{"id":49008,"date":"2024-12-02T17:00:32","date_gmt":"2024-12-02T09:00:32","guid":{"rendered":"https:\/\/fwq.ai\/blog\/49008\/"},"modified":"2024-12-02T17:00:32","modified_gmt":"2024-12-02T09:00:32","slug":"%e4%bf%9d%e6%8a%a4%e6%82%a8%e7%9a%84-php-%e5%ba%94%e7%94%a8%e7%a8%8b%e5%ba%8f%e5%85%8d%e5%8f%97%e5%b8%b8%e8%a7%81%e6%bc%8f%e6%b4%9e%e5%bd%b1%e5%93%8d%e7%9a%84%e5%9f%ba%e6%9c%ac%e5%ae%89%e5%85%a8","status":"publish","type":"post","link":"https:\/\/fwq.ai\/blog\/49008\/","title":{"rendered":"\u4fdd\u62a4\u60a8\u7684 PHP \u5e94\u7528\u7a0b\u5e8f\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u5f71\u54cd\u7684\u57fa\u672c\u5b89\u5168\u5b9e\u8df5"},"content":{"rendered":"

<\/b> <\/p>\n

\u4fdd\u62a4\u60a8\u7684 PHP \u5e94\u7528\u7a0b\u5e8f\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u5f71\u54cd\u7684\u57fa\u672c\u5b89\u5168\u5b9e\u8df5<\/h1>\n

<\/i>\u6536\u85cf<\/span> <\/p>\n

\u4ece\u73b0\u5728\u5f00\u59cb\uff0c\u52aa\u529b\u5b66\u4e60\u5427\uff01\u672c\u6587\u300a\u4fdd\u62a4\u60a8\u7684 PHP \u5e94\u7528\u7a0b\u5e8f\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u5f71\u54cd\u7684\u57fa\u672c\u5b89\u5168\u5b9e\u8df5\u300b<\/span>\u4e3b\u8981\u8bb2\u89e3\u4e86<\/span>\u7b49\u7b49\u76f8\u5173\u77e5\u8bc6\u70b9\uff0c\u6211\u4f1a\u5728\u7c73\u4e91\u4e2d\u6301\u7eed\u66f4\u65b0\u76f8\u5173\u7684\u7cfb\u5217\u6587\u7ae0\uff0c\u6b22\u8fce\u5927\u5bb6\u5173\u6ce8\u5e76\u79ef\u6781\u7559\u8a00\u5efa\u8bae\u3002\u4e0b\u9762\u5c31\u5148\u4e00\u8d77\u6765\u770b\u4e00\u4e0b\u672c\u7bc7\u6b63\u6587\u5185\u5bb9\u5427\uff0c\u5e0c\u671b\u80fd\u5e2e\u5230\u4f60\uff01<\/p>\n

\"\u4fdd\u62a4\u60a8\u7684<\/p>\n

\u4fdd\u62a4\u60a8\u7684 php \u5e94\u7528\u7a0b\u5e8f\u6d89\u53ca\u4fdd\u62a4\u5176\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u7684\u5f71\u54cd\uff0c\u4f8b\u5982 sql \u6ce8\u5165\u3001\u8de8\u7ad9\u70b9\u811a\u672c (xss)\u3001\u8de8\u7ad9\u70b9\u8bf7\u6c42\u4f2a\u9020 (csrf)\u3001\u4f1a\u8bdd\u52ab\u6301\u548c\u6587\u4ef6\u5305\u542b\u653b\u51fb\u3002\u8fd9\u662f\u4e00\u4e2a\u5e26\u6709\u9010\u90e8\u5206\u63cf\u8ff0\u7684\u5b9e\u8df5\u793a\u4f8b\uff0c\u53ef\u5e2e\u52a9\u60a8\u4e86\u89e3\u5982\u4f55\u4fdd\u62a4 php \u5e94\u7528\u7a0b\u5e8f\u3002<\/p>\n

1. \u9632\u6b62sql\u6ce8\u5165<\/strong> <\/h3>\n

\u5f53\u653b\u51fb\u8005\u53ef\u4ee5\u5c06\u6076\u610f sql \u8bed\u53e5\u6ce8\u5165\u60a8\u7684\u67e5\u8be2\u65f6\uff0c\u5c31\u4f1a\u53d1\u751f sql \u6ce8\u5165\u3002\u5c06\u51c6\u5907\u597d\u7684\u8bed\u53e5<\/strong>\u4e0e\u53c2\u6570\u5316\u67e5\u8be2\u4e00\u8d77\u4f7f\u7528\u53ef\u4ee5\u907f\u514d\u8fd9\u79cd\u60c5\u51b5\u3002<\/p>\n

