Software Engineering of Web based Systems CS6320 01 Summer 2011 Midterm Exam II SELECT THE BEST CHOICE Write the answer to the left of the question Name 60 1 An HTTP response consists of the following a status code response headers and response body b status line response headers and response body c status code response headers and response body d status line response headers response body and response footer ANS C 2 Which of the following is not part of the request line in an HTTP request a the URL of the request b the HTTP method ANS C c d the MIME type the version of HTTP 3 What does the following code display in a JSP page import java util Enumeration headerNames request getHeaderNames String name String headerNames nextElement String value request getHeader name tr td align right name td td value td tr a all request headers b the first request header ANS B c d no request headers an error page 4 Which of the following isn t a case in which you would use response headers a To return a file as an Excel spreadsheet b To specify the authentication type to be used c To compress a response d To force the File Download dialob box to be displayed ANS B 5 When you use URL encoding for session tracking you must a convert all HTML pages in the application to JSPs b use the encodeURL method to encode all URLs in the JSPs c use the encodeURL method to encode all URLs in the servlets d a and b above e a b and c above ANS D 6 The following Anchor tag demonstrates how to use a href WorkServlet shift shiftCode View your schedule a a URL rewriting b URL encoding ANS A c d hidden fields cookies 7 When you use hidden fields to pass parameters to a servlet or JSP all but one of the following is true Which one is it a the parameters aren t shown in the URL b the user can see the parameters by using the browser to look at the page s source code c you don t have to store the parameters in the session object d None of the above ANS D 8 If you use the MVC pattern with EL a the servlets create the JavaBeans and set the bean properties b the servlets create the JavaBeans and the JSPs set the bean properties c the JSPs create the JavaBeans and set the bean properties d the JSPs create the JavaBeans and the servlets set the bean properties ANS A 9 Before a server uses SSL to transmit data to a client it a provides a digital secure certificate to the client b decrypts all data c confirms the identity of the client d authorizes the client ANS A 10 A digital secure certificate is provided a for a fee from a certificate authority b free from a certificate authority ANS A c d for a fee from a registration authority free from a registration authority 11 The maximum SSL strength for an application s connections is determined by a the SSL methods that you use b the certification authority c the registration authority d the digital secure certificate ANS D 12 Once you establish a secure connection the application a returns to a non secure connection for subsequent requests b uses absolute URLs to continue using the secure connection c continues to use a secure connection until an absolute URL specifies a non secure connection d continues to use a secure connection until until a relative URL specifies a non secure connection ANS C 13 In Tomcat a security constraint is coded in a the web xml file b the server xml file ANS A c d the context xml file the application 14 Which of the following is not included in a security constraint a b c the URL pattern for the restricted resources the authorized roles for accessing the restricted resources the authorized usernames for accessing the restricted resources ANS C 15 The security realm provides the authorized a usernames and passwords b usernames and roles ANS C c d usernames passwords and roles passwords and roles 16 By default Tomcat uses a security realm that stores the user data in a the web xml file b the server xml file ANS D c d a database the tomcat users xml file 17 When an application uses basic authentication a the username and password are encrypted before being sent to the server b a dialog box automatically prompts the user for a username and password c the usernames and passwords are stored in the tomcat users xml file d the web xml file provides the path for the login page ANS B 18 When an application uses form based authentication a the username and password are encrypted before being sent to the server b a dialog box automatically prompts the user for a username and password c the usernames and passwords are stored in the tomcat users xml file d the web xml file provides the path for the login page ANS D 19 Which of the following can not be stored in the mail session object a the protocol that s used to send the message c the port that s used by the mail server ANS D b the host computer for the mail server d None of the above 20 A session object is created a every time a browser makes a request for a web page b every time a browser requests a servlet c every time a browser requests a jsp d None of the above ANS D FILL IN THE MISSING BLANKS 27 Select the best fit from the following word or words request response request parameters WEB INF META INF tomcat doPost doGet JSP servlet JSTL JDBC JavaBeans AJAX web xml ServletContext init attributes cookie URL rewriting set get self signed context xml Context event 1 To automatically append the session ID to a URL you can use the encodeURL method of the object ANS response 2 Instead of storing data that s used for a single request in the session object you can use hidden fields or ANS URL rewriting 3 One of the advantages that EL has over standard JSP tags is that you can not only use EL with but also with maps arrays and lists ANS JavaBeans 4 One of the disadvantages of using EL is that it doesn t provide a way to properties ANS set 5 You use the auth method element in the file to specify the type of authentication that s going to be used by the application ANS web xml 6 To control how a browser caches a page you would set the cache control header in the object ANS response 7 To get the cookies that are available from an HTTP request you can use the getCookies method to work with the header ANS cookie 8 Before you use a listener you must use the file to register the listener class ANS web xml 9 All of the methods for …