Difference: 1. Laravel needs to add "@csrf" to the form when submitting the form to prevent cross-domain attacks, but tp does not need to be added; 2. Laravel uses "Db::operation('native sql' )" for native query, while tp uses "Db::query('native sql')" for native query.
The operating environment of this tutorial: Windows 10 system, Laravel 6 version, DELL G3 computer.
1. The difference between TP5 and Laravel framework
Difference:
1. The way to submit data, Laravel needs to add @csrf or {undefined{ csrf_token() } to the form when submitting the form. } to prevent cross-domain attacks, while TP does not.
2. Routing, Laravel must be defined first before using it. The routing file is routes.php. After TP turns on routing in the configuration file, the routing format is: 'Routing expression' => 'Routing address and Parameters' (the prerequisite for using routing is that the URL supports phthinfo and routing is enabled), routing can make the URL more in line with SEO.
3. Middleware, Laravel's middleware, middleware is the layer that HTTP requests pass through before reaching it. Through middleware, we can verify whether the user is logged in and other common operations.
4. To operate the database, you can use instantiation (create the corresponding model class) and DB:table ('table name') to operate the database. It is not the same when using native queries. Laravel uses Db ::Operation ('native sql'), TP uses Db::query ('native sql');
5. Laravel upgrade is very simple, while upgrading large versions of TP requires refactoring the code.
6. Differences in the way of writing conditional judgment statements:
If else judgment statements and foreach statements in the Laravel framework must start with @if and end with @endif. If not, a syntax error will be reported. ,@foreach @endforeach is the same;
The TP framework is consistent with the use of PHP grammar rules, direct ifesle statement judgment and foreach loop traversal
2. CSRF protection
CSRF cross-site request forgery (Cross-Site Request Forgery), like XSS attacks, has huge harm,
Defense against CSRF attacks:
There are currently three main strategies to defend against CSRF attacks: verify the HTTP Referer field; add token to the request address and verify it; customize attributes in the HTTP header and verify it.
[Related recommendations: laravel video tutorial]
The above is the detailed content of What is the difference between tp5 and laravel. For more information, please follow other related articles on the PHP Chinese website!