Using the application code in W1 Assignment 3, you will further examine the potential for attack and defense in the areas of input validation, access control, and session management. Click here to access the code (you will need to modify the code based on the questions below). Create a report in a 2- to 3-page Microsoft Word document addressing the following: · Locate the PHP code for validating the user's login information. Use the variables defined there to restrict the content page to only those who have successfully logged into the system. · Describe how the session is managed from page to page in the application. How long is the session active by default? What conditions will end the session? · Identify the form validation rules that need to be put in place for the login form and the registration form. What format should the data have? What is the maximum length of each item? Identify the necessary functions in JavaScript and PHP to create these validation rules and list them in your report. Note: You will write the functions for the form validation in W3 Assignment 2, so the more you prepare now the simpler that exercise will be. Support your responses with examples. Cite any sources in APA format. RUNNING HEAD: The PHP Code 1 The PHP Code Brandon Whitley South University Online ITS4221 April 7, 2015 Introduction PHP is a server-side scripting language, which is specially designed for development of websites. It is also used as a general purpose programming language. PHP was originally created in 1994, by Rasmus Randorf and was successfully installed in over 240 million websites. Originally, PHP stood for Personal Home page but is nowadays used to refer to HypertextPreprocessor. The code can easily be used with a combination of other engines or be mixed with HTML, (Turland, 2011). This paper examines the potential for attack and defense in the areas of input validation, access control and session management. Locate the PHP code for validating the user's login information. Use the variables defined there to restrict the content page to only those who have successfully logged into the system. The PHP code used for validating user’s login information is ‘config.php’. First, the common code is executed to connection to the database and for the session to start, the ‘common.php’ variable is required. At the top of the page, the process of ensuring that the user is either logged in or out takes place. If the user is not logged in, they are redirected to the log in page with the header ‘location: login.php’. With this, it is crucial as it permits only the accounts owner to view details in his or her account and no trespass to other users’ account. The content in the page is highly restricted to only those who have successfully logged into the system. The variables used in PHP are presented using the dollar sign followed by the name of the variable, which is case sensitive. Variables used are: $var, $4site and $tayte among ot ...