Magento – Using custom Environment Variables for sensitive database info

local.xmlmagento-1.8

I know Magento stores the database connection details within the 'local.xml' file, however our firm is trying to avoid passwords and other sensitive data being stored within our git repo's for security purposes.

I know you can create Environment Variables easily via an .htaccess file, but I'm hoping to find a workable solution that will enable me to set this database information dynamically from a environment variable.

As the local.xml is an XML file and as this is a non dynamic/server-side filetype we cannot use it to read environment variables.

Would there be a way to somehow add in some hook/custom behaviour to Magento in which I could replace the local.xml with a PHP file that will allow me to pull in these environment variables?

So in a sense, the local.XML would become a local.PHP file with the ability to read my own custom environment variables such 'DB_HOST', 'DB_USERNAME', 'DB_PASSWORD' rather than having them already set in the xml file as 'localhost', 'root', 'password123' etc..

Any ideas on how best to achieve this, or are there any existing Magento add-ons/extensions/mods that will allow me to do this?

Best Answer

Do you have a deployment? Just create the local.xml with your deployment, where ever the data in it comes from.

Btw, local.xml shouldn't be stored in git, with or without db data :-)

Related Solutions

Magento – How to update product price on a multi website environment using API (different price for different website)

Updating the price on a specific website level unfortunately can't be done with the catalog_product.update API method.

Looking at your example. All the changes you define in the array are the actual changes being made to the product attributes. So in this case the product-website relation will be adjusted. The 'websites' parameter does not mean the other attributes are only updated for the given websites.

The only way to adjust data on a specific level can be done by passing in an additional parameter for the storeview. Like below, in this case the '2' as the last parameter stands for the storeview with ID 2.

$result = $client->call($session, 'catalog_product.update', array('33', array(
    'short_description' => 'Product short description 2',
    'meta_description' => 'Product meta description 2',
    'price' => '100',
), '2'));

Unfortunately though price is a website level attribute. I hoped that it would automatically echo the defined price attribute value to the website level, but instead the values is updated directly on the global level.

So in short, it does not look like you can adjust prices on a website level via the API. You will need to create a custom API for it. Either that, or I'm accidentally overlooking something in the Core API documentation. http://www.magentocommerce.com/api/soap/catalog/catalogProduct/catalog_product.update.html

By the looks of it there is a different API call for the setting special prices. Not something you asked for, but perhaps you can use it to copy/create your custom API method for setting the regular price. http://www.magentocommerce.com/api/soap/catalog/catalogProduct/catalog_product.setSpecialPrice.html

Do mind that this API method for specialPrice suffers the exact same issue regarding updating the price to the global level.

Hopefully this makes it all a bit more transparant for you. Unfortunately you will need to write some custom API code to reach your goal. The following page is a good start for that: http://www.magentocommerce.com/api/soap/create_your_own_api.html

Magento 1.8 – How to Get Order Info Using SOAP API

Simple error. You are using the wrong variable in SalesOrderInfo.

Your current code

Notice: That you set the session Id to $session, but then use $sessionId in salesOrderInfo.

<?php

$proxy = new SoapClient('http://www.mydomain.com/index.php/api/v2_soap?wsdl=1');

$session = $proxy->login('user', 'password'); // connect to the API

$result = $client->salesOrderInfo($sessionId, '100000064');
var_dump($result);

Edit: Another error. $client should be $proxy

Try the following code. This worked for me! Just add your url, and api username and password.

<?php

 $proxy = new SoapClient('http://www.mydomain.com/api/v2_soap/?wsdl'); 

 $session = $proxy->login('user', 'password'); 

 $result = $proxy->salesOrderInfo($session, '100000064');

 var_dump($result);

Best Answer

Related Solutions

Magento – How to update product price on a multi website environment using API (different price for different website)

Magento 1.8 – How to Get Order Info Using SOAP API

Related Topic