同上。最好能提供310-081的考纲。多谢了。
參考答案:081大纲
===============================================================Section 1: The Servlet Technology Model
--------------------------------------------------------------------------------
For each of the HTTP Methods (such as GET, POST, HEAD, and so on) describe the purpose of the method and the technical characteristics of the HTTP Method protocol, list triggers that might cause a Client (usually a Web browser) to use the method; and identify the HttpServlet method that corresponds to the HTTP Method.
Using the HttpServletRequest interface, write code to retrieve HTML form parameters from the request, retrieve HTTP request header information, or retrieve cookies from the request.
Using the HttpServletResponse interface, write code to set an HTTP response header, set the content type of the response, acquire a text stream for the response, acquire a binary stream for the response, redirect an HTTP request to another URL, or add cookies to the response.
Describe the purpose and event sequence of the servlet life cycle: (1) servlet class loading, (2) servlet instantiation, (3) call the init method, (4) call the service method, and (5) call destroy method.
Section 2: The Structure and Deployment of Web Applications
--------------------------------------------------------------------------------
Construct the file and directory structure of a Web Application that may contain (a) static content, (b) JSP pages, (c) servlet classes, (d) the deployment descriptor, (e) tag libraries, (d) JAR files, and (e) Java class files; and describe how to protect resource files from HTTP access.
Describe the purpose and semantics of the deployment descriptor.
Construct the correct structure of the deployment descriptor.
Explain the purpose of a WAR file and describe the contents of a WAR file, how one may be constructed.
Section 3: The Web Container Model
--------------------------------------------------------------------------------
For the ServletContext initialization parameters: write servlet code to access initialization parameters; and create the deployment descriptor elements for declaring initialization parameters.
For the fundamental servlet attribute scopes (request, session, and context): write servlet code to add, retrieve, and remove attributes; given a usage scenario, identify the proper scope for an attribute; and identify multi-threading issues associated with each scope.
Describe the Web container request processing model; write and configure a filter; create a request or response wrapper; and given a design problem, describe how to apply a filter or a wrapper.
Describe the Web container life cycle event model for requests, sessions, and web applications;create and configure listener classes for each scope life cycle; create and configure scope attribute listener classes; and given a scenario, identify the proper attribute listener to use.
Describe the RequestDispatcher mechanism; write servlet code to create a request dispatcher; write servlet code to forward or include the target resource; and identify and describe the additional request-scoped attributes provided by the container to the target resource.
Section 4: Session Management
--------------------------------------------------------------------------------
Write servlet code to store objects into a session object and retrieve objects from a session object.
Given a scenario describe the APIs used to access the session object, explain when the session object was created, and describe the mechanisms used to destroy the session object, and when it was destroyed.
Using session listeners, write code to respond to an event when an object is added to a session, and write code to respond to an event when a session object migrates from one VM to another.
Given a scenario, describe which session management mechanism the Web container could employ, how cookies might be used to manage sessions, how URL rewriting might be used to manage sessions, and write servlet code to perform URL rewriting.
Section 5: Web Application Security
--------------------------------------------------------------------------------
Based on the servlet specification, compare and contrast the following security mechanisms: (a) authentication, (b) authorization, (c) data integrity, and (d) confidentiality.
In the deployment descriptor, declare a security constraint, a Web resource, the transport guarantee, the login configuration, and a security role.
Compare and contrast the authentication types (BASIC, DIGEST, FORM, and CLIENT-CERT); describe how the type works; and given a scenario, select an appropriate type.
Section 6: The JavaServer Pages (JSP) Technology Model
--------------------------------------------------------------------------------
Identify, describe, or write the JSP code for the following elements: (a) template text, (b) scripting elements (comments, directives, declarations, scriptlets, and expressions), (c) standard and custom actions, and (d) expression language elements.
Write JSP code that uses the directives: (a) 'page' (with attributes 'import', 'session', 'contentType', and 'isELIgnored'), (b) 'include', and (c) 'taglib'.
Write a JSP Document (XML-based document) that uses the correct syntax.
Describe the purpose and event sequence of the JSP page life cycle: (1) JSP page translation, (2) JSP page compilation, (3) load class, (4) create instance, (5) call the jspInit method, (6) call the _jspService method, and (7) call the jspDestroy method.
Given a design goal, write JSP code using the appropriate implicit objects: (a) request, (b) response, (c) out, (d) session, (e) config, (f) application, (g) page, (h) pageContext, and (i) exception.
Configure the deployment descriptor to declare one or more tag libraries, deactivate the evaluation language, and deactivate the scripting language. 6.7Given a specific design goal for including a JSP segment in another page, write the JSP code that uses the most appropriate inclusion mechanism (the include directive or the jsp:include standard action).
Section 7: Building JSP Pages Using the Expression Language (EL)
--------------------------------------------------------------------------------
Given a scenario, write EL code that accesses the following implicit variables including pageScope, requestScope, sessionScope, and applicationScope, param and paramValues, header and headerValues, cookie, initParam and pageContext.
Given a scenario, write EL code that uses the following operators: property access (the . operator), collection access (the [] operator).
Given a scenario, write EL code that uses the following operators: aritmetic operators, relational operators, and logical operators.
Given a scenario, write EL code that uses a function; write code for an EL function; and configure the EL function in a tag library descriptor.
Section 8: Building JSP Pages Using Standard Actions
--------------------------------------------------------------------------------
Given a design goal, create a code snippet using the following standard actions: jsp:useBean (with attributes: 'id', 'scope', 'type', and 'class'), jsp:getProperty, and jsp:setProperty (with all attribute combinations).
Given a design goal, create a code snippet using the following standard actions: jsp:include, jsp:forward, and jsp:param.
Section 9: Building JSP Pages Using Tag Libraries
--------------------------------------------------------------------------------
For a custom tag library or a library of Tag Files, create the 'taglib' directive for a JSP page.
Given a design goal, create the custom tag structure in a JSP page to support that goal.
Given a design goal, use an appropriate JSP Standard Tag Library (JSTL v1.1) tag from the "core" tag library.
Section 10: Building a Custom Tag Library
--------------------------------------------------------------------------------
Describe the semantics of the "Classic" custom tag event model when each event method (doStartTag, doAfterBody, and doEndTag) is executed, and explain what the return value for each event method means; and write a tag handler class.
Using the PageContext API, write tag handler code to access the JSP implicit variables and access web application attributes.
Given a scenario, write tag handler code to access the parent tag and an arbitrary tag ancestor.
Describe the semantics of the "Simple" custom tag event model when the event method (doTag) is executed; write a tag handler class; and explain the constraints on the JSP content within the tag.
Describe the semantics of the Tag File model; describe the web application structure for tag files; write a tag file; and explain the constraints on the JSP content in the body of the tag.
Section 11: J2EE Patterns
--------------------------------------------------------------------------------
Given a scenario description with a list of issues, select a pattern that would solve the issues. The list of patterns you must know are: Intercepting Filter, Model-View-Controller, Front Controller, Service Locator, Business Delegate, and Transfer Object.
Match design patterns with statements describing potential benefits that accrue from the use of the pattern, for any of the following patterns: Intercepting Filter, Model-View-Controller, Front Controller, Service Locator, Business Delegate, and Transfer Object.
080是scwcd1。3 081是scwcd1。4
==============================================================
区别
SCWCD 1.3
Section 1: The Servlet Model
# 1.1 For each of the HTTP methods, GET, POST, and PUT, identify the corresponding method in the HttpServlet class.
# 1.2 For each of the HTTP methods, GET, POST, and HEAD, identify triggers that might cause a browser to use the method, and identify benefits or functionality of the method.
