related news this week.

To start Vijay Gurbaxani looks at GitLab’s IPO and what it portends.

What GitLab’s $11 Billion IPO Says About In-House Software Development: Iterate To Innovate
 

The world’s software depends on open source projects, so open-source maintainers must use their time productively. GitHub’s excited to share new features to increase the quality of contributions and help maintainers focus on what matters most to the success of their projects.

GitHub keeps getting better for open source maintainers

GitHub also published this helpful post on GitHub Actions.

10 GitHub Actions resources to bookmark from the basics to CI/CD

 

Serhey Dolgushev recently came across a somewhat unusual use case where he already had an active pull request but wanted to augment it. Of course, he could just wait and submit a new pull request once the initial one had been reviewed and merged. But let’s be honest, who likes to wait? So his team decided to submit a new pull request based on the active pull request. Here’s how they did it.

Git: submitting a new Pull Request based on another active Pull Request
 

In this article, Tobia Gunther looks at integrating branches. How can you get new code back into an existing line of development? There are different ways to achieve this. The fifth episode of his “Advanced Git” series discusses integrating changes in Git, namely merging and rebasing.

Rebase vs. Merge: integrating changes in Git
 

Finally, Akash Thakur notes that all of us who have worked on git as a version control system must have come across these two merging strategies: fast-forward merge and merge made by recursive strategy. But often, since most things are taken care of by git itself, we do not exactly know what might have happened in terms of git history. So he takes a look here.

Git Merging Strategies: A Simple Explanation and Guide
 

That’s enough Gitting

 

Kolade Chris will take you through 9 best practices to follow while making REST APIs in this post. It will help you make the best APIs possible and make your API consumers’ lives easier.

REST API Best Practices — REST Endpoint Design Examples
 

On that note Postman asked interesting questions in a recent survey. One was to identify the top priorities for their organizations, and there was a clear winner: quality, coming in at 80%. Agility (66%) and reliability (65%) were next. Check them all out in their API report.

2021 State of the API Report
 

If you’re looking for a Docker tool to take your development to next-level efficiency, Jack Wallen believes DockStation might be what you need.

DockStation is the Docker GUI you’ve been waiting for

 

Have you published or seen something related to Symfony or PHP that we missed? If so, please contact us.

 

That’s it for this week. Thanks for making it to the end of this long edition. ;) I look forward to sharing next week’s Symfony and PHP news with you on Friday.

 

Please share this post. :) Also, be sure to join our newsletter list so you get each week's communique direct in your inbox. And follow us on Twitter at @symfonfystation.

 

Happy coding Symfonistas!

 

Visit our Communiqué Library

You can find a vast array of curated evergreen content.

 

Author

Reuben Walker photo

 

Reuben Walker

Founder
Symfony Station

 

 

 


 

Subscribe to REST APIs

 

 

Follow Symfony Station on Mastodon Mastodon Icon Twitter Twitter Icon Flipboard Flipboard Icon or Our Newsletter Newsletter Icon