| Local vs. hosted connection [message #176973] |
Sat, 11 February 2012 17:17  |
Aul
Messages: 7
Registered: December 2011
Karma:
|
Junior Member |
|
|
Greetings, fine denizens. I've made significant progress in my project
since my first post here some time ago, and I have a question related to
a chunk of code I developed to simplify connection to my database.
Locally, I need one set of parameters, but after uploading the pages to
my web host, I need a different set of connection parameters.
Initially, I simply edited the file after uploading it, but that got
tiresome quickly, so I came up with the following, which sends the
correct parameters based on the SERVER_NAME value:
<?php
// Define application constants.
define('HOSTED', ($_SERVER['SERVER_NAME']=='localhost') ? false : true);
// Open the database.
$db = open_db(HOSTED);
if ($db) {
// Do stuff
}
function open_db($hosted = false) {
// Define connection values.
if ($hosted) {
$host = (string) [url=mywebhost.com]mywebhost.com[/url];
$user = (string) [url=mywebhost_username]mywebhost_username[/url];
$pass = (string) [url=mywebhost_password]mywebhost_password[/url];
$data = (string) [url=mywebhost_mysql_database]mywebhost_mysql_database[/url];
$port = (int) [url=mywebhost_port]mywebhost_port[/url];
} else {
$host = "localhost";
$user = (string) [url=localhost_usename]localhost_usename[/url];
$pass = (string) [url=localhost_password]localhost_password[/url];
$data = (string) [url=localhost_mysql_database]localhost_mysql_database[/url];
$port = (int) [url=localhost_port]localhost_port[/url];
}
// Execute connection string.
$db = mysqli_connect($host, $user, $pass, $data, $port);
// Stop script if connection fails.
if (mysqli_connect_errno()) {
printf("Connection failed: %s\n", mysqli_connect_error());
exit();
} else {
return($db);
}
}
?>
The cast double brackets are simply placeholders I put here in this post
to indicated where I have coded my actual parameters in the indicated
type. (I left "localhost" as it is.)
My question is this: is all this secure on the Web, or is there a way
for someone to remotely acquire such stored connection parameters?
|
|
|
|
Calendar
Search
Help
Members
Register
Login
Home
]