# 1.3 For each of the following operations, identify the interface and method name that should be used:
# * Retrieve HTML form parameters from the request
# * Retrieve a servlet initialization parameter
# * Retrieve HTTP request header information
# * Set an HTTP response header; set the content type of the response
# * Acquire a text stream for the response
# * Acquire a binary stream for the response
# * Redirect an HTTP request to another URL
# 1.4 Identify the interface and method to access values and resources and to set object attributes within the following three Web scopes:
# * Request
# * Session
# * Context
# 1.5 Given a life-cycle method: init, service, or destroy, identify correct statements about its purpose or about how and when it is invoked.
# 1.6 Use a RequestDispatcher to include or forward to a Web resource.
SCWCD 1.4
1 The Servlet Technology Model
1.1 For each of the HTTP Methods (such as GET, POST, HEAD, and so on) describe the purpose of the method and the technical characteristics of the HTTP Method protocol, list triggers that might cause a Client (usually a Web browser) to use the method; and identify the HttpServlet method that corresponds to the HTTP Method.
1.2 Using the HttpServletRequest interface, write code to retrieve HTML form parameters from the request, retrieve HTTP request header information, or retrieve cookies from the request.
1.3 Using the HttpServletResponse interface, write code to set an HTTP response header, set the content type of the response, acquire a text stream for the response, acquire a binary stream for the response, redirect an HTTP request to another URL, or add cookies to the response.
1.4 Describe the purpose and event sequence of the servlet life cycle: (1) servlet class loading, (2) servlet instantiation, (3) call the init method, (4) call the service method, and (5) call destroy method.
1.5 Objective deleted.
新的1.2、1.3加入了cookie的部分
旧的1.6被并到新的3.5
SCWCD 1.3
Section 2: The Structure and Deployment of Modern Servlet Web Applications
# 2.1 Identify the structure of a Web Application and Web Archive file, the name of the WebApp deployment descriptor, and the name of the directories where you place the following:
# * The WebApp deployment descriptor
# * The WebApp class files
# * Any auxiliary JAR files
# 2.2 Match the name with a description of purpose or functionality, for each of the following deployment descriptor elements:
# * Servlet instance
# * Servlet name
# * Servlet class
# * Initialization parameters
# * URL to named servlet mapping
SCWCD 1.4
2 The Structure and Deployment of Web Applications
2.1 Construct the file and directory structure of a Web Application that may contain (a) static content, (b) JSP pages, (c) servlet classes, (d) the deployment descriptor, (e) tag libraries, (d) JAR files, and (e) Java class files; and describe how to protect resource files from HTTP access.
2.2 Describe the purpose and semantics for each of the following deployment descriptor elements: error-page, init-param, mime-mapping, servlet, servlet-class, servlet-mapping, servlet-name, and welcome-file.
2.3 Construct the correct structure for each of the following deployment descriptor elements: error-page, init-param, mime-mapping, servlet, servlet-class, servlet-mapping, servlet-name, and welcome-file.
2.4 Explain the purpose of a WAR file and describe the contents of a WAR file, how one may be constructed.
新版多了web.xml的<mime-mapping>、<welcome-file>
SCWCD 1.3
Section 3: The Servlet Container Model
# 3.1 Identify the uses for and the interfaces (or classes) and methods to achieve the following features:
# * Servlet context init. parameters
# * Servlet context listener
# * Servlet context attribute listener
# * Session attribute listeners
# 3.2 Identify the WebApp deployment descriptor element name that declares the following features:
# * Servlet context init. parameters
# * Servlet context listener
# * Servlet context attribute listener
# * Session attribute listeners
# 3.3 Distinguish the behavior of the following in a distributable:
# * Servlet context init. parameters
# * Servlet context listener
# * Servlet context attribute listener
# * Session attribute listeners
SCWCD 1.4
3 The Web Container Model
3.1 For the ServletContext initialization parameters: write servlet code to access initialization parameters; and create the deployment descriptor elements for declaring initialization parameters.
3.2 For the fundamental servlet attribute scopes (request, session, and context): write servlet code to add, retrieve, and remove attributes; given a usage scenario, identify the proper scope for an attribute; and identify multi-threading issues associated with each scope.
3.3 Describe the Web container request processing model; write and configure a filter; create a request or response wrapper; and given a design problem, describe how to apply a filter or a wrapper.
3.4 Describe the Web container life cycle event model for requests, sessions, and web applications;create and configure listener classes for each scope life cycle; create and configure scope attribute listener classes; and given a scenario, identify the proper attribute listener to use.
3.5 Describe the RequestDispatcher mechanism; write servlet code to create a request dispatcher; write servlet code to forward or include the target resource; and identify and describe the additional request-scoped attributes provided by the container to the target resource.
新版多了3.3的Filter
SCWCD 1.3
Section 4: Designing and Developing Servlets to Handle Server-side Exceptions
# 4.1 For each of the following cases, identify correctly constructed code for handling business logic exceptions, and match that code with correct statements about the code's behavior: Return an HTTP error using the sendError response method; Return an HTTP error using the setStatus method.
# 4.2 Given a set of business logic exceptions, identify the following: The configuration that the deployment descriptor uses to handle each exception; How to use a RequestDispatcher to forward the request to an error page; Specify the handling declaratively in the deployment descriptor.
# 4.3 Identify the method used for the following: Write a message to the WebApp log; Write a message and an exception to the WebApp log.
此部分被删减并到新版2.2、2.3
SCWCD 1.3
Section 5: Designing and Developing Servlets Using Session Management
# 5.1 Identify the interface and method for each of the following:
# * Retrieve a session object across multiple requests to the same or different servlets within the same WebApp
# * Store objects into a session object
# * Retrieve objects from a session object
# * Respond to the event when a particular object is added to a session
# * Respond to the event when a session is created and destroyed
# * Expunge a session object
# 5.2 Given a scenario, state whether a session object will be invalidated.
# 5.3 Given that URL-rewriting must be used for session management, identify the design requirement on session-related HTML pages.
SCWCD 1.4
4 Session Management
4.1 Write servlet code to store objects into a session object and retrieve objects from a session object.
4.2 Given a scenario describe the APIs used to access the session object, explain when the session object was created, and describe the mechanisms used to destroy the session object, and when it was destroyed.
4.3 Using session listeners, write code to respond to an event when an object is added to a session, and write code to respond to an event when a session object migrates from one VM to another.
4.4 Given a scenario, describe which session management mechanism the Web container could employ, how cookies might be used to manage sessions, how URL rewriting might be used to manage sessions, and write servlet code to perform URL rewriting.
关于session的部分差不多
SCWCD 1.3
Section 6: Designing and Developing Secure Web Applications
# 6.1 Identify correct descriptions or statements about the security issues:
# * Authentication, authorization
# * Data integrity
# * Auditing
# * Malicious code
# * Web site attacks
# 6.2 Identify the deployment descriptor element names, and their structure, that declare the following:
# * A security constraint
# * A Web resource
# * The login configuration
# * A security role
# 6.3 Given an authentication type: BASIC, DIGEST, FORM, and CLIENT-CERT, identify the correct definition of its mechanism.
SCWCD 1.4
5 Web Application Security
5.1 Based on the servlet specification, compare and contrast the following security mechanisms: (a) authentication, (b) authorization, (c) data integrity, and (d) confidentiality.
5.2 In the deployment descriptor, declare a security constraint, a Web resource, the transport guarantee, the login configuration, and a security role.
5.3 Compare and contrast the authentication types (BASIC, DIGEST, FORM, and CLIENT-CERT); describe how the type works; and given a scenario, select an appropriate type.
关于security的部分差
参考资料:scwcd1。4大全
