开发者

how to use CURL to request a php page on another server and then process the response

问答 作者:

I'm trying to connect to a mysql db, but from another server and process all queries on that server and then send all the data off to the original server, using CURL.

I've been researching for hours and cant seem to find the right way to go about it.

so this is what I'm trying to do overall:

  1. When somebody visits a page from server A, a request will then be sent out from server A to server B which will the开发者_高级运维n connect to a db.

  2. Once server B has connected to the db, it will take information from certain rows and fields and then send it back to server a.

  3. Once server A has received the info, it will then echo out and etc etc...

Firstly, is this safe to do? It wont like open a door on both or even one server will it?

Secondly, I have no idea how to go about it.

An example code would be great!

On server A

$post_fields = array(
    'variable_name' => 'variable_value',
    'variable' => $variable,
);
$ch = curl_init('http://www.serverB.com/example.php');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS,  $post_fields);
curl_setopt($ch, CURLOPT_POST, 1);
$result = curl_exec($ch);

$result now contains the HTML of the page you have requested from server B.

On server B

// pseudocode
$variable = $_POST['variable'];
$variable_name = $_POST['variable_name'];
$db_results = $db->getQuery('SELECT * FROM table WHERE `variable` = ?', array($variable))->toString();
echo $db_results;

Is it safe?

This depends. Does the information coming from the DB need to be protected from public view? Obviously with the setup above the information is just echod out to a page on server B. Was someone to find that page then they would be able to see the information.

If that does not matter then its perfectly save and does not open any doors (you own both sites right?) particularly.

If you need to protect against that then I suggest sending a token from server A to server B to authenticate that the correct script is attempting to access the information. Something like an API key, which you could pass as a header in your curl request and then get out and verify from $_SERVER on server B.

继续阅读:curlphp

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9