!IMPORTANT: this is an experimental version not to be used for production development
This http-based framework implements the Dispatcher pattern (more info from Oracle Java) and can be configured as a front-controller or delegate the request to an application. Suitable for REST API services or monolithic server-side rendering.
- Filters, register custom Http Filter
- Interceptors, register custom http interceptors
- Negotiation, validate request content
- Localization, use POEDIT to translate strings or add new languages. (Note: required enable php extensions
gettext,intl,mbstringmore info) - Powerful configuration using D.I., registering a custom application to handle specific endpoint requests or simply using front-controllers (best for api)
- DI - dependency injection
- Service Locator see \Core\Utils\ObjectStorage
- Singleton only used for see \Core\Boot\Registry, no other class uses singleton
PHP >= 8.2
Note: if using Apache enabled mod_rewrite
Enabled PHP extensions
- filter
- gettext
- iconv
- intl
- json
- mbstring
- reflection
- spl
case study: dispatcher as front controller without proxy application
case study: dispatcher as proxy using application
For better security setup, add the following http response headers more info edit .htaccess if using Apache or default.config on Nginx, or use \Core\Http\Response::setHeader method in your controller
X-Frame-Options: SAMEORIGINX-XSS-Protection: "1; mode=block"X-Content-Type-Options: nosniffReferrer-Policy: strict-origin-when-cross-origin
Debugging enabled local development only
Hide sensitive information in http requests/response
Hide file path information in http requests/responses
Always validate/escape user input of requests
Do not allow direct access to files and folders