4

While coding PHP, I decided to move from spaghetti code and try to implement MVC. To implement the MVC framework, I vent to this article Article gave a good start and I managed to create my site, and develop the front-end. Now, I am trying to implement the back-end using sessions and other member-area features. My brain is boiling with new information and I have more questions than answers.

I don't know how to implement additional classes, user class for example. For example, without MVC I could create new user.php class file in my includes directory, then include it, instantiate it, and assign appropriate values to the object and place objest into session.

I would like to ask for an expret advise.

I am confused about many things:

  • where do I add the user class
  • how do I add and include user class to my MVC
  • how do I carry user class around my application (I understand in session, but session must have an acees to user object
  • how do I perform login / logout logic and perform required actions that are taking place in the backgroud

It is probaly a common problem that is not complex once it has been done before. I also apologize for not very good defined question, but I appreciate your help in advance.

Andrew
  • 7,619
  • 13
  • 63
  • 117

3 Answers3

15

User, context of MVC, is a domain object. However the session is a form of storage medium (just like cache, db or file-system). When you need to store data from User instance there, you use some type of data mapper to do it.

$user = $this->domainObjectFactory->build('user');
$user->setName('Korben')
     ->setSurname('Dallas');

if ( some_condition )
{
    $mapper = $this->dataMapperFactory->create('session');
    $mapper->store($user);
}

This code should provide an extremely simplified example for interaction between session and user.

Where do I add the user class?

As a domain object, the User instances should be used inside services and initialized using factories. In context of MVC, the services are structures in model layer, which deal with application logic. They manipulate and facilitate the interaction of domain object and storage abstractions.

How do I add and include user class to my MVC?

All of your classes should be added using autoloader. You should read about use of spl_autoload_register(), preferably while using namespaces.

The initialization of instance itself should be done by a factory. That lets you decouple your code from the class name of said instance.

How do I carry user class around my application?

You don't.

PHP applications do not persists. You have an HTTP request, yo do all the things you need with it, the response is sent and application is destroyed. The instances of User class will all be short-lived.

To recover the current user between requests you store an identifier in session. Do not dump whole objects in session. Instead, after you fetch user's identifier from session, you can recover the rest of user account details from other forms of storage (if you even need it).

This whole process should be preformed and managed by some sort of "recognition service" or "authentication service" from your model layer.

How do I perform login / logout logic and perform required actions?

The login request is at first handled by controller:

public function postLogin( $request )
{
    $service = $this->serviceFactory->create('recognition');
    $service->authenticate( $request->getParameter('username'),
                            $request->getParameter('password') );
}

The service tries to verify the user's credentials, which alters the state of model layer. The view instance then looks up that state and either redirects you to the landing page as authenticated user, or redirects you back to login page with an error message.

The service themselves would be shared between model controller and view via the factory. Which means that they would initialize each service only once and then just reuse it. Something along the lines of:

class ServiceFactory
{
    private $cache = array();

    public function create( $name )
    {
        if ( array_key_exists($name, $this->cache) === false )
        {
            $this->cache[$name] = new $name;
        }
        return $this->cache[$name];
    }
}

Just keep in mind that his is an extremely simplified example.

For further reading I would recommend you to go through this collection of links. Also, you might find these 3 posts somewhat useful: this, this and this.

Community
  • 1
  • 1
tereško
  • 58,060
  • 25
  • 98
  • 150
  • So if i have for example Project entity, which can be started/ended and other stuff done to it, i should create a corresponding service that changes states of this service where i should perform all security checks and checks for transition valididty (i.e. logic - if next state of Project is amoung designated states). – Ivan0x32 Oct 02 '13 at 05:35
  • 1
    I probably misunderstood the question, but here's my best guess ... The responsibility of validating the next `Project` state most likely would reside in the `Project` [domain object](http://c2.com/cgi/wiki?DomainObject). The service, which would be exposed to controller, is tasked with handling the interaction between your `Project` entity and storage abstraction(s) (likely some form of data mapper), which you use for persisting it. – tereško Oct 02 '13 at 15:38
  • 1
    @Ivan0x32 if with "security checks" you referred to verifying user's authorization, then that should probably done similarly to [this](http://stackoverflow.com/a/9685039/727208) approach, where you would either decorate the services (via factory) or controllers with this "access membrane". Technically you could decide to wrap domain objects instead, but I haven't seen any usecases where this is the pragmatic approach (though, the approach **can** be applied). – tereško Oct 02 '13 at 15:43
  • Thanks for your answer. I have simple pure doctrine 2 entity, named Project, which serves only for CRUD operations. Should i write all logic code related to security and validation in its methods or should i create a symfony-2 service that will serve as decorator for this entity and perform all checks? – Ivan0x32 Oct 02 '13 at 17:47
  • 1
    As far as I know, Doctrine2 implement something close to data mapper pattern. Your service in this case would be dealing with entity manager and the entities. Service should not be a decorator. Service are abstraction of ["application logic"](http://books.google.lv/books?id=tK3_vB304bEC&pg=PA309&hl=en&sa=X&ei=heZMUrvqDaiJ4ATZ54B4&redir_esc=y#v=onepage&q=application%20logic&f=false). – tereško Oct 03 '13 at 03:38
5

So you've got a lot of questions here, let's review them briefly:

  • where do I add the user class
  • how do I add and include user class to my MVC
  • how do I carry user class around my application (I understand in session, but session must have an acees to user object
  • how do I perform login / logout logic and perform required actions that are taking place in the background

As you can imagine we can not answer those questions technically on Stackoverflow. There would not be much use for future users of your question and also we just don't want to give simple answers.

