Developing ASP.NET MVC 4 Web Applications
Question No: 71 HOTSPOT – (Topic 4)
You develop a new ASP.NET MVC web application. The application is hosted in an Azure Web Role. It includes the following code. Line numbers are included for reference only.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Question No: 72 – (Topic 4)
You are developing an ASP.NET MVC application in Visual Studio 2012. The application supports multiple cultures.
The application contains three resource files in the Resources directory:
Each file contains a public resource named Currency with the localized currency symbol. The application is configured to set the culture based on the client browser settings.
The application contains a controller with the action defined in the following code segment. (Line numbers are included for reference only.)
You need to set ViewBag.LocalizedCurrency to the localized currency contained in the resource files.
Which code segment should you add to the action at line 03?
ViewBag.LocaIizedCurrency = Resources.ProductDictionary.Currency;
VievBag.LocalizedCurrency = HttpContext.GetGlobalResourceObject(quot;ProductDictionaryquot;, quot;Currencyquot;, new System.Globalization.CultureInfo(Menquot;));
VievBag.LocalizedCurrency = HttpContext.GetLocalResourceObject(quot;ProductDictionaryquot;, quot;Currencyquot;);
ViewBag.LocalizedCurrency = HttpContext.GetGlobalResourceObject(quot;ProductDictionaryquot;, quot;Currencyquot;);
Answer: A Explanation:
Only the Resources class is used.
Question No: 73 – (Topic 4)
You are developing an ASP.NET MVC application that uses forms authentication. The application uses SQL queries that display customer order data.
Logs show there have been several malicious attacks against the servers.
You need to prevent all SQL injection attacks from malicious users against the application. How should you secure the queries?
Check the input against patterns seen in the logs and other records.
Escape single quotes and apostrophes on all string-based input parameters.
Implement parameterization of all input strings.
Filter out prohibited words in the input submitted by the users.
Answer: C Explanation:
SQL Injection Prevention, Defense Option 1: Prepared Statements (Parameterized Queries)
The use of prepared statements (aka parameterized queries) is how all developers should first be taught how to write database queries. They are simple to write, and easier to understand than dynamic queries. Parameterized queries force the developer to first define all the SQL code, and then pass in each parameter to the query later. This coding style allows the database to distinguish between code and data, regardless of what user input is supplied.
Prepared statements ensure that an attacker is not able to change the intent of a query, even if SQL commands are inserted by an attacker.
Question No: 74 – (Topic 4)
You are preparing for the deployment of an ASP.NET MVC application. You need to generate a deployment manifest.
Which command-line tool should you use?
Answer: A Explanation:
The Manifest Generation and Editing Tool (Mage.exe) is a command-line tool that supports the creation and editing of application and deployment manifests.
Not B: The Native Image Generator (Ngen.exe) is a tool that improves the performance of managed applications. Ngen.exe creates native images
Not C: Al.exe generates a file with an assembly manifest, not an deployment manifest, from one or more files that are either resource files or Microsoft intermediate language (MSIL) files.
Not D: Resgen.exe, the Resource File Generator, converts text (.txt or .restext) files and XML-based resource format (.resx) files to common language runtime binary (.resources) files that can be embedded in a runtime binary executable or compiled into satellite assemblies.
References: http://www.devcurry.com/2011/02/important-net-framework-40-command- line.html
Question No: 75 HOTSPOT – (Topic 4)
You are developing an ASP.NET MVC application that authenticates a user by using claims-based authentication.
The application must:
You need to implement authentication.
How should you build the class constructor? (To answer, select the appropriate option from the drop-down list in the answer area.)
Question No: 76 – (Topic 4)
You are implementing a website redesign of an existing website that provides historical weather condition maps.
The current layout resembles the graphic in the exhibit. (Click the Exhibit button.)
Year selection is implemented as a set of links, which causes the page to reload when the user changes the year. The year selection HTML is contained in a div with an id of quot;year- selectorquot;.
You need to modify the page so that the user can change the year without the page reloading.
You also need to ensure that there is minimal change to the design of the page. Which code segment should you use?
Answer: D Explanation:
HTML5 slider contains min and max properties:
min Minimum value of the range. Default minimum value is 0.
maxMaximum value of the range. Default maximum value is 100. Incorrect:
Not A: HTML5 slider contains quot;rangequot; property, but it used for enabling and configuring
Question No: 77 HOTSPOT – (Topic 4)
You develop an ASP.NET MVC application. You are creating a new layout page by using the Razor view engine.
The layout page has the following requirements:
You need to implement the layout page.
How should you complete the relevant Razor markup? To answer, select the appropriate Razor markup from each list in the answer area.
Box 1: @Styles.Render(quot;~/Content/cssquot;)
Render a StyleBundle named ~/Content/css.
@Styles.Render(quot;~/Content/cssquot;) is calling the files included in that particular bundle which is declared inside the BundleConfig class in the App_Start folder.
Box 2: @RenderSection(quot;featuredquot;, true)
Render the content of a section named featured just above the body of the page. RenderSection renders only a part child view that is wrapped under named section. RenderSection() method includes boolean parameter quot;requiredquot; which makes the section optional or mandatory. If required parameter is true then the child view must contain the section.
Box 3: @RenderSection(quot;scriptsquot;, false)
Render the content of a section named scripts at the bottom of the layout page.
http://stackoverflow.com/questions/12028401/styles-render-in-mvc4 http://www.tutorialsteacher.com/articles/difference-between-renderbody-and-rendersection- mvc
Question No: 78 HOTSPOT – (Topic 4)
You are developing an ASP.NET MVC application that has pages for users who browse the site with Windows Phone 7.
The pages for Windows Phone 7 include the following files:
You need to update the application so that it renders the customized files correctly to Windows Phone 7 users.
You have the following code:
How should you update the Application_Start method? (To answer, select the appropriate option from the drop-down list in the answer area.)
Question No: 79 – (Topic 4)
You are developing an ASP.NET MVC application to be used on the Internet. The environment does not use Active Directory.
Users must be able to log on to the application to maintain their personal preferences.
You need to use the least amount of development effort to enable users to log on. What should you do?
Enable Digest authentication.
Enable Windows authentication.
Enable Forms authentication.
Generate server SSL certificates and install them in IIS.
Answer: C Explanation:
Many Web applications require a way to restrict access to some resources (such as specific pages) so that those resources are accessible only to authenticated users. The default Web application project template for ASP.NET MVC provides a controller, data models, and views that you can use to add ASP.NET forms authentication to your application. The built-in functionality lets users register, log on and off, and change their password. For many applications, this functionality provides a sufficient level of user authentication.
Not B: Windows authentication would require an Active Directory.
Windows authentication method works only if the following two conditions exist:
/ You set up your network to use the Kerberos authentication protocol that requires Active Directory.
/ You set up the computers and accounts on your network as trusted for delegation. References: https://msdn.microsoft.com/en-us/library/ff398049(VS.98).aspx
Question No: 80 – (Topic 4)
You are developing an Azure worker role. You enable crash dump collection for the role. When the role starts, an external application stops responding.
You need to download the crash dump to determine why the application stops responding.
From which two locations can you download the crash dump? Each correct answer presents a complete solution.
Azure Blob storage
the temp folder on the virtual machine that is running the role instance
Azure file storage
the DiagnosticStore local resource folder on the virtual machine that is running the role instance
Answer: A,D Explanation:
When you enable collection of crash dumps, the resulting data is written to the CrashDumps directory in the DiagnosticStore local resource that is automatically configured for your role.
When crash dump data is transferred to persistent storage, it is stored to the wad-crash- dumps Blob container.
|Lowest Price Guarantee||Yes||No||No|
|Free VCE Simulator||Yes||No||No|