多项选择题
Which two statements are true about using the isUserInRole method to implement security in a Java EEapplication?()
A.It can be invoked only from the doGet or doPost methods.
B.It can be used independently of the getRemoteUser method.
C.Can return "true" even when its argument is NOT defined as a valid role name in the deployment descriptor.
D.Using the isUserInRole method overrides any declarative authentication related to the method in which it is invoked.
相关考题
-
多项选择题
Whichtwoarerequiredelementsfortheelementofawebapplicationdeploymentdescriptor?()
A.<realm-name>
B.<url-pattern>
C.<description>
D.<web-resource-name>
E.<transport-guarantee> -
单项选择题
Whichelementofawebapplicationdeploymentdescriptorelementisrequired?()
A.<realm-name>
B.<auth-method>
C.<security-role>
D.<transport-guarantee>
E.<web-resource-collection> -
多项选择题
Whichtwostatementsaretrueaboutthesecurity-relatedtagsinavalidJavaEEdeploymentdescriptor?()
A.Every
tag must have at least one tag.
B.Atag can have many tags.
C.A given tag can apply to only onetag.
D.A giventag can contain from zero to many tags.
E.It is possible to construct a validtag such that,for a given resource,no user rolescan access that resource.
