gprochnicki/php_sandbox

Simple sandbox for php code.

PHP Sandbox

Simple and usefull tool to execute custom php scripts. It allows to block specified function to increase security.

Screenshot

Installation

Clone that repository wherever you want (in my example /www/php_sandbox)

$ cd /www
$ git clone git@github.com:plugowski/php_sandbox.git 

and load all dependencies:

composer update --no-dev

Create entry in /etc/hosts for example:

sudo echo "127.0.0.1  phpsandbox.lc" >> /etc/hosts

Add new vhost configuration in your apache:

<VirtualHost *:80>
    DocumentRoot /www/php_sandbox/webroot
    ServerName phpsandbox.lc
    <Directory "/www/php_sandbox/webroot">
        AllowOverride All
        Order Allow,Deny
        Allow From All
    </Directory>
</VirtualHost>

Restart Apache, and Voila!

Configuration

You can change blocked function list or add/change more directives for php evaluator. To do that, open src/config.php and change settings you want.

It is possible to define multiple versions of PHP which will be available from sandbox. So first please install required versions of php on your machine (MacPorts, apt-get etc):

sudo port install php53
sudo port install php54
sudo port install php55
sudo port install php56
sudo port install php70

Then update php_commands in config file:

'php_commands' => [
    '5.3' => '/opt/local/bin/php53',
    '5.4' => '/opt/local/bin/php54',
    '5.5' => '/opt/local/bin/php55',
    '5.6' => '/opt/local/bin/php56',
    '7.0' => '/opt/local/bin/php70'
]

Usage

Just type some code and push Evaluate button or use keyboard shortcut on Mac Command+Enter or Ctrl+Enter on Windows. More shortcuts you can find here.

Changed shortcuts by me:

Windows	Mac	Action
Ctrl-Enter	Commantd-Enter	Execute code
Ctrl-S	Command-S	Execute code
Alt-Shift-Up	Option-Shift-Up	Move lines up
Alt-Shift-Down	Option-Shift-Down	Move lines down
Ctrl-D	Command-D	Copy line
Ctrl-Shift-L	Command-Shift-L	Show sidebar
Ctrl-Shift-S	Command-Shift-S	Save Snippet
Ctrl-Shift-P	Command-Shift-P	Add Library / Package

Changelog

• 1.3
  • added library manager, now you are able to add external libraries from packagist, and use it in sandbox directly
• 1.2
  • fixed counting of memory used by script (now it is counting only for evaluated script without extra stuff from bootstrap)
  • added new PhpStorm shortcut
  • changed routing from FatFree to my own (FatFree fired couple ini_sets which might conflict with security settings, where ini_set() function will be disabled)
  • added snippets, which you can save and load in any time
  • added possibility to switch between couple of php versions
• 1.1
  • added Kint debug tool for dumping varialbles
  • refactored Config class
• 1.0
  • Initial release
  • visual editor based on ace
  • simple benchmarking (count memory usage, memory peak and execution time)
  • "last load" option

Licence

That code is licenced under New BSD License.

Credits

To build that tool I used:

• Kint - http://raveren.github.io/kint/
• Ace Editor - https://ace.c9.io/
• Bootstrap - https://getbootstrap.com/
• FontAwesome - http://fortawesome.github.io/Font-Awesome/
• jQuery - https://jquery.com/