Protected resources should be mapped to which handler?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Study for the EC-Council Certified Security Specialist (ECSS) Test. Enhance your skills with flashcards and multiple-choice questions; each question provides hints and explanations. Prepare confidently for your exam!

Multiple Choice

Protected resources should be mapped to which handler?

When a client attempts to access a resource that is protected, the server should clearly indicate that access is not allowed, even though the resource exists. This is communicated with a 403 Forbidden response. The handler that maps protected resources to this behavior is the one that generates that forbidden response, HttpForbiddenHandler.

HttpForbiddenHandler is appropriate because it signals that authentication was provided but the client does not have the necessary permissions, or the request is otherwise disallowed. NotFound would mislead by saying the resource doesn’t exist, which isn’t true for a protected resource. Redirect would push the client elsewhere, which is a different pattern and not a direct denial. HttpAllowedHandler would imply access is permitted, contradicting protection.

Protected resources should be mapped to which handler?

Study for the EC-Council Certified Security Specialist (ECSS) Test. Enhance your skills with flashcards and multiple-choice questions; each question provides hints and explanations. Prepare confidently for your exam!

Protected resources should be mapped to which handler?

Get the latest from Examzify