An enterprise bean has security permissions set up using declarative security features.
Under which two conditions can a client be guaranteed to have permission to invoke a business
method on the enterprise bean? (Choose two.)
A.
The Application Assembler has marked the enterprise bean method as unchecked.
B.
The client’s principal has been assigned a security role with permission to invoke the method.
C.
The Application Assembler has set the security-identity deployment descriptor to run-as.
D.
The Application Assembler has mapped all security role references using the role-link element.