\u793a\u4f8b<\/strong>\uff1a<\/p>\n

<?php\n\/\/ insecure version\n$user_id = $_get['id'];\n$query = \"select * from users where id = '$user_id'\";\n$result = mysqli_query($connection, $query);\n\n\/\/ secure version\n$user_id = $_get['id'];\n$stmt = $connection->prepare(\"select * from users where id = ?\");\n$stmt->bind_param(\"i\", $user_id);  \/\/ \"i\" for integer\n$stmt->execute();\n$result = $stmt->get_result();\n?>\n<\/pre>\n
\u8bf4\u660e<\/strong>\uff1a<\/p>\n
    \n
  • \u51c6\u5907\u597d\u7684\u8bed\u53e5\u5c06 sql \u67e5\u8be2\u4e0e\u6570\u636e\u5206\u5f00\uff0c\u9632\u6b62\u6076\u610f\u4ee3\u7801\u6ce8\u5165\u3002<\/li>\n
  •  bind_param \u5c06 $user_id \u7ed1\u5b9a\u5230 sql \u8bed\u53e5\uff0c\u4e0d\u5141\u8bb8\u76f4\u63a5\u8f93\u5165\u4fee\u6539\u67e5\u8be2\u7ed3\u6784\u3002<\/li>\n<\/ul>\n
     2. \u9632\u6b62\u8de8\u7ad9\u811a\u672c\uff08xss\uff09<\/strong> <\/h3>\n
    \u5f53\u653b\u51fb\u8005\u5c06\u6076\u610f\u811a\u672c\u6ce8\u5165\u5176\u4ed6\u7528\u6237\u67e5\u770b\u7684\u7f51\u9875\u65f6\uff0c\u5c31\u4f1a\u53d1\u751f xss\u3002\u4e3a\u4e86\u907f\u514d\u8fd9\u79cd\u60c5\u51b5\uff0c\u8bf7\u59cb\u7ec8\u5bf9\u8f93\u51fa\u8fdb\u884c\u6e05\u7406\u548c\u7f16\u7801<\/strong>\u3002<\/p>\n
    \u793a\u4f8b<\/strong>\uff1a<\/p>\n
    <?php\n\/\/ insecure version\necho \"<p>welcome, \" . $_get['username'] . \"<\/p>\";\n\n\/\/ secure version\necho \"<p>welcome, \" . htmlspecialchars($_get['username'], ent_quotes, 'utf-8') . \"<\/p>\";\n?>\n<\/pre>\n
    \u8bf4\u660e<\/strong>\uff1a<\/p>\n
      \n
    •  htmlspecialchars \u5c06\u7279\u6b8a\u5b57\u7b26\uff08\u5982 < \u548c >\uff09\u8f6c\u6362\u4e3a html \u5b9e\u4f53\uff0c\u4e2d\u548c\u7528\u6237\u8f93\u5165\u4e2d\u5d4c\u5165\u7684\u4efb\u4f55\u811a\u672c\u3002<\/li>\n
    •  ent_quotes \u8f6c\u4e49\u5355\u5f15\u53f7\u548c\u53cc\u5f15\u53f7\uff0c\u4f7f html \u5c5e\u6027\u4e2d\u7684\u8f93\u51fa\u66f4\u5b89\u5168\u3002<\/li>\n<\/ul>\n
       3. \u9632\u6b62\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\uff08csrf\uff09<\/strong> <\/h3>\n
      \u5f53\u653b\u51fb\u8005\u8bf1\u9a97\u7528\u6237\u5728\u7528\u6237\u4e0d\u77e5\u60c5\u7684\u60c5\u51b5\u4e0b\u5728\u7f51\u7ad9\u4e0a\u6267\u884c\u64cd\u4f5c\u65f6\uff0c\u5c31\u4f1a\u53d1\u751f csrf\u3002\u901a\u8fc7\u4f7f\u7528\u4ee4\u724c<\/strong>\u6765\u9632\u6b62csrf\u3002<\/p>\n
      \u793a\u4f8b<\/strong>\uff1a<\/p>\n
      <?php\n\/\/ generate csrf token\nsession_start();\nif (empty($_session['csrf_token'])) {\n    $_session['csrf_token'] = bin2hex(random_bytes(32));\n}\n\n\/\/ add token to form\necho '<form method=\"post\" action=\"submit.php\">';\necho '<input type=\"hidden\" name=\"csrf_token\" value=\"' . $_session['csrf_token'] . '\">';\necho '<input type=\"text\" name=\"data\">';\necho '<input type=\"submit\" value=\"submit\">';\necho '<\/form>';\n?>\n<\/pre>\n
      \u5728submit.php<\/strong>\u4e2d\uff1a<\/p>\n
      <?php\nsession_start();\nif ($_post['csrf_token'] !== $_session['csrf_token']) {\n    die(\"csrf token validation failed.\");\n}\n\n\/\/ process form data\n$data = $_post['data'];\n?>\n<\/pre>\n
      \u8bf4\u660e<\/strong>\uff1a<\/p>\n
        \n
      • \u6bcf\u4e2a\u4f1a\u8bdd\u90fd\u4f1a\u751f\u6210\u4e00\u4e2a\u552f\u4e00\u7684 csrf \u4ee4\u724c\uff0c\u5e76\u4f5c\u4e3a\u9690\u85cf\u5b57\u6bb5\u6dfb\u52a0\u5230\u8868\u5355\u4e2d\u3002<\/li>\n
      • \u63d0\u4ea4\u8868\u5355\u65f6\uff0c\u5c06\u68c0\u67e5\u4ee4\u724c\u3002\u5982\u679c\u4e0e\u5b58\u50a8\u7684\u4f1a\u8bdd\u4ee4\u724c\u4e0d\u5339\u914d\uff0c\u5219\u8bf7\u6c42\u5c06\u88ab\u62d2\u7edd\u3002<\/li>\n<\/ul>\n
         4. \u9632\u6b62\u4f1a\u8bdd\u52ab\u6301<\/strong> <\/h3>\n
        \u4fdd\u62a4\u60a8\u7684\u4f1a\u8bdd\u4ee5\u907f\u514d\u4f1a\u8bdd\u52ab\u6301\u3002\u8fd9\u5305\u62ec\u8bbe\u7f6e\u4e25\u683c\u7684\u4f1a\u8bdd\u914d\u7f6e<\/strong>\u548c\u91cd\u65b0\u751f\u6210\u4f1a\u8bddid<\/strong>\u3002<\/p>\n
        \u793a\u4f8b<\/strong>\uff1a<\/p>\n
        <?php\nsession_start();\n\n\/\/ regenerate session id to avoid fixation attacks\nsession_regenerate_id(true);\n\n\/\/ configure secure session parameters\nini_set('session.cookie_httponly', 1); \/\/ prevent javascript access to session cookies\nini_set('session.cookie_secure', 1);   \/\/ ensure cookies are sent over https\nini_set('session.use_strict_mode', 1); \/\/ prevent accepting uninitialized session ids\n\n\/\/ set session timeout\n$_session['last_activity'] = time(); \/\/ update last activity time\nif (time() - $_session['last_activity'] > 1800) { \/\/ 30 minutes timeout\n    session_unset();\n    session_destroy();\n    session_start();\n}\n?>\n<\/pre>\n
        \u8bf4\u660e<\/strong>\uff1a<\/p>\n
          \n
        •  session_regenerate_id(true) \u751f\u6210\u65b0\u7684\u4f1a\u8bddid\uff0c\u964d\u4f4e\u4f1a\u8bdd\u56fa\u5b9a\u7684\u98ce\u9669\u3002<\/li>\n
        • \u8bbe\u7f6e cookie_httponly \u548c cookie_secure \u6709\u52a9\u4e8e\u901a\u8fc7\u9650\u5236 javascript \u548c\u4e0d\u5b89\u5168\uff08\u975e https\uff09\u8bbf\u95ee\u6765\u9632\u6b62 cookie \u88ab\u76d7\u3002<\/li>\n<\/ul>\n
