Forums Register Login

authorization question (role names)

+Pie Number of slices to send: Send
Hi all,

In the Head First (2nd edition) book, the same mock exam at the back, page 823, Question 43 is as below:


Given that a deployment descriptor has only one security role, defined as:

<security-role>
<role-name>Member</role-name>
</security-role>

Which are valid <auth-constraint> elements that will allow users to access resources constrained by the security role declared ? (choose all that apply)

A: <auth-constraint/>
B: <auth-constraint>*</auth-constraint>
C: <auth-constraint>Member</auth-constraint>
D: <auth-constraint>MEMBER</auth-constraint>
E: <auth-constraint>"Member"</auth-constraint>

The answer given is B and C. I would have thought the correct answer was only B. The reason I say this is that can you specify the role name in auth-constraint without putting the role name inside a <role-name> ? I thought not. I check the errata but found no mention of it.

I would have though that if B was as below then it would be correct:

<auth-constraint>
<role-name>Member</role-name>
</auth-constraint>

Any thoughts/advice would be great.
Thanks - Ro
+Pie Number of slices to send: Send
I can't find the question in my book but what you are saying is right, role names should be in role-name tags...
+Pie Number of slices to send: Send
Hi Ronan,

You are right.

Have a look at the topic in another thread: auth-constraint

Regards,
Frits
+Pie Number of slices to send: Send
Great stuff, thanks Fritz..
Hey! Wanna see my flashlight? It looks like this tiny ad:
a bit of art, as a gift, the permaculture playing cards
https://gardener-gift.com


reply
reply
This thread has been viewed 804 times.
Similar Threads
HFSJ Final Mock Question 43
Doubt on Security
security-role
Doubts: Mock by HFSJ 1st Edt
Marcus Green Quiz 1 - Mock Exam Question Doubt
More...

All times above are in ranch (not your local) time.
The current ranch time is
Mar 28, 2024 18:56:51.