Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Magento Extensions Development
  • Table Of Contents Toc
  • Feedback & Rating feedback
Magento Extensions Development

Magento Extensions Development

By : Bouchet
Buy this Book
close
close
Magento Extensions Development

Magento Extensions Development

By: Bouchet
Buy this Book

Overview of this book

Magento has been revealed as the best and the most popular open source e-commerce platform in the world, with about 250k+ online stores. Magento 2 is the most recent version of this awesome toolset: every new and modern development techniques are used to offer a real modular approach and powerful architecture. The book will support you in the writing of innovative and complex extensions. Starting from the beginning, we will cover how to set up a development environment that allows you to be really efficient in your functionality writing, including GIT registering and many other development tools. We then move on to provide a large overview of the best practices to scale your module in a high-load environment. After these foundations, you will see how to use test driven-development (TDD) and unit tests to handle your code. We then build a complex extension together, step by step, and internationally-ready. Next, you will find out how to protect the users’ data. Finally, we will take a look a publishing the extension on the new Magento Connect marketplace and how to protect your intellectual property. After you read this book, you will know everything you need to know to become an invaluable extension editor, whether it is for your customers’ needs or for your own requirements.
Table of Contents (11 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Lock Free Chapter
1
1. Introduction to Extension Development
Icon
1. Introduction to Extension Development
Icon
Getting started
Icon
Creating an extension
Icon
Managing our work with Git source control
Icon
Registering dependencies
Icon
Designing TicketBlaster – the backend
Icon
Summary
2
2. Deeper Extension Development
Icon
2. Deeper Extension Development
Icon
Creating the backend forms to manage events
Icon
Designing the TicketBlaster module's frontend
Icon
Summary
3
3. Best Practices and Scaling for the Web
Icon
3. Best Practices and Scaling for the Web
Icon
Creating a new product type
Icon
Designing our extension for speed
Icon
Summary
4
4. Magento and Test-driven Development
Icon
4. Magento and Test-driven Development
Icon
Why perform testing in Magento?
Icon
Testing in Magento
Icon
Writing a timed checkout
Icon
Summary
5
5. Internationalization
Icon
5. Internationalization
Icon
The EAV approach
Icon
Store relation table
Icon
Differentiating the guests and registered users' interface
Icon
Translation of template interface texts
Icon
Summary
6
6. Optimizing for Speed and Measuring Conversion Rates
Icon
6. Optimizing for Speed and Measuring Conversion Rates
Icon
Performance indicators
Icon
Slow websites are not SEO-friendly
Icon
Best practices
Icon
How to measure your speed optimization
Icon
Summary
7
7. Module Creation Etiquette
chevron up
Icon
7. Module Creation Etiquette
Icon
The possible attacks
Icon
The Payment Card Industry Data Security Standard
Icon
Developing your own payment method
Icon
Software considerations
Icon
Stay tuned
Icon
Summary
8
8. Optimization for Teamwork Development
Icon
8. Optimization for Teamwork Development
Icon
Version control and code management
Icon
Project management methodology
Icon
Communicating in a developer team
Icon
Summary
9
9. Magento Marketplace
Icon
9. Magento Marketplace
Icon
The new Connect is called Marketplace
Icon
Selling extensions by ourselves
Icon
Summary
10
Index
Icon
Index

The possible attacks

In order to know how to prevent and fix vulnerabilities, we have to know the possible attacks your extension can undergo.

SQL injection

This is the most common attack and maybe the easiest to perform against a website that is not protected. The malicious user enters SQL statements in form fields in order to modify the way your script works.

SQL injection

Magento worked hard on this point, and it is fully equipped to permit you to secure all your forms and databases requests.

Here is an example of the Magento\Customer\Model\ResourceModel\Customer::_beforeSave() method. We can see that the email parameter isn't written directly in the request, but it is declared as something like a variable:

$bind = ['email' => $customer->getEmail()];
$select = $connection->select()->from(
            $this->getEntityTable(),
            [$this->getEntityIdField()]
        )->where(
            'email = :email'
        );
$result = $connection->fetchOne...
Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Magento Extensions Development
End of Section 7
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon