Whisker – 自托管电子商务购物车,纯PHP,零依赖
大家好,
我创建了Whisker,因为搭建一个简单的在线商店不应该需要WordPress、Composer或每月39美元的SaaS费用。它是一个自托管的电子商务购物车,完全基于PHP和MySQL,没有外部依赖。
只需上传到任何共享主机,运行6步网页安装程序,就可以开始销售。这就是全部。
它的功能包括:带有变体的产品目录(按尺寸×颜色组合,提供单独的SKU/价格/库存),4个支付网关(Razorpay、Stripe、CCAvenue、加密货币),多货币支持,管理员仪表盘,订单管理,发票,客户账户,带有JSON-LD产品架构的SEO引擎,CSV批量导入,支持票务系统,优惠券系统。
安全性方面:PDO预处理语句、bcrypt、CSRF、防止会话指纹攻击、Webhook签名验证、登录速率限制、上传MIME类型和扩展名验证。
大约130个文件,25个表,运行在PHP 8.0+和MySQL 5.7+上。
演示链接:https://whisker.lohit.me
GitHub链接:https://github.com/WhiskerEnt/Whisker-Cart
我非常欢迎对架构或安全性的任何反馈。乐意讨论技术决策。
查看原文
Hi everyone,<p>I built Whisker because setting up a simple online store shouldn't require WordPress, Composer, or $39/month SaaS fees. It's a self hosted e-commerce cart in pure PHP + MySQL with no external dependencies.<p>Upload to any shared hosting, run the 6-step web installer, start selling. That's it.<p>What it does: product catalog with variants (Size × Color with individual SKU/price/stock per combo), 4 payment gateways (Razorpay, Stripe, CCAvenue, crypto), multi-currency, admin dashboard, order management, invoices, customer accounts, SEO engine with JSON-LD product schema, CSV bulk import, support tickets, coupon system.
Security: PDO prepared statements, bcrypt, CSRF, session fingerprinting, webhook signature verification, login rate limiting, upload MIME+extension validation.<p>~130 files, 25 tables, runs on PHP 8.0+ and MySQL 5.7+.<p>Demo: https://whisker.lohit.me<p>GitHub: https://github.com/WhiskerEnt/Whisker-Cart<p>I'd appreciate any feedback on the architecture or security. Happy to discuss technical decisions.