Your company has a web site that was created exclusively in JSP pages. The company now
wants to add role-based security to the site to limit access to certain pages. Which three are used
to facilitate this authorization mechanism? (Choose three.)
A.
a servlet Front Controller
B.
EJB security constraints
C.
a servlet Filter to intercept HTTP requests
D.
web resource constraints in the deployment descriptor