Developing a Secure E-commerce Web Application using PHP and MySQL
VerifiedAdded on 2025/04/11
|32
|5624
|172
AI Summary
Desklib provides past papers and solved assignments for students. This project focuses on web application development.
Contents
List of Figures..................................................................................................................................2
Introduction......................................................................................................................................3
LO1. Understand the concept of web application development......................................................4
1.1 Critically evaluate the functions and advantages of web applications..................................4
1.2 Critically compare different types of server-side and client-side scripting languages..........5
1.3 Examine web security concerns and make recommendations for security improvements....7
LO2 Be able to design a web application........................................................................................9
2.1 Design a web application to meet a given requirement.........................................................9
2.2 Synthesize client-side and server-side functionality in a web application..........................11
2.3 Apply a database design for use in a web application.........................................................12
2.4 Evaluate alternative designs and solutions to meet a given requirement............................13
LO3 Be able to implement web applications.................................................................................15
3.1 Implement a web application to a prepared design using client -side and server-side
scripting languages....................................................................................................................15
3.2 Implement a web-enabled database management system to store, retrieve and manipulate
data in a web application...........................................................................................................21
3.3 Identify and implement opportunities for error handling and reporting..............................23
LO4 Be able to test web applications............................................................................................26
4.1 Critically review and test a web application using a web enabled database management
system........................................................................................................................................26
4.2 Analyze actual test results against expected results to identify discrepancies....................27
4.3 Critically evaluate independent feedback on a developed web application and make
recommendations for improvements.........................................................................................28
4.4 Create user documentation for a developed web application..............................................29
List of Figures..................................................................................................................................2
Introduction......................................................................................................................................3
LO1. Understand the concept of web application development......................................................4
1.1 Critically evaluate the functions and advantages of web applications..................................4
1.2 Critically compare different types of server-side and client-side scripting languages..........5
1.3 Examine web security concerns and make recommendations for security improvements....7
LO2 Be able to design a web application........................................................................................9
2.1 Design a web application to meet a given requirement.........................................................9
2.2 Synthesize client-side and server-side functionality in a web application..........................11
2.3 Apply a database design for use in a web application.........................................................12
2.4 Evaluate alternative designs and solutions to meet a given requirement............................13
LO3 Be able to implement web applications.................................................................................15
3.1 Implement a web application to a prepared design using client -side and server-side
scripting languages....................................................................................................................15
3.2 Implement a web-enabled database management system to store, retrieve and manipulate
data in a web application...........................................................................................................21
3.3 Identify and implement opportunities for error handling and reporting..............................23
LO4 Be able to test web applications............................................................................................26
4.1 Critically review and test a web application using a web enabled database management
system........................................................................................................................................26
4.2 Analyze actual test results against expected results to identify discrepancies....................27
4.3 Critically evaluate independent feedback on a developed web application and make
recommendations for improvements.........................................................................................28
4.4 Create user documentation for a developed web application..............................................29
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
Conclusion.....................................................................................................................................30
Reference List................................................................................................................................31
List of Figures
Figure 1 – Client and server-side scripting......................................................................................6
Figure 2 – Homepage of web application........................................................................................9
Figure 3 – Registration for candidature.........................................................................................10
Figure 4 – Login............................................................................................................................10
Figure 5 – Manage order................................................................................................................12
Figure 6 – Database design............................................................................................................13
Figure 7 – Index Page....................................................................................................................15
Figure 8 – Clothes Page.................................................................................................................16
Figure 9 – Contact Us Page...........................................................................................................17
Figure 10 – Feedback Form Page..................................................................................................18
Figure 11 – Accessories Page........................................................................................................19