           5. \u5b89\u5168\u6587\u4ef6\u4e0a\u4f20<\/strong> <\/h3>\n
          \u4e0d\u53d7\u9650\u5236\u7684\u6587\u4ef6\u4e0a\u4f20\u53ef\u80fd\u4f1a\u5bfc\u81f4\u6076\u610f\u6587\u4ef6\u88ab\u4e0a\u4f20\u5e76\u6267\u884c\u3002\u59cb\u7ec8\u9a8c\u8bc1\u6587\u4ef6\u7c7b\u578b<\/strong>\u5e76\u5b89\u5168\u5730\u5b58\u50a8\u5b83\u4eec<\/strong>\u3002<\/p>\n
          \u793a\u4f8b<\/strong>\uff1a<\/p>\n
          <?php\n$allowed_extensions = ['jpg', 'jpeg', 'png', 'gif'];\n$file_name = $_files['file']['name'];\n$file_extension = pathinfo($file_name, pathinfo_extension);\n\n\/\/ check file extension\nif (!in_array($file_extension, $allowed_extensions)) {\n    die(\"invalid file type.\");\n}\n\n\/\/ store in a safe location (outside web root) with a unique name\n$target_dir = \"\/var\/www\/uploads\/\";\n$target_file = $target_dir . basename($file_name);\n\nif (move_uploaded_file($_files['file']['tmp_name'], $target_file)) {\n    echo \"file uploaded successfully.\";\n} else {\n    echo \"file upload failed.\";\n}\n?>\n<\/pre>\n
          \u8bf4\u660e<\/strong>\uff1a<\/p>\n
            \n
          • \u901a\u8fc7\u6839\u636e\u5141\u8bb8\u7684\u7c7b\u578b\u6570\u7ec4\u68c0\u67e5\u6587\u4ef6\u6269\u5c55\u540d\u6765\u4ec5\u5141\u8bb8\u7279\u5b9a\u7684\u6587\u4ef6\u7c7b\u578b\u3002<\/li>\n
          • \u5c06\u6587\u4ef6\u5b58\u50a8\u5728 web \u6839\u76ee\u5f55\u4e4b\u5916\uff0c\u5e76\u4f7f\u7528 move_uploaded_file \u786e\u4fdd\u65e0\u6cd5\u901a\u8fc7\u76f4\u63a5 url \u8bbf\u95ee\u5b83\u3002<\/li>\n<\/ul>\n
             6. \u4f7f\u7528\u5185\u5bb9\u5b89\u5168\u7b56\u7565 (csp)<\/strong> <\/h3>\n
            csp \u6807\u5934\u53ef\u4ee5\u901a\u8fc7\u9650\u5236\u8d44\u6e90\u52a0\u8f7d\u4f4d\u7f6e\u6765\u5e2e\u52a9\u9632\u6b62 xss \u548c\u6570\u636e\u6ce8\u5165\u653b\u51fb\u3002<\/p>\n
            \u793a\u4f8b<\/strong>\uff08\u8981\u6dfb\u52a0\u5230 .htaccess \u6587\u4ef6\u6216\u670d\u52a1\u5668\u914d\u7f6e\u4e2d\uff09\uff1a<\/p>\n
            header set content-security-policy \"default-src 'self'; script-src 'self' 'unsafe-inline' https:\/\/trustedscripts.com\"\n<\/pre>\n
            \u8bf4\u660e<\/strong>\uff1a<\/p>\n
              \n
            • \u6b64 csp \u9650\u5236\u8d44\u6e90\u4ec5\u4ece\u540c\u6e90\uff08\u81ea\u8eab\uff09\u52a0\u8f7d\uff0c\u5e76\u4e14\u5141\u8bb8\u6765\u81ea trustscripts.com \u7684 javascript\u3002<\/li>\n
            • \u8fd9\u53ef\u4ee5\u9632\u6b62\u52a0\u8f7d\u5916\u90e8\u811a\u672c\u6216\u4e0d\u53d7\u4fe1\u4efb\u7684\u8d44\u6e90\uff0c\u4ece\u800c\u964d\u4f4e xss \u98ce\u9669\u3002<\/li>\n<\/ul>\n
