EPractize Labs's. Question 50 of Mock Exam 3. Implementing security.

Hi friends

I have one doubt for the exam.

It regards EPractize Labs' Question 50 of Mock Exam 3 on the subject of implementing security.

The print screen of the question is in attach.

The lab says D and E are the correct answers.

In my opinion choosing D and E is a contradiction in terms.

With answer D, javax.annotation.security.RollesAllowed annotation there is overriding. " If applied at both the class and methods level , the method value overrides the class value if the two conflict" - https://docs.oracle.com/javaee/6/api/javax/annotation/security/RolesAllowed.html

With answer E, <method-permission> of ejb.jar.xml there is union - "The method permissions relation is defined as the union of all the method permissions defined in the individual method-permission elements." - pag 495 of http://download.oracle.com/otn-pub/jcp/ejb-3.1-fr-eval-oth-JSpec/ejb-3_1-fr-spec.pdf?AuthParam=1420603814_a14da73103af4bd19350064fcae1e929

My guess is the correct answer is C and D.

Does anybody has an opinion regarding this question?

Thank you in advance,

FR

You are right, that question has an error.

I would also say that C, D correct.

Answer E is questionable, but you can define one <method-permission> element allowing all methods by "admin" like this:
<method-permission> <role-name>admin</role-name> <method> <ejb-name>EJBean</ejb-name> <method-name>*</method-name> </method> </method-permission> however the phrasing of the sentence is odd. The problem statement says the majority of methods will be used by the role "admin". In other words: there will be methods that won't be used by the role "admin", but by other roles. This is then not implementable byusing one <method-permission> element (because of the union).

Regards,
Frits

Thank you Frits,

that´s what I thought.

That one was puzzling me.

Best Regards,

Filipe

Filipe Rosa wrote:Hi friends

I have one doubt for the exam.

It regards EPractize Labs' Question 50 of Mock Exam 3 on the subject of implementing security.

The print screen of the question is in attach.

The lab says D and E are the correct answers.

In my opinion choosing D and E is a contradiction in terms.

With answer D, javax.annotation.security.RollesAllowed annotation there is overriding. " If applied at both the class and methods level , the method value overrides the class value if the two conflict" - https://docs.oracle.com/javaee/6/api/javax/annotation/security/RolesAllowed.html

With answer E, <method-permission> of ejb.jar.xml there is union - "The method permissions relation is defined as the union of all the method permissions defined in the individual method-permission elements." - pag 495 of http://download.oracle.com/otn-pub/jcp/ejb-3.1-fr-eval-oth-JSpec/ejb-3_1-fr-spec.pdf?AuthParam=1420603814_a14da73103af4bd19350064fcae1e929

My guess is the correct answer is C and D.

Does anybody has an opinion regarding this question?

Thank you in advance,

FR

We really sorry for the error. We will immediately correct this issue on Java EE 6 EJB OCE Training Lab.

Thanks. I will buy this EPractice Lab exam in a few days, will I get the latest updates ?

Hi Himai Minh,

Himai Minh wrote:Thanks. I will buy this EPractice Lab exam in a few days, will I get the latest updates ?

Yes, you can get the latest updates, new version with the above mentioned fix is updated. Now you can get the latest update from our website.

Thanks for the interest Himai!