Which two statements are true about the security-related tags in a valid Java EE deployment descriptor?

Which two statements are true about the security-related tags in a valid Java EE deployment
descriptor? (Choose two)

Which two statements are true about the security-related tags in a valid Java EE deployment
descriptor? (Choose two)

A.
Every <security-constraint> tag must have at least one <http-method> tag.

B.
A <security-constraint> tag can have many <web-resource-collection> tags.

C.
A given <auth-constraint> tag can apply to only one <web-resource-collection> tag.

D.
A given <web-resource-collection> tag can contain from zero to many <url-pattern> tags.

E.
It is possible to construct a valid <security-constraint> tag such that, for a given resource user
roles can access that resource.

Show Hint

Leave a Reply 4

Your email address will not be published. Required fields are marked *

giuseppe

giuseppe

B,E is correct: al least means not more than 🙂

Reply

Adriano Palomino

Adriano Palomino

B, E

Reply