Server-Side Final

If a table contains a 9-digit varchar field, ssn for Social Security numbers, what would be the correct SQL to format it like this: 123-45-6789?

"SELECT CONCAT(SUBSTR(ssn,1,3), '-', SUBSTR(ssn,4,2), '-', SUBSTR(ssn,6,4)) FROM 'runner'"

Which global array holds information such as the file name of the currently executing script?

$_SERVER[ 'PHP_SELF']

Which of the following are valid comment markers available in PHP?

- // - /* and */ - / and /

In a client/server communication, which statement is correct for the server?

- A server always waits for a request from one of the clients. - A server may communicate with other servers to serve a client request. - A server serves clients' requests, and then replies with requested data to the clients. - A server is a source that sends requests to clients to get users' needed data.

Which of the following statements are true about AJAX?

- AJAX is a group of inter-related Web development techniques used to get data asynchronously from a server. - AJAX allows data to be sent in the background while the user views a page. - AJAX can involve CSS, JavaScript, HTML, and the DOM.

As a data format, what does JSON accomplish?

- Allows fast communication between a client (browser) and a server - Is language-independent (any operating system can use it) - Is human-readable and a computer can easily parse it

Which of the following are important steps in prototyping?

- Begin every prototype session with a disclaimer that it is a mockup, not the actual solution. - Reuse, reuse, reuse. Save reusable templates, stencils, patterns, and widgets for other projects. - It is a collaborative process. Ask for feedback often.

Which of the following are benefits of prototyping?

- Being able to perform user testing early in the design process before writing code - Being able to experiment with several variations quickly - Being able to iterate more quickly through a design concept - Getting valuable feedback from the client, users, and other stakeholders - Having a visual guide to the finished product as you code - Being able to find design issues early before writing code

Which of the following are examples of the DRY principle?

- Constants are used for repetitive values and strings that don't change in the program. - Repeating code is encapsulated using functions.

Why is it important that a connection always be open before a stored procedure is executed and then closed as soon as the procedure is finished?

- Database connections are expensive resources. Every connection should be closed as soon as possible to make these resources available to other programs using the same database. - Once a connection uses a stored procedure, a call to a plain SQL statement could give a run-time error.

Which of the following SQL keywords will give the same result set?

- INNER JOIN - JOIN

Which of the following parameters can a stored procedure use to return information?

- INOUT -OUT

What are the benefits of collaboration when developing a software application?

- Improvements can be incorporated during the development process. - The result is often better than if developers worked individually. - The group can take advantage of each member's individual strengths.

When communicating with another person, the most effective ways to show you are actively listening is to __________________.

- Keep your arms open and relaxed - Use a relaxed posture without slouching

What are the advantages of using a prepared statement?

- Prepared statements protect against SQL injection by separating user input from the SQL statement. - A prepared statement is not just a SQL statement, but a SQL statement that has been compiled, making it more efficient. - They can be used repeatedly and, because they are precompiled, there is no performance penalty. - Prepared statements protect against SQL injection by validating user input using data typing.

How does a prepared statement help prevent SQL injection?

- Prepared statements utilize data types to ensure the values used in a SQL statement are valid. - Prepared statements separate the data from the business rules.

Which tools can a developer use to monitor an AJAX action while a Web page is running?

- The AJAX tab in the browser's developer tools - The "Network" tab in the browser's developer tools

When a Web page containing PHP code is viewed in the browser and the code displays, what is causing the error?

- The file was opened directly in the browser and a Web server did not process the code. - The Web server is not running.

What are the benefits of using stored procedures?

- They increase the performance of applications. - They reduce traffic between the application and the database. - They are reusable and transparent to any application, exposing the database interface to all applications. - They are secure because DBAs can grant appropriate permissions.

Which of the following tools could a developer use to create a page containing JSON data that other applications could read?

- Using data from a Web form and using PHP to create the JSON data - Hard-coding data in a file stored on a Web server - Using PHP and SQL to extract data from a database and formatting it as JSON data

Which of the following techniques can be used to store a procedure in a database using phpMyAdmin?

- Using the More/Routines tab and filling out the form with the correct information - Using the SQL tab to type in the SQL statement, creating the stored procedure

Which data types can prepared statements check for?

- VARCHAR - DATE - TEXT - FLOAT - BLOB - INT

In a client/server communication, which statements are correct for the client? (Choose all that are applicable)

- Waits for replies - Usually connects to a small number of servers at one time - Always initiates requests to servers - Receives replies - Usually interacts directly with end users using any user interface, such as graphical user interface

If you have an array of items on a page and want the server to calculate how many items are in the list, what would be an appropriate PHP technique to use?

