TechQA.

web.xml - <http-method> absent

2.4k views Asked by At

I'm wondering if I've found a mistake in a practice exam question:

A user has configured security setting in the deployment descriptor, web.xml, in the following way:

<security-constraint>
    <web-resource-collection>
        <web-resource-name>ResourceName</web-resource-name>
        <url-pattern>/test.jsp</url-pattern>
    </web-resource-collection>
</security-constraint>

Which HTTP methods can the user call against test.jsp?

The correct answer is listed as none, but I'm thinking that all methods should be valid, as the <http-method> element is absent. Which is correct?

xml security jsp http-method deployment-descriptor
Original Q&A
1

There are 1 answers

8
vzamanillo On

The http-method Element

The element declares which HTTP methods (usually, GET or POST) are subject to the security constraint. If element is omitted, the the security constraint is applied to all HTTP methods by default.

web.xml Deployment Descriptor Elements

Related Questions in XML

Related Questions in SECURITY

Related Questions in JSP

Related Questions in HTTP-METHOD

Related Questions in DEPLOYMENT-DESCRIPTOR

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions