Presentation is loading. Please wait.

Presentation is loading. Please wait.

INF1343, Winter 2012 Data Modeling and Database Design Yuri Takhteyev Faculty of Information University of Toronto This presentation is licensed under.

Published byAubrie Clark Modified over 8 years ago

Similar presentations

Presentation on theme: "INF1343, Winter 2012 Data Modeling and Database Design Yuri Takhteyev Faculty of Information University of Toronto This presentation is licensed under."— Presentation transcript:

1 INF1343, Winter 2012 Data Modeling and Database Design Yuri Takhteyev Faculty of Information University of Toronto This presentation is licensed under Creative Commons Attribution License, v. 3.0. To view a copy of this license, visit http://creativecommons.org/licenses/by/3.0/. This presentation incorporates images from the Crystal Clear icon collection by Everaldo Coelho, available under LGPL from http://everaldo.com/crystal/.

2 Week 8 Building Database-Driven Web Applications

3 Interactivity template = "Greetings, %s from %s!" query_template = """select * from persona where name="%s";""" name = raw_input("What is your name? ") query = fill_template(query_template, name) execute_query(query) for row in fetch_all_rows(): world = get_row_value(row, "homeworld") if world==None: print greeting + name else: print fill_template(template, name, world) (We stopped here in class.)

4 Or Rather template = "Greetings, %s from %s!" query_template = """select * from persona where name="%s";""" name = raw_input("What is your name? ") query = fill_template(query_template, name) execute_query(query) if get_row_count() > 0 : rows = fetch_all_rows() row = rows[0] world = get_row_value(row, "homeworld") if world==None: print greeting + name else: print fill_template(template, name, world) else : print "No such user!"

5 Worlds as Passwords template = "Greetings, %s from %s!" query_template = """select * from persona where name="%s";""" name = raw_input("What is your name? ") world = raw_input("Where are you from? ") query = fill_template(query_template, name) execute_query(query) if get_row_count() > 0 : rows = fetch_all_rows() row = rows[0] real_world = get_row_value(row, "homeworld") if world==real_world: print fill_template(template, name, world) else: print "Access denied!" else : print "No such user!"

6 Worlds as Passwords template = "Greetings, %s from %s!" query_template = """select * from persona where name="%s";""" name = raw_input("What is your name? ") world = raw_input("Where are you from? ") query = fill_template(query_template, name) execute_query(query) if get_row_count() > 0 : rows = fetch_all_rows() row = rows[0] real_world = get_row_value(row, "homeworld") if world==real_world: print fill_template(template, name, world) else : print "Access denied!"

7 Worlds as Passwords template = "Greetings, %s from %s!" query_template = """select * from persona where name="%s" and world="%s";""" name = raw_input("What is your name? ") world = raw_input("Where are you from? ") query = fill_template(query_template, name, world) execute_query(query) if get_row_count() > 0 : print fill_template(template, name, world) else : print "Access denied!"

8 What about Inserts? from padawan import * connect_to_db("okenobi", "okenobi") query_template = """insert into persona(name) values ("%s");""" name = raw_input("What is your name? ") query = fill_template(query_template, name) execute_query(query) print "You are now in our database!"

9 ‘%’ in Queries from padawan import * connect_to_db("okenobi", "okenobi") query_template = """select * from persona where name like "%%s%";""" name = raw_input("What is your name? ") query = fill_template(query_template, name) print query Use % in the template when you want to have % in the query: like "%%s%" → like "%Bob%"

10

11 “r2”, “alice”, “pumpkins” “alice”, “pumpkins” Telnet (1969) ok “alice@r2:~$” “python greetings.py” “What is your name?”

12 “r2”, “alice”, “pumpkins” “alice”, “pumpkins” FTP (1971) ok “ftp>” “get /path/to/ewoks.txt” ewoks.txt the file is saved locally

13 “r2”, “/path/to/ewoks.txt” “get /path/to/ewoks.txt” Anonymous FTP ewoks.txt the file is saved locally ftp://yoda/path/to/ewoks.tx t

14 “r2”, “/path/to/ewoks.html” “GET /path/to/ewoks.html” HTTP (1991) the content of ewoks.html http://yoda/path/to/ewoks.htm l ewoks.html is displayed

15 HTML Ewoks The List of Ewoks... See: http://www.w3schools.com/html/default.asp

16 Basic Web Setup 1.Create an HTML file. Call it “test.html”. 2.Put it in ~/public_html. Use an SCP client. ~ = your home directory. 3.Set permissions. Make the file readable by “other”. 4.Access it in the browser. http://r2.ischool.utoronto.ca/~okenobi/test.html (Replace “okenobi” with your username.)

17 Generated HTML from padawan import * connect_to_db("starwars", "okenobi") query = "select * from persona" execute_query(query) html_template = """ %s is from %s """ for row in fetch_all_rows(): name = get_row_value(row, "name") world = get_row_value(row, "homeworld") if world!=None: print fill_template(html_template, name, world)

18 Run with Redirection python personas.py > ~/public_html/personas.html (You can use WinSCP to check that the file ended up in the right place and that the permissions are correct.)

19 “r2”, “/path/to/ewoks.py” “GET /path/to/ewoks.cgi” CGI the html output of ewoks.py ewoks.py contains code, but returns HTML html output is displayed

20 personas.py http://r2.ischool.utoronto.ca/~okenobi/dynamic/ewoks.py protocol server address path user name

21 personas.py #!/usr/bin/python print "Content-Type: text/html" print print " Personas " Again, create locally, copy to r2 with WinSCP. The file should be in ~/public_html/dynamic. Set permissions to allow “other” and “group” to read and execute but not to write.

22 CGI with Padawan #!/usr/bin/padawan print "Content-Type: text/html; encoding=utf8" print connect_to_db("starwars", "okenobi") query = "select * from persona" execute_query(query) html_template = """ %s is from %s """ for row in fetch_all_rows(): name = get_row_value(row, "name") world = get_row_value(row, "homeworld") if world!=None: print fill_template(html_template, name, world)

23 Passing Parameters Option 1, “GET” (in the URL) http://r2.ischool.utoronto.ca/~okenobi/dynamic/personas.py?species=Human.../personas.py?species=Human Option 2, “POST” (invisibly) (we'll get back to this)

24 Accessing Parameters print_form() if form_has_field("species") : print "Species is defined!" else : print "Species is not defined. :(" s = get_form_field_value("species") print "The species is " + s

25 The Wrong Way template = """ select * from persona where species='%s'; """ if form_has_field("species") : s = get_form_field_value("species") query = fill_template(template, s) print query execute_query(query); count = get_row_count() print "Got ", count, "results!" Wrong!!!

26 Here Is Why http://r2.ischool.utoronto.ca/~okenobi /dynamic/personas.py?species=Human '%3Binsert+into+persona+(name,spec ies)+values+('X','Human')%3Bselect+ *+from+persona+where+'

27 Right template = """ select * from persona where species='%s'; """ if form_has_field("species") : s = get_form_field_value("species") safe_s = escape_string(s) query = fill_template(template, safe_s) print query execute_query(query); count = get_row_count() print "Got ", count, "results!"

28 HTML Forms <form action="/~okenobi/dynamic/personas.py" method="get"> Please select a species:

29 HTML Forms <form action="/~okenobi/dynamic/personas.py" method="get"> Please select a species: Human Ewok Wookiee

30 HTML Forms: POST <form action="/~kenobio1/cgi-bin/personas3.cgi" method="post"> Please select a species: Human Ewok Wookiee

31 initial request (a URL) an HTML page with a form a new request (another URL) an HTML page with a form a request with parameters an HTML page with hidden form elements a request with parameters an HTML page with hidden form elements

32 Prefilled Forms Please select a species: <input type="text" name="species" value="Human"/>

33 Hidden Elements Please select a species: <input type="hidden" name="species" value="Human"/>

34 Or Just in Links Click here for the Humans

35 Session Management “Cookies” Longer term storage in the browser Parameters Short-term, simpler conceptually

36 Questions?

Download ppt "INF1343, Winter 2012 Data Modeling and Database Design Yuri Takhteyev Faculty of Information University of Toronto This presentation is licensed under."

Similar presentations

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.
Presenter: James Huang Date: Sept. 29, 2014 1.  HTTP and WWW  Bottle Web Framework  Request Routing  Sending Static Files  Handling HTML  HTTP Errors.

Presenter: James Huang Date: Sept. 29,  HTTP and WWW  Bottle Web Framework  Request Routing  Sending Static Files  Handling HTML  HTTP Errors.
Lecture 14 HTML Forms CPE 401 / 601 Computer Network Systems slides are modified from Dave Hollinger.

Lecture 14 HTML Forms CPE 401 / 601 Computer Network Systems slides are modified from Dave Hollinger.
CIS101 Introduction to Computing Week 08. Agenda Your questions JavaScript text Resume project HTML Project Six This week online Next class.

CIS101 Introduction to Computing Week 08. Agenda Your questions JavaScript text Resume project HTML Project Six This week online Next class.
CPSC 203 Introduction to Computers Tutorial 59 & 64 By Jie (Jeff) Gao.

CPSC 203 Introduction to Computers Tutorial 59 & 64 By Jie (Jeff) Gao.
How the web works: HTTP and CGI explained

How the web works: HTTP and CGI explained
World Wide Web1 Applications World Wide Web. 2 Introduction What is hypertext model? Use of hypertext in World Wide Web (WWW) – HTML. WWW client-server.

World Wide Web1 Applications World Wide Web. 2 Introduction What is hypertext model? Use of hypertext in World Wide Web (WWW) – HTML. WWW client-server.
CGI Programming: Part 1. What is CGI? CGI = Common Gateway Interface Provides a standardized way for web browsers to: –Call programs on a server. –Pass.

CGI Programming: Part 1. What is CGI? CGI = Common Gateway Interface Provides a standardized way for web browsers to: –Call programs on a server. –Pass.
Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.

Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.
CGI Common Gateway Interface. CGI is the scheme to interface other programs to the Web Server.

CGI Common Gateway Interface. CGI is the scheme to interface other programs to the Web Server.
PHP Tutorials 02 Olarik Surinta Management Information System Faculty of Informatics.

PHP Tutorials 02 Olarik Surinta Management Information System Faculty of Informatics.
Advance Database Management Systems Lab no. 5 PHP Web Pages.

Advance Database Management Systems Lab no. 5 PHP Web Pages.
Reading Data in Web Pages tMyn1 Reading Data in Web Pages A very common application of PHP is to have an HTML form gather information from a website's.

Reading Data in Web Pages tMyn1 Reading Data in Web Pages A very common application of PHP is to have an HTML form gather information from a website's.
FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA1 Part 4 Web technologies: HTTP, CGI, PHP,Java applets)

FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA1 Part 4 Web technologies: HTTP, CGI, PHP,Java applets)
INTERNET APPLICATION DEVELOPMENT For More visit:

INTERNET APPLICATION DEVELOPMENT For More visit:
1 Creating Web Forms in HTML Web forms collect information from customers Web forms include different control elements including: –Input boxes –Selection.

1 Creating Web Forms in HTML Web forms collect information from customers Web forms include different control elements including: –Input boxes –Selection.
1 HTML and CGI Scripting CSC8304 – Computing Environments for Bioinformatics - Lecture 10.

1 HTML and CGI Scripting CSC8304 – Computing Environments for Bioinformatics - Lecture 10.
1 PHP and MySQL. 2 Topics  Querying Data with PHP  User-Driven Querying  Writing Data with PHP and MySQL PHP and MySQL.

1 PHP and MySQL. 2 Topics  Querying Data with PHP  User-Driven Querying  Writing Data with PHP and MySQL PHP and MySQL.
1 Session 1: Introduction to HTML Spring 2011. 2 Today’s Agenda Cover useful terminology for today’s session HTML, browsers, servers, etc. HTML Tags Get.

1 Session 1: Introduction to HTML Spring Today’s Agenda Cover useful terminology for today’s session HTML, browsers, servers, etc. HTML Tags Get.
CP476 Internet Computing CGI1 CGI is a common way to provide for specific computations on server side, interactions with users, or access to databases.

CP476 Internet Computing CGI1 CGI is a common way to provide for specific computations on server side, interactions with users, or access to databases.

Similar presentations

Ads by Google