• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Epractice Lab mock exam 5 about Java EE authentication mechanism

 
Himai Minh
Ranch Hand
Posts: 1360
7
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

What is true about Java EE authentication mechanisms?
a. If your deployment descriptor correctly declares an authentication type of CLIENT_CERT, your users
must have a certificate from an official source before they can use your application.
b. If your deployment descriptor correctly declares an authentication type of BASIC, the container
automatically requests a user name and password whenever a user starts a new session.
c.If you want your web application to support the widest possible array of browsers, and you want to perform
authentication, the best choice of Java EE authentication mechanisms is Digest.
d.To use Java EE form authentication, you must declare two HTML files in your dd and you must use a predefined
action in the HTML file that handles your user's login.

Given answer :d
To use Java EE form authentication, you must declare two HTML files (login and login error) in your deployment descriptor,
and you must ust a predefined action in the HTML file that handles your user's login.


I think the answer should be A.
For d, the form-login-config is not necessary in HTML. They can be in jsp.
 
Frits Walraven
Creator of Enthuware JWS+ V6
Saloon Keeper
Pie
Posts: 2531
112
Android Chrome Eclipse IDE
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I agree with you.

I always like the EE6-tutorial when reading about authentication: Java EE6 tutorial Authentication Mechanisms
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic