Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Mock Exam-Security Question

 
vinod balaji
Ranch Hand
Posts: 84
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
HFEJB PGNO 593, QNO 1.
Whats true abt Security for EJB's ?

Ans given is Choice D. Secuirty Authorization can be bypassed on a method-by-method basis. It is possible to Provide security authorization even by instance basis through getCallerPrincipal() method, in this case i feel option E "Secuirty Authorization can be bypassed on a instance-by instance basix". Please clarify.

Thank you
 
Christophe Verré
Sheriff
Posts: 14691
16
Eclipse IDE Ubuntu VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
how would you differentiate one instance from another ?
 
vinod balaji
Ranch Hand
Posts: 84
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Ref:HFEJB pgno 586
Programmatic secuirty is used to restric access to specific instance(i.e., principal)..
Eg: Context.getCallerPrincipal();

Then it means we can restrict access on instance basis right.
 
Christophe Verré
Sheriff
Posts: 14691
16
Eclipse IDE Ubuntu VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The "instance" in the mock is a "bean instance", while the part you're pointing at (page 586) is about the caller's principal. The word "instance" here, is not the same as "bean instance".
 
vinod balaji
Ranch Hand
Posts: 84
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Ok.. i got confused because in book it is simply mentioned as "instance".. now i got understood. thank you for your explanation
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic