Tips to Pass 1Z0-899 Exam (61 to 70)

Proper study guides for Refresh Oracle Java EE 6 Web Component Developer Certified Expert Exam certified begins with Oracle 1Z0-899 preparation products which designed to deliver the Realistic 1Z0-899 questions by making you pass the 1Z0-899 test at your first time. Try the free 1Z0-899 demo right now.

2016 Jul 1Z0-899 Study Guide Questions:

Q61. When using the @WebListener annotation, the class on which the annotation is applied to must also implement at least one o the following interfaces – (Choose two): 

A. RequestListener 

B. AttributeListener 

C. ServletContextListener 

D. HttpSessionListener 

E. SessionAttributeListener 

F. AsyncListener 

Answer: CD

Q62. Which interface must a class implement so that instances of the class are notified after any object added to a session? 

A. javax.servlet.http.HttpSessionListener 

B. javax.servlet.http.HttpSessionValueListener 

C. javax.servlet.http.HttpSessionBindingListener 

D. javax.servlet.http.HttpSessionAttributeListener 

Answer: D

Q63.  

If the DD contains a single security constraint associated with MyServlet and its only <http-method> tags and <auth-constraint> tags are: 

<http-method>GET</http-method> <http-method>PUT</http-method> <auth-constrain>Admin</auth-constrain> 

Which four requests would be allowed by the container? (Choose four) 

A. A user whose role is Admin can perform a PUT. 

B. A user whose role is Admin can perform a GET. 

C. A user whose role is Admin can perform a POST. 

D. A user whose role is Member can perform a PUT. 

E. A user whose role is Member can perform a POST. 

F. A user whose role is Member can perform a GET. 

Answer: ABCE 

1Z0-899  free exam

Renewal 1Z0-899 actual test:

Q64. Which two statements are true about the security-related tags in a valid Java EE deployment descriptor? (Choose two) 

A. Every <security-constraint> tag must have at least one <http-method> tag. 

B. A <security-constraint> tag can have many <web-resource-collection> tags. 

C. A given <auth-constraint> tag can apply to only one <web-resource-collection> tag. 

D. A given <web-resource-collection> tag can contain from zero to many <url-pattern> tags. 

E. It is possible to construct a valid <security-constraint> tag such that, for a given resource user roles can access that resource. 

Answer: BE

Q65. Given the element from the web application deployment descriptor: 

<jsp – property – group> 

<url – pattern>/main/page1.jsp</url – pattern> 

<scripting – invalid>true</scripting – invalid> 

</jsp—property—group> 

And given that /main/page1.jsp contains: 

<% int i = 12; %> 

<b> <%= i %> </b> 

What is the result? 

A. <b> <b> 

B. <b> l2 </b> 

C. The JSP fails to execute. 

D. <% int i = 12 %> 

<b> <%= i % > < b> 

Answer: C

Q66. You are creating a JSP page to display a collection of data. This data can be displayed in several different ways so the architect on your project decided to create a generic servlet that generates a comma delimited string so that various pages can render the data in different ways. This servlet takes on request parameter: objoctID. Assume that this servlet is mapped to the URL pattern: /WEB-INF/data. 

In the JSP you are creating, you need to split this string into its elements separated by commas and generate an HTML <ul> list from the data. 

Which JSTL code snippet will accomplish this goal? 

A. <c:import varReader='dataString' url='/WEB-INF/data'> 

<c:param name='objectID' value='${currentOID}' /> 

</c:import> 

<ul> 

<c:forTokens items'${dataString.split(",")}' var='item'> 

<li>${item}</li> 

</c:forTokens> 

</ul> 

B. <c:import varReader='dataString' url='/WEB-INF/data'> 

<c:param name='objectID' value='${currentOID}' /> 

</c:import> 

<ul> 

<c:forTokens items'${dataString}' delims=',' var='item'> 

<li>${item}</li> 

</c:forTokens> 

</ul> 

C. <c:import var='dataString' url='/WEB-INF/data'> 

<c:param name='objectID' value='${currentOID}' /> 

</c:import> 

<ul> 

<c:forTokens items'${dataString.split(",")}' var='item'> 

<li>${item}</li> 

</c:forTokens> 

</ul> 

D. <c:import var='dataString' url='/WEB-INF/data'> 

<c:param name='objectID' value='${currentOID}' /> 

</c:import> 

<ul> 

<c:forTokens items'${dataString}' delims=',' var='item'> 

<li>${item}</li> 

</c:forTokens> 

</ul> 

Answer: D

1Z0-899  free exam

Pinpoint 1Z0-899 ebook:

Q67. A cookie may be set to be an HttpOnly cookie. Setting a cookie to be HttpOnly results in (Choose two) 

A. Client to not expose the cookie to client side scripting code 

B. Does not work with https protocol 

C. prevent certain types of cross-site scripting attacks 

D. There is no such thing as an HttpOnly cookie 

Answer: AC 

Q68. Which statement is true about web container session management? 

A. Access to session-scoped attributes is guaranteed to be thread-safe by the web container. 

B. To activate URL rewriting, the developer must use the HttpServletResponse.setURLRewriting method. 

C. If the web application uses HTTPS, then the web container may use the data on the HTTPS request stream to identify the client. 

D. The JSESSIONID cookie is stored permanently on the client so that a user may return to the web application and the web container will rejoin that session. 

Answer: C

Q69.  

HttpSession session = getSession(sessionID); 

Q70. Given the annotation for MyServlet: 

@WebServlet{"/abc") @ServletSecurity (value=@HttpConstraint) 

public class Myservlet extends Httpservlet { 

Which two are true? (Choose two) 

A. No protection of user data must be performed by the transport. 

B. All user data must be encrypted by the transport. 

C. Access is to be denied independent of authentication state and identity. 

D. Only authenticated users are to be permitted. 

E. Access is to be permitted independent of authentication state and identity. 

Answer: BC

About 1Z0-899 Information: 1Z0-899 Dumps

Certleader Dumps
Certleader is a company specialized on providing high quality IT exam materials and fully committed to assist our respected clients crack any IT certification tests on their 1st efforts.