               7. \u8f93\u5165\u9a8c\u8bc1\u548c\u6e05\u7406<\/strong> <\/h3>\n
              \u4f7f\u7528\u8f93\u5165\u9a8c\u8bc1\u548c\u6e05\u7406\u6765\u9632\u6b62\u5404\u79cd\u7c7b\u578b\u7684\u6ce8\u5165\u3002<\/p>\n
              \u793a\u4f8b<\/strong>\uff1a<\/p>\n
              <?php\n\/\/ Validate integer input\n$age = filter_input(INPUT_GET, 'age', FILTER_VALIDATE_INT);\n\nif ($age === false) {\n    die(\"Invalid age value.\");\n}\n\n\/\/ Sanitize string input\n$username = filter_input(INPUT_POST, 'username', FILTER_SANITIZE_STRING);\n?>\n<\/pre>\n
              \u8bf4\u660e<\/strong>\uff1a<\/p>\n
                \n
              •  filter_validate_int \u68c0\u67e5\u5e74\u9f84\u662f\u5426\u4e3a\u6709\u6548\u6574\u6570\u3002<\/li>\n
              •  filter_sanitize_string \u4ece\u7528\u6237\u540d\u4e2d\u5220\u9664\u6240\u6709 html \u6807\u7b7e\u6216\u7279\u6b8a\u5b57\u7b26\u3002<\/li>\n<\/ul>\n
                \u901a\u8fc7\u5b9e\u65bd\u8fd9\u4e9b\u65b9\u6cd5\uff0c\u60a8\u7684 php \u5e94\u7528\u7a0b\u5e8f\u5c06\u5f97\u5230\u66f4\u597d\u7684\u4fdd\u62a4\uff0c\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u7684\u5f71\u54cd\u3002\u4fdd\u6301\u6700\u65b0\u7684\u6700\u4f73\u5b9e\u8df5\u5e76\u5bf9\u60a8\u7684\u4ee3\u7801\u6301\u7eed\u5e94\u7528\u5b89\u5168\u63aa\u65bd\u975e\u5e38\u91cd\u8981\u3002<\/p>\n
                \u4e0e\u6211\u8054\u7cfb\uff1a@ linkedin \u5e76\u67e5\u770b\u6211\u7684\u4f5c\u54c1\u96c6\u3002<\/p>\n
                \u8bf7\u7ed9\u6211\u7684 github \u9879\u76ee\u4e00\u9897\u661f \u2b50\ufe0f<\/p>\n
                \u6587\u4e2d\u5173\u4e8e\u7684\u77e5\u8bc6\u4ecb\u7ecd\uff0c\u5e0c\u671b\u5bf9\u4f60\u7684\u5b66\u4e60\u6709\u6240\u5e2e\u52a9\uff01\u82e5\u662f\u53d7\u76ca\u532a\u6d45\uff0c\u90a3\u5c31\u52a8\u52a8\u9f20\u6807\u6536\u85cf\u8fd9\u7bc7\u300a\u4fdd\u62a4\u60a8\u7684 PHP \u5e94\u7528\u7a0b\u5e8f\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u5f71\u54cd\u7684\u57fa\u672c\u5b89\u5168\u5b9e\u8df5\u300b\u6587\u7ae0\u5427\uff0c\u4e5f\u53ef\u5173\u6ce8\u7c73\u4e91\u516c\u4f17\u53f7\u4e86\u89e3\u76f8\u5173\u6280\u672f\u6587\u7ae0\u3002<\/p>\n
                 \u7248\u672c\u58f0\u660e \u672c\u6587\u8f6c\u8f7d\u4e8e\uff1adev.to \u5982\u6709\u4fb5\u72af\uff0c\u8bf7\u8054\u7cfb \u5220\u9664<\/p>\n","protected":false},"excerpt":{"rendered":"