- You could add the count( ) of the array as part of the URL. - You could use the count( ) of the array as the value of a hidden field on the form, which the server could read after it received the request.

Which data types are available using JSON?

- array - numbers - boolean - strings

When working with a PHP object such as a database connection, what operator is used to access properties and functions that are available with that object?

-> For example: $conn->select_db(DATABASE_NAME);

What is the correct command line code to create a backup from a table named customer using the AMPPS userID and password?

./mysqldump --opt -uroot -pmysql customer > customerBackup.sql

Which of the following databases allow stored procedures?

1. Oracle 2. Microsoft SQL Server 3. MySQL 4. Microsoft Access

Put the steps used to render a PHP page in the correct order.

1. The browser requests the page from the server. 2. The server runs the PHP code in that file to create HTML. 3. When necessary, the server adds data-driven content. 4. The page is delivered to the user. 5. As the page displays, the browser runs any JavaScript code.

What four layers make up most server-side software applications?

1. The database layer 2. The client or browser layer 3. The business rules or code layer 4. The Web server layer

The following snippets can be combined to save data to a session variable. Identify the correct order of the snippets in the final command: $___1__[__2___] = __3___[__4___(__5___));

1. _SESSION 2. 'svMyCollection' 3. urlencode 4. serialize 5. $myCollection

When the user clicks on a link, a request is sent to the server. Organize the following steps in the correct processing order:

1. creating new HTML markup. 2. The HTML page is sent to the browser. 3. The browser parses through the Web page. 4. The browser stores CSS style rules and JavaScript functions in memory. 5. functions as they are called, and utilizing the CSS rules appropriately.

Learning to spot emblems is the sign of a good listener. What is an emblem?

A gesture that is equivalent to words, such as clenched hands

You are working on a team for a large retail corporation. What type of development environment will you most likely be working in?

A multistage environment would include a localhost, a development system, a test system, a final test system, and the live server.

When writing MySQL statements on the command line, what character is necessary to make the statement run?

A semicolon (;)

Which of the following symbolizes the best way for modern developers to develop an application?

A series of interconnected loops

What is SQL injection?

A series of techniques hackers use to gain access to a database

Information stored in the $_POST[ ] global array on a PHP server is collected from ____________.

An HTML form with the method=" " attribute set to POST

What is the primary purpose of using aliases to refer to tables in a SQL statement?

An alias creates a shorthand reference to a longer table name.

Your client has discovered a critical typo in the content of a Web page. What is the best way to fix the error in a two-tiered development environment?

Correct the mistake on your localhost computer and then upload a copy of the corrected file to the live server.

PHP can extract data from a database using SQL. Once that data is extracted, what is the correct way to convert it into JSON data?

Create an array from the data object returned from the SQL query( ) and echo the results of json_encode( ) using the array.

Which of the following SQL statements would be used to display the metadata about an existing table named table1?

DESCRIBE table1;

What is the correct SQL syntax to remove a table named tempList from a database?

DROP TABLE tempList

What is the correct process to update an existing stored procedure from the command line?

Delete or drop the existing stored procedure and add the revised stored procedure to the database

True or false: Paying attention to detail is important when prototyping. Attempt to make the prototype as close to the finished application as you can.

False

True or false: Stored procedures and prepared statements are the same thing.

False

True or false: Stored procedures can only be managed via the MySQL command line interface.

False

In regard to prototyping, what does the term "fidelity" mean?

How closely the prototype resembles the final solution

Based on the readings, when working with stored procedures, which option uses the same parameter to pass in information and return a response to the calling application?

INOUT

Which SQL string is correct for a prepared statement?

INSERT INTO PRODUCT (name, price) VALUES (?, ?)

Where does a stored procedure reside?

Inside a database

What does the server status 200 signify?

It is a successful response to the browser's original request.

Consider the following SQL statement: SELECT * FROM table1 a JOIN table2 b ON a.id=b.id; What is the function of the letter a in this statement?

It references table1 with less code.

Hackers often add a single quote at the end of a URL causing an error message. Why is this error message useful?

It tells the hacker the site is most likely not protected from SQL injection techniques.

What is the best way to comment JSON-formatted data?

JSON does not provide or allow any sort of comment syntax.

What is the most valuable skill to bring to a meeting with a client?

Listening Skills

What SQL keyword(s) is used to sort the result set?

ORDER BY

A table named user has this metadata: user_id int(11) PRIMARY KEY AUTO_INCREMT user_name varchar(30) email varchar(100) create_date date What data will be stored in the create_date field when the follwing SQL statments run? INSERT INTO user SET create_date = NOW( ), user_name = 'batman', email = '[email protected]'

Only the date information will be stored without a time stamp.

