Développement avec le framework PHP Symfony

J'ai découvert le framework Symfony avec la version 1.0 qui utilisait l'ORM Propel. Depuis je n'utilise plus que le framework Symfony ou un ensemble de ses composants pour tous mes projets (pro ou perso). Il y a beaucoup à écrire sur ce framework, dans les articles ci dessous je partage essentiellement sur son utilisation sans pour autant revendiquer "la bonne" façon de faire car les cas d'usage change pour chaque projet.

Which tool to choose to use Elasticsearch in a Symfony project

How to use Elasticsearch in a Symfony project? Which librairy or bundle to choose? I often read these questions on community slack. I'm not going to write a complete guide, but I give you my point of view on different tools I used in the past or still use. Read the post

Migrate to Jenkins pipeline for my PHP Symfony project

Yes, we are in 2022 and I'm still using Jenkins and not the hype CI like gitlab or github action. In fact I have just migrated all my old job definition from Phing (it's like Ant but written in PHP) to declarative pipeline. It's faster to run, config file are easier to read and I still keep metrics. Want to know more? Read this article. Read the post

Secure your sensible data using encryption in PHP

There isn't an application that is really security proof and will not suffer to a data breach. Encryption of the data is a good approach to reduce data breach impact. In this post, I'm going to show you how to use encryption in PHP with real world case. Read the post

Use Elasticsearch with Symfony Framework and elasticsearch-php library

Elastic provides a light weight PHP library: elasticsearch-php to connect to Elasticsearch cluster. This Library is an API client with all possible options. It's light weight and lets developer chose implementation to use it. It's a very good alternative to Elastica and his abstraction layer. On this blog I'm using elasticseach-php with Twig to manage my indices and query Elasticsearch. Read the post

Automatically controlling dependencies security with SensioLabs security checker, Jenkins

Today, we use more and more external libraries in our projects. Though it saves us time, it is possible that we may introduce security vulnerabilities via these libraries. Controlling this is unfortunately not systematic, and particularly seldom automated. I'll show you in this post how to automate this control using SensioLabs' tool and Jenkins. Read the post

Secure cookie of you web application with PHP or Symfony

Most sites use cookies. Whether for tracking or persisting data, unfortunately good security practices are not always apply. In this article I will present the different options available in PHP and how to implement them with Symfony. Read the post