                \u4fdd\u62a4\u60a8\u7684 PHP \u5e94\u7528\u7a0b\u5e8f\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u5f71\u54cd\u7684\u57fa\u672c\u5b89\u5168\u5b9e\u8df5 \u6536\u85cf \u4ece\u73b0\u5728\u5f00\u59cb\uff0c\u52aa\u529b\u5b66\u4e60\u5427\uff01\u672c\u6587\u300a\u4fdd\u62a4\u60a8\u7684 PHP \u5e94\u7528\u7a0b\u5e8f\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u5f71\u54cd\u7684\u57fa\u672c\u5b89\u5168\u5b9e\u8df5\u300b\u4e3b\u8981\u8bb2\u89e3\u4e86\u7b49\u7b49\u76f8\u5173\u77e5\u8bc6\u70b9\uff0c\u6211\u4f1a\u5728\u7c73\u4e91\u4e2d\u6301\u7eed\u66f4\u65b0\u76f8\u5173\u7684\u7cfb\u5217\u6587\u7ae0\uff0c\u6b22\u8fce\u5927\u5bb6\u5173\u6ce8\u5e76\u79ef\u6781\u7559\u8a00\u5efa\u8bae\u3002\u4e0b\u9762\u5c31\u5148\u4e00\u8d77\u6765\u770b\u4e00\u4e0b\u672c\u7bc7\u6b63\u6587\u5185\u5bb9\u5427\uff0c\u5e0c\u671b\u80fd\u5e2e\u5230\u4f60\uff01 \u4fdd\u62a4\u60a8\u7684 php \u5e94\u7528\u7a0b\u5e8f\u6d89\u53ca\u4fdd\u62a4\u5176\u514d\u53d7\u5e38\u89c1\u6f0f\u6d1e\u7684\u5f71\u54cd\uff0c\u4f8b\u5982 sql \u6ce8\u5165\u3001\u8de8\u7ad9\u70b9\u811a\u672c (xss)\u3001\u8de8\u7ad9\u70b9\u8bf7\u6c42\u4f2a\u9020 (csrf)\u3001\u4f1a\u8bdd\u52ab\u6301\u548c\u6587\u4ef6\u5305\u542b\u653b\u51fb\u3002\u8fd9\u662f\u4e00\u4e2a\u5e26\u6709\u9010\u90e8\u5206\u63cf\u8ff0\u7684\u5b9e\u8df5\u793a\u4f8b\uff0c\u53ef\u5e2e\u52a9\u60a8\u4e86\u89e3\u5982\u4f55\u4fdd\u62a4 php \u5e94\u7528\u7a0b\u5e8f\u3002 1. \u9632\u6b62sql\u6ce8\u5165 \u5f53\u653b\u51fb\u8005\u53ef\u4ee5\u5c06\u6076\u610f sql \u8bed\u53e5\u6ce8\u5165\u60a8\u7684\u67e5\u8be2\u65f6\uff0c\u5c31\u4f1a\u53d1\u751f sql \u6ce8\u5165\u3002\u5c06\u51c6\u5907\u597d\u7684\u8bed\u53e5\u4e0e\u53c2\u6570\u5316\u67e5\u8be2\u4e00\u8d77\u4f7f\u7528\u53ef\u4ee5\u907f\u514d\u8fd9\u79cd\u60c5\u51b5\u3002 \u793a\u4f8b\uff1a <?php \/\/ insecure version $user_id = $_get[‘id’]; $query = “select * from users where id = ‘$user_id'”; $result = mysqli_query($connection, $query); \/\/ secure version $user_id = $_get[‘id’]; $stmt = $connection->prepare(“select * […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[],"class_list":["post-49008","post","type-post","status-publish","format-standard","hentry","category-16"],"_links":{"self":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/posts\/49008","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/comments?post=49008"}],"version-history":[{"count":0,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/posts\/49008\/revisions"}],"wp:attachment":[{"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/media?parent=49008"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/categories?post=49008"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/fwq.ai\/blog\/wp-json\/wp\/v2\/tags?post=49008"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}