Figure 12 – Order Page..................................................................................................................19
Figure 13 – Shoe Page...................................................................................................................20
Figure 14 – Category Table...........................................................................................................22
Figure 15 – Products Table............................................................................................................22
Figure 16 – Users Table.................................................................................................................23
Figure 17 – Error display...............................................................................................................25
Reference List................................................................................................................................31
List of Figures
Figure 1 – Client and server-side scripting......................................................................................6
Figure 2 – Homepage of web application........................................................................................9
Figure 3 – Registration for candidature.........................................................................................10
Figure 4 – Login............................................................................................................................10
Figure 5 – Manage order................................................................................................................12
Figure 6 – Database design............................................................................................................13
Figure 7 – Index Page....................................................................................................................15
Figure 8 – Clothes Page.................................................................................................................16
Figure 9 – Contact Us Page...........................................................................................................17
Figure 10 – Feedback Form Page..................................................................................................18
Figure 11 – Accessories Page........................................................................................................19
Figure 12 – Order Page..................................................................................................................19
Figure 13 – Shoe Page...................................................................................................................20
Figure 14 – Category Table...........................................................................................................22
Figure 15 – Products Table............................................................................................................22
Figure 16 – Users Table.................................................................................................................23
Figure 17 – Error display...............................................................................................................25
Introduction
This research is defining web service and use of it for improves business. Today internet is
covering a wide area of the world so, web service is necessary for every field. The website is
making with help of languages like ASP, PHP, and others. Web system is including data for
executed dynamically. For web development, SQL and Database management is needed.
This research is defining web service and use of it for improves business. Today internet is
covering a wide area of the world so, web service is necessary for every field. The website is
making with help of languages like ASP, PHP, and others. Web system is including data for
executed dynamically. For web development, SQL and Database management is needed.
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
LO1. Understand the concept of web application development
1.1 Critically evaluate the functions and advantages of web applications
A web application is a type of program which accesses by web servers and stored in server side.
Web applications are developing by HTML, CSS and PHP technologies. Any software which is
executing by browser is a form of web application. Web applications are including the
terminology like back-end and front-end. Web applications are combination of programming
languages and graphics. Web applications are platform independent in nature and codes are free
for the users.
The advantage of a web application
Develop once and run: Web applications develop by developer once and it allows using by
multiple browsers. These applications are already installed in system. Web applications do not
depend on platform means it is platform independent. After creation of web application, it works
in different platform without any changes.
Easy to upgrade: Web applications are simple in upgrade because the coding for upgrade is
available at a single place. After upgrade, the application another user can use upgrade version
automatically.
Open Source: Open source are available for web application which is giving speed for web
development. Open source software is reducing the web application cost. It is used by every user
without any permission of the developer. It is free for user.
Performance: Performance of web applications is the high and quick result of user is shown.
For a single user development of web application is more complex and costly. But the big server
area provides solution for complexity of development.
Maintenance: Software of web application is developed by big companies and developers are
also experienced. A wide range of user all solutions get quickly for any query. By these factors,
maintenance cost becomes lower for a web application.
1.1 Critically evaluate the functions and advantages of web applications
A web application is a type of program which accesses by web servers and stored in server side.
Web applications are developing by HTML, CSS and PHP technologies. Any software which is
executing by browser is a form of web application. Web applications are including the
terminology like back-end and front-end. Web applications are combination of programming
languages and graphics. Web applications are platform independent in nature and codes are free
for the users.
The advantage of a web application
Develop once and run: Web applications develop by developer once and it allows using by
multiple browsers. These applications are already installed in system. Web applications do not
depend on platform means it is platform independent. After creation of web application, it works
in different platform without any changes.
Easy to upgrade: Web applications are simple in upgrade because the coding for upgrade is
available at a single place. After upgrade, the application another user can use upgrade version
automatically.
Open Source: Open source are available for web application which is giving speed for web
development. Open source software is reducing the web application cost. It is used by every user
without any permission of the developer. It is free for user.
Performance: Performance of web applications is the high and quick result of user is shown.
For a single user development of web application is more complex and costly. But the big server
area provides solution for complexity of development.
Maintenance: Software of web application is developed by big companies and developers are
also experienced. A wide range of user all solutions get quickly for any query. By these factors,
maintenance cost becomes lower for a web application.
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
Reach: Web applications are used by anyone and anywhere in the workplace of internet. It is
available every time for use so, customer use web applications easily any time and takes
advantage of features of web applications.
The above advantages are provided by web applications. Web applications are work on the
connectivity of network. These applications are communicating between user and client and
create an interface between them. Web applications are made with arrangement of database and
SQL language (Schnell, 2019).
Function of a web application:
It displays a graphical representation of the reports.
It provides the facility for quick and easy searching and tracking of products.
Web application is used to attracting customer and show interest of customers.
Web applications provide all information of product online.
Mobile applications provide a useful application at the site of work.
A web application is provided a delivery report of product and provides solution about a
query of customers (Pssuk, 2019).
1.2 Critically compare different types of server-side and client-side scripting
languages
Client and server side are described for a web application. Server is using for serving web
application pages for end (client) user requirement. Client is that who request query from the
server side. Scripting is an important part for web applications. Facebook and Google services
are the example of client-side scripting. Laravel framework uses both scripting client and server.
Client-side and Server-side scripting are the part of web application and responsible for
interaction between users to server. Front end of web application is seen by user and based on
experience of user. Back-end refers for database and coding of web applications.
available every time for use so, customer use web applications easily any time and takes
advantage of features of web applications.
The above advantages are provided by web applications. Web applications are work on the
connectivity of network. These applications are communicating between user and client and
create an interface between them. Web applications are made with arrangement of database and
SQL language (Schnell, 2019).
Function of a web application:
It displays a graphical representation of the reports.
It provides the facility for quick and easy searching and tracking of products.
Web application is used to attracting customer and show interest of customers.
Web applications provide all information of product online.
Mobile applications provide a useful application at the site of work.
A web application is provided a delivery report of product and provides solution about a
query of customers (Pssuk, 2019).
1.2 Critically compare different types of server-side and client-side scripting
languages
Client and server side are described for a web application. Server is using for serving web
application pages for end (client) user requirement. Client is that who request query from the
server side. Scripting is an important part for web applications. Facebook and Google services
are the example of client-side scripting. Laravel framework uses both scripting client and server.
Client-side and Server-side scripting are the part of web application and responsible for
interaction between users to server. Front end of web application is seen by user and based on
experience of user. Back-end refers for database and coding of web applications.
Figure 1 – Client and server-side scripting
Source: (System, 2019)
Difference between Server-side and client-side scripting languages:
Server-side includes language such as PHP, Ruby, Java, and Python. And client-side includes
language such as HTML, Javascript, and CSS.
Server-side language
PHP is used to a manipulating database of design and this language is used for database SQL.
RUBY has included a complex package for the back-end of database.
It works on client request and shows output in HTTP format. Loss of cost is reason for low
performance of web applications.
Client-side language
HTML is a language which using a frame for a web application. It is responsible for content
arrangement.
CSS is using pro graphics design of website.
Client scripting is not requiring any help from server after the page is loaded. Client-side
scripting is providing a response for input of the user and display information related to input.
Implementation of additional features is difficult for front end side of web applications.
Source: (System, 2019)
Difference between Server-side and client-side scripting languages:
Server-side includes language such as PHP, Ruby, Java, and Python. And client-side includes
language such as HTML, Javascript, and CSS.
Server-side language
PHP is used to a manipulating database of design and this language is used for database SQL.
RUBY has included a complex package for the back-end of database.
It works on client request and shows output in HTTP format. Loss of cost is reason for low
performance of web applications.
Client-side language
HTML is a language which using a frame for a web application. It is responsible for content
arrangement.
CSS is using pro graphics design of website.
Client scripting is not requiring any help from server after the page is loaded. Client-side
scripting is providing a response for input of the user and display information related to input.
Implementation of additional features is difficult for front end side of web applications.
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
JavaScript is client-side language but it is also used for server-side in a specific purpose.
Server-side scripting is the part of backend and code of language is not viewed by other.
Codes are hidden for browser. Client-side is part of frontend. It is visible by the browser.
Server-side is used for communication with server means back end process is communicating
with server. Client-side is not communicated with server.
Server-side involves the service of web pages customization. It is using for making a
dynamic change in the web application and also implements it. Client-side is used for
reducing server load.
Server-side provides security for web application in comparison to client-side scripting.
User can’t show server side of web application but client-side of application is visible for
users.
1.3 Examine web security concerns and make recommendations for security
improvements
Web application security is needed for security of user data. Web security vulnerabilities are as
follows:
Injections of SQL: In this type of injections an attacker used corrupt or inappropriate code
to access web application. If the corrupt code is matched with correct code then attacker
manipulates server-side of the web application. It is main part of web application and
security issue is high for this part.
Cross-site scripting: This scripting target to user of a web application by effecting codes.
The main effect of this is making interrupt in client-side of application and control web
application according to attacker mind. XSS is giving permission for an attacker to control
user browser.
Broken session management: Broking authentication of web application is a security issue
for site. It is happened due to identity maintain of client. The authentication of user is not in
protected mode then attacker easily controls live session and access identity of user.
Security misconfiguration: It occurs due to reason of appropriate maintenance of web
application. Secure configuration is needed for application and web server. If the
maintenance is not proper then it allows to attacker for accessing data of user. Attacker also
used private data of user in their personal use.
Server-side scripting is the part of backend and code of language is not viewed by other.
Codes are hidden for browser. Client-side is part of frontend. It is visible by the browser.
Server-side is used for communication with server means back end process is communicating
with server. Client-side is not communicated with server.
Server-side involves the service of web pages customization. It is using for making a
dynamic change in the web application and also implements it. Client-side is used for
reducing server load.
Server-side provides security for web application in comparison to client-side scripting.
User can’t show server side of web application but client-side of application is visible for
users.
1.3 Examine web security concerns and make recommendations for security
improvements
Web application security is needed for security of user data. Web security vulnerabilities are as
follows:
Injections of SQL: In this type of injections an attacker used corrupt or inappropriate code
to access web application. If the corrupt code is matched with correct code then attacker
manipulates server-side of the web application. It is main part of web application and
security issue is high for this part.
Cross-site scripting: This scripting target to user of a web application by effecting codes.
The main effect of this is making interrupt in client-side of application and control web
application according to attacker mind. XSS is giving permission for an attacker to control
user browser.
Broken session management: Broking authentication of web application is a security issue
for site. It is happened due to identity maintain of client. The authentication of user is not in
protected mode then attacker easily controls live session and access identity of user.
Security misconfiguration: It occurs due to reason of appropriate maintenance of web
application. Secure configuration is needed for application and web server. If the
maintenance is not proper then it allows to attacker for accessing data of user. Attacker also
used private data of user in their personal use.
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
Cross-site forgery: It is a type of malicious attack. In this type of attack, a third party is sent
a request for accessing data of user for example payment of bank and money transfer.
Attacker use application such as email, banking, and social media for attracting user for this
type of security effect.
Sensitive data exposure: It is a type of security mistake for resource and crypto. The
password of debit card and credit care is not encrypted and it is transferred in form of hash
(Interactive, 2019).
Recommendation for improvement of web security:
Application maintenance: It is used for security updates and patches. Updating of web
application is providing protection for security of website. The updating process is called
virtual.
Strong password: Reuse of password is a reason of hacking user data. So make a strong
password for website and not reuse it. A longer and combine password is hard for crack. If
the password has a numeric number then use random number as a password because
continuous number is easy for hack.
Sensible user access: It is used for multiple user application. All users have a proper
permission key for every user. Each user needs to maintain security of web application.
Regular backup of content and important information is needed for security of private data.
Appropriate monitoring of emails and websites provides security for web applications.
Installation of antivirus is giving protect from viruses and makefiles and data protection. Make a
password with a combination of alphanumeric number which provides a strong path for
application. The sharing of internet via Wi-Fi is always protected because it is a reason for data
corruption. Hotspot is safe for sharing internet comparison to public network. Always download
the legal information about files and read them carefully. Always log out social media and other
important application after use. These tips are provided for security to web application and
provide a secure website for use
(Desailly, 2019).
a request for accessing data of user for example payment of bank and money transfer.
Attacker use application such as email, banking, and social media for attracting user for this
type of security effect.
Sensitive data exposure: It is a type of security mistake for resource and crypto. The
password of debit card and credit care is not encrypted and it is transferred in form of hash
(Interactive, 2019).
Recommendation for improvement of web security:
Application maintenance: It is used for security updates and patches. Updating of web
application is providing protection for security of website. The updating process is called
virtual.
Strong password: Reuse of password is a reason of hacking user data. So make a strong
password for website and not reuse it. A longer and combine password is hard for crack. If
the password has a numeric number then use random number as a password because
continuous number is easy for hack.
Sensible user access: It is used for multiple user application. All users have a proper
permission key for every user. Each user needs to maintain security of web application.
Regular backup of content and important information is needed for security of private data.
Appropriate monitoring of emails and websites provides security for web applications.
Installation of antivirus is giving protect from viruses and makefiles and data protection. Make a
password with a combination of alphanumeric number which provides a strong path for
application. The sharing of internet via Wi-Fi is always protected because it is a reason for data
corruption. Hotspot is safe for sharing internet comparison to public network. Always download
the legal information about files and read them carefully. Always log out social media and other
important application after use. These tips are provided for security to web application and
provide a secure website for use
(Desailly, 2019).
LO2 Be able to design a web application
2.1 Design a web application to meet a given requirement
Figure 2 – Homepage of web application
2.1 Design a web application to meet a given requirement
Figure 2 – Homepage of web application
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
Figure 3 – Registration for candidature
Figure 4 – Login
Figure 4 – Login
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
Home page of the website is based on the detail of the site. For login in the web application
candidate first, fill information. After filling registration page user successfully register with the
web application. The data of user is stored in the Database. Login page is generated for access
the user for web application. This is the back-end side of web application. If the user forgot
password the user click on forgot password link and recreate password. The website is based on
the online shopping and store detail information about products and functionality of company. It
is a dynamic website and works on client and server site browser.
Home page of web application contains the offers and schemes which are providing by the
company. Information about company and contact of the company is part of home page.
2.2 Synthesize client-side and server-side functionality in a web application
Client-side script is working in the client browser Client-side scripting use JavaScript and client-
side used in dynamic websites. Script is writing in HTML code and it is stored in the external
files. Server-side script is working on web server when request is sent by user. It uses languages
like Python, PHP, and Java.
Server-side work: it shows the information of the input on screen. It covers HTML files in
server for execution on browser. When user provides input to browser it sends request to server.
Server stored the information related to the input. For first request, browser changes it into
HTML and show result on screen. For visiting another page of website browser send another
request for new input. For entire new information, browser sends new request for getting output.
All logic and code of web application work on the server-side of website. Server-side of web
application introduces the feature of latency.
Back end of application contains three parts the server, database and APIs and codes are written
in languages which are used in server-side. When user enters self-information on any networking
site then serve store the information. Server-side is the part of back end and developer use it for
making back end of the web application. Server-side scripts are runs on server and execute code
of website.
Client-side scripting: Client is a user who uses or views a web application. Client-side services
are processed on the client browser. Client-side server is situated at the remote location and
candidate first, fill information. After filling registration page user successfully register with the
web application. The data of user is stored in the Database. Login page is generated for access
the user for web application. This is the back-end side of web application. If the user forgot
password the user click on forgot password link and recreate password. The website is based on
the online shopping and store detail information about products and functionality of company. It
is a dynamic website and works on client and server site browser.
Home page of web application contains the offers and schemes which are providing by the
company. Information about company and contact of the company is part of home page.
2.2 Synthesize client-side and server-side functionality in a web application
Client-side script is working in the client browser Client-side scripting use JavaScript and client-
side used in dynamic websites. Script is writing in HTML code and it is stored in the external
files. Server-side script is working on web server when request is sent by user. It uses languages
like Python, PHP, and Java.
Server-side work: it shows the information of the input on screen. It covers HTML files in
server for execution on browser. When user provides input to browser it sends request to server.
Server stored the information related to the input. For first request, browser changes it into
HTML and show result on screen. For visiting another page of website browser send another
request for new input. For entire new information, browser sends new request for getting output.
All logic and code of web application work on the server-side of website. Server-side of web
application introduces the feature of latency.
Back end of application contains three parts the server, database and APIs and codes are written
in languages which are used in server-side. When user enters self-information on any networking
site then serve store the information. Server-side is the part of back end and developer use it for
making back end of the web application. Server-side scripts are runs on server and execute code
of website.
Client-side scripting: Client is a user who uses or views a web application. Client-side services
are processed on the client browser. Client-side server is situated at the remote location and
processed back-end and sending request to browser. Client-side architecture is made with HTML
code. Client-side frameworks are:
Angular JS is framework for Script and robust in nature. Bootstrap is mobile framework and uses
CSS and HTML language. HTML is used to creating web pages and also creates application for
website. HTML language is using for creation of text and images of website. CSS is providing
layout and look for HTML language. JavaScript is a language for creating web application.
Server-side programming is used for processing of input and executes pages of web application.
It is used for creating structure web applications. Client-side programming is used to make web
pages. It is creating interaction between local storage and temporary storage. Client-side
scripting is responsible for sending request to the server and retrieves data from the server.
Client-side is providing services like content delivery and registration of software.
Client-side scripting is used for validation of input and also creating animation part of web
application. Client-side also used for modifying User Interface elements. It is the part which
creates style of web pages and applies them to web application. Server-side is creating database
query and it encoded data in the HTML codes. This side of website is providing updates and
inserts information on database. Server-side programming is creating rules for business and
calculations of numeric numbers.
code. Client-side frameworks are:
Angular JS is framework for Script and robust in nature. Bootstrap is mobile framework and uses
CSS and HTML language. HTML is used to creating web pages and also creates application for
website. HTML language is using for creation of text and images of website. CSS is providing
layout and look for HTML language. JavaScript is a language for creating web application.
Server-side programming is used for processing of input and executes pages of web application.
It is used for creating structure web applications. Client-side programming is used to make web
pages. It is creating interaction between local storage and temporary storage. Client-side
scripting is responsible for sending request to the server and retrieves data from the server.
Client-side is providing services like content delivery and registration of software.
Client-side scripting is used for validation of input and also creating animation part of web
application. Client-side also used for modifying User Interface elements. It is the part which
creates style of web pages and applies them to web application. Server-side is creating database
query and it encoded data in the HTML codes. This side of website is providing updates and
inserts information on database. Server-side programming is creating rules for business and
calculations of numeric numbers.
⊘ This is a preview!⊘
Do you want full access?
Subscribe today to unlock all pages.
Trusted by 1+ million students worldwide
1 out of 32
Related Documents
Your All-in-One AI-Powered Toolkit for Academic Success.
+13062052269
info@desklib.com
Available 24*7 on WhatsApp / Email
![[object Object]](/_next/static/media/star-bottom.7253800d.svg)
Unlock your academic potential
Copyright © 2020–2025 A2Z Services. All Rights Reserved. Developed and managed by ZUCOL.