But if you look through the list of your questions there are some prominent points you ask about:

  • Where are objects created?
  • How are objects passed through my application?

And also already an answer: "In the Model" (not to these two points I just listed, but for some of your questions).

So first of all, the Model is a layer in MVC. And a layer is a specific area in your application taking care of (normally a more high-level) job in it's flow. In your example, the User is part of the Model. See the Pasta Theory of Software for a description how you can organize code in a software program, this should make clear why to use layers - apart from MVC in specific. But in MVC, the answer is clear: in the Model.

As this answer is that obvious, it makes me wonder a little how the tutorial you've followed could have missed that. And has you left alone with such elementary questions of software design like:

  • Where are objects created?
  • How are objects passed through my application?

Because these two questions are pretty existential for any software that uses objects, not even those that are specifically object-oriented.

So let's just keep it straight forward and answer those two questions: For MVC you might create yourself some high level routines that form a framework you build your application in. Basically this means, you are creating a library. A library is used by someone. That someone should decide where objects are created. The framework / library should not dictate where to create objects nor should it create objects for the user. So this questions needs to be answered by the consumer of your framework not by the framework author. So to handle this properly you need to split yourself in two and on the one hand take the role of the coder of the library and on the other hand take the role of the coder writing an application with the library.

I can only stress this very simple but fundamental point: When you write some library software / framework, do not dictate where to create objects. Just provide tests that proof your library working without any application around and then when you write the application just include the library and use it.

The second questions you ask is How are objects passed through my application?. Taking a quick look into the tutorial you've linked you can already see that my general advice given above is not followed (which is crucial to rapid development btw. so don't get yourself misguided by the tutorial's title: with such complicated code it offers, only the very first hour has gone quick and it has paved the road to complicated development only) but also that the tutorial's example code are not a helpful example in showing an answer to the question how to pass objects around in an application. It misses to explain a very simple but effective method to do that: Dependency Injection.

So don't just take a single tutorial for granted. The one you've chosen merely shows the following things:

  • The author thinks it is worth to re-invent URL parsing. This is plain code-masturbation because PHP has this build-in.
  • The author thinks it is worth to not validate input values and is shortsighted to even think about the importance of preventing code injection. This is really sad.

And as the last point is a total no-go, I highly suggest you to drop anything you've taken so far from these examples and try the next one. Just keep in mind that a libraries user need to decide where and when to create objects (that means the librarie(s) used need to allow this, always) and that you use dependency injection to pass objects through the object graph you use in your application.

hakre
  • 193,403
  • 52
  • 435
  • 836
  • I'd add to this great answer that you'd better get familiar with MVC design pattern itself before start reading any tutorial how to _implement_ it (in any language) so you can identify whether it worth to go on reading or not. IMO, [this](http://en.wikipedia.org/wiki/Model%E2%80%93view%E2%80%93controller) and [this](http://stackoverflow.com/questions/5863870/how-should-a-model-be-structured-in-mvc/5864000#5864000) are good points to start. And in general before you implement any design pattern first of all you need to understand pattern well. – Leri Jun 08 '13 at 07:30
  • @PLB: I wait for tereško to highlight that more prominent and explain it with more detail. He sits more safely in the saddle when it comes to the term MVC than I do, so I can only type in my 2 cents. As you can see, when I started with the code-review at the end, I already stopped after ca. 12 lines of code which made obvious that the examples are *of very bad quality* totally unrelated to MVC in itself. – hakre Jun 08 '13 at 07:36
  • 3
    Naah .. this question is too messy for a solid answer. Take for example "where do I add the user class". This can mean anything. – tereško Jun 08 '13 at 07:46
-2

Why not use one of the many existing MVC frameworks available for PHP? There are a lot out there (CakePHP, CodeIgniter, Yii etc etc).

If you really want to re-invent the wheel, go ahead! However the existing frameworks represent the culmination of a lot of development by smart people, so you are getting a great head start by adopting one.

Furthermore, they are well documented and have good tutorials which will answer the questions you are asking and also many you haven't asked yet.

dcarson
  • 2,853
  • 1
  • 25
  • 34
  • 1
    I am 100% agree with you. But at this moment, while I `reinventing the wheel`, I learn how it's done from the scratch. But later, I will adapt one of the frameworks you mentioned. – Andrew Jun 08 '13 at 06:00
  • 5
    -1 This is not _reinventing wheel_! This's a learning process. Many people make this mistake: take some existing framework and _do stuff_ with it, while they don't understand how language itself works. – Leri Jun 08 '13 at 06:48
  • Well MVC is not a language, its a architectural pattern that can be implemented in almost any language. The article linked by Andrew in the original question, did not teach much about the patterns involved, it was a tutorial on how to build a PHP MVC framework. I don't think this really needs to be done twice. Howvever if learning the MVC pattern (which was not obvious from the question) is the purpose of the exercise, then I understand your point and Andrews reasons for doing it. – dcarson Jun 08 '13 at 07:07
  • 3
    @dcarson, MVC is also a pattern that is ***NOT IMPLEMENTED*** by CakePHP, CodeIgniter and Yii. – tereško Jun 08 '13 at 10:08