Which of the following is an advantage of using a JSON server?

Other programs can get access to live data without accessing the database directly.

Which of the following statements is true concerning PHP variables?

PHP variables can be inserted inside JavaScript statements.

What term does phpMyAdmin use to refer to stored procedures?

Routines

When setting up a connection using PHP and any database, what is the best SQL statement to use for testing the connection?

SELECT * FROM myTable

In the command line code: ./mysql -uroot -pmysql sunRun2 < sunRunBackup.sql what does the < operator symbolize?

Standard input

What function is used to pause AJAX requests to the server for a specific period of time?

The JavaScript function setTimeout( )

What is the purpose of the SQL statement DROP DATABASE myTestDBF?

The command deletes the database named myTestDBF and all its tables and data.

According to Jared Spool from User Interface Engineering, what are three dimensions or perspectives that developers should consider when working on a design?

The technology, the users' experience, and how the design fits into the business requirements

True or False: A text box on a Web page form can be a doorway for hackers.

True

If you have a table with 100,000+ records, what is the fastest way to remove all the records while keeping the metadata intact?

Truncate the table.

You have created a Web page allowing a human resources person to input a job description that is saved in a database. The new director knows a little about HTML and inputs the following in the job description text box. <h1>Office Manager</h1> Able to work well with others <strong>and</strong> likes solving puzzles. What can you do to ignore the heading tag while allowing the <strong> tags when the description is displayed on the HR website? (The information is stored in a variable named $txtDescription.)

Use htmlentities($txtDescription, "<strong>" )

A login screen is expecting a user and password to be used in this SQL statement: SELECT * FROM userTable WHERE user='Johnny' AND password= ''; However, a hacker adds OR ''=' on the end, making it possible for anyone to log in without a valid password. Thus, the SQL statement looks like this: SELECT * FROM userTable WHERE user='Johnny' AND password= '' OR ''=' What can you do to protect this from happening with your login screens?

Use mysqli_real_escape_string( ).

A program uses input from a text box. How would you "sanitize" it to disable any unwanted characters?

Use mysqli_real_escape_string( ).

What PHP skill is the most useful in leveraging the principle of DRY?

Writing functions

What keyword is used on the MySQL command line to run a stored procedure?

call [theNameOfTheProcedure];

Select the appropriate pair of answers: In client/server architecture, the _____ always initiates a connection to the server, whereas the ____ always waits for requests from any client.

client process, server process

What PHP function can programmers use to output information?

echo

If a table has a 10-digit phone number field, with $phoneNumber as a varchar, what is the correct way to format it so it looks like (123) 456-7890 using PHP?

echo "(" . substr($phoneNumber,0,3) . ") " . substr($phoneNumber,3,3) . "-" . substr($phoneNumber,6,4);

Which line of code will correctly display the contents of the fourth row and second column from a two-dimensional array named $groceryList?

echo $groceryList[3][1];

Which PHP function can redirect a page to another website?

header ( )

Which of the following is the correct URL to view a PHP page in a browser using a localhost server?

http://localhost/myTestFile.php

If you have an AJAX object named httpReq, what line of code is used to send a request with data to the server?

httpReq.send("fname=" + userName);

A Web form contains a text box that is expecting a year. What is the most appropriate function or technique to validate that the user's input includes only numbers?

is_numeric( )

Which PHP function displays a table showing server settings and parameters?

phpinfo( )

What is the correct code for inserting functions from an external PHP file?

require_once(getcwd( ) . "/sunRunLib.php;

What command do programmers use to display all the stored procedures from the MySQL command line?

show procedure status;

User input is stored in a database. You plan to display this data on a Web page and you do not want any HTML elements to mess up the display. How will you control the HTML output?

strip_tags( )

Comments from a blog post are stored in a table. You want to display the comments, stored in the variable $userComment, allowing the user to use HTML codes for bold text, paragraphs, and line breaks. What is the most appropriate code to use?

strip_tags($userComment, "<strong><p><br>");

Which is the correct syntax for a PHP switch statement?

switch($_POST['btnSubmit']) { case 'delete': echo "DEBUG DELETE button pushed. \$fname = $fName <br />'; break; case 'new': echo "DEBUG ADD button pushed. <br />'; break; case 'update': echo "UPDATE button pushed. <br />'; break; }

Which attribute can add an automatic tooltip to an HTML hyperlink?

title=" "

Which line of code correctly creates a new AJAX object named thisRequest?

var thisRequest = new XMLHttpRequest();