You are developing an ASP.NET Web application.
The application is configured to use the membershipand role providers.
You need to allow all users to perform an HTTP GET for application resources, but you must allow only the
user named Moderator to perform a POST operation.
Which configuration should you add to the web.config file?
A.
<authorization>
<deny verbs=”GET” users=”*”/>
<allow verbs=”POST” users=”Moderator”/>
<deny verbs=”POST” users=”*”/>
</authorization>
B.
<authorization>
<deny verbs=”POST” users=”*”/>
<allow verbs=”POST” users=”Moderator”/>
<allow verbs=”GET” users=”*”/>
</authorization>
C.
<authorization>
<allow verbs=”GET” users=”*”/>
<allow verbs=”POST” users=”Moderator”/>
<deny verbs=”POST” users=”*”/>
</authorization>
D.
<authorization>
<allow verbs=”GET” users=”*”/>
<deny verbs=”POST” users=”Moderator”/>
<deny verbs=”POST” users=”*”/>
</authorization>