NEW QUESTION 1
You are developing an ASP.NET Core MVC web application that provides assets to external websites including images, JavaScript scripts and text files.
The external websites must be able to make full use of assets provided to them by the web application, including JavaScript asynchronous HTTP requests.
Pages that refer to the images and text files do not load. External websites are unable to use assets. You need to resolve the issues.
What should you do?

• A. Add a MVC controller and action to load the files from the folder.
• B. In the startup Configure method, call IApplicationBuilde
• C. Use StaticFiles for the folder that contains the files.
• D. In the startup ConfigureServices method, call IServiceCollectio
• E. Add DirectoryBrowser for the folder that contains the files.
• F. Mark vendor provided files as content and set the value for Copy to Output Directory to CopyAlways

Answer: B

Explanation: References:
https://docs.microsoft.com/en-us/aspnet/core/fundamentals/middleware/?view=aspnetcore-2.1&tabs=aspnetcore

NEW QUESTION 2
You are designing an enterprise-level Windows Communication Foundation (WCF) application. User accounts will migrate from the existing system. The new system must be able to scale to accommodate the increasing load.
The new servers are experiencing significant stress under load of large-scale role changes. You need to ensure that the application can handle the stress.
Which authorizations should you redesign? (Each correct answer presents a complete solution. Choose all that apply.)

• A. Role-based approach
• B. Identity-based approach
• C. Resource-based trusted subsystem model
• D. Resource-based impersonation/delegation model

Answer: AC

NEW QUESTION 3
You need to configure session storage in the web.config file to meet the technical requirements for
scalability.
Which SessionState mode should you use? (Each correct answer presents a complete solution.
Choose all that apply.)

• A. StateServer
• B. InProc
• C. AutoDetect
• D. SqlServer

Answer: AD

NEW QUESTION 4
You need to ensure that all the MVC controllers are secure.
Which code segment should you use as the body for the CreateController method in AdminVerifierFactory.cs?

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: C

NEW QUESTION 5
You are authoring unit tests.
The unit tests must test code that consumes sealed classes.
You need to create, maintain, and inject dependencies in the unit tests. Which isolation method should you use?

• A. T4 text templates and code generation
• B. Stub types
• C. Shim types
• D. Hard-coded implementation

Answer: C

Explanation: Shim types are one of two technologies that the Microsoft Fakes Framework uses to let you easily isolate components under test from the environment. Shims divert calls to specific methods to code that you write as part of your test. Many methods return different results dependent on external conditions, but a shim is under the control of your test and can return consistent results at every call. This makes your tests much easier to write.
References:
http://msdn.microsoft.com/en-us/library/hh549176.aspx

NEW QUESTION 6
HOT SPOT
You need to implement the mobile device support requirements.
How should you build the ProcessRequest method? (To answer, select the appropriate options in the answer area.)

Answer:

Explanation:

NEW QUESTION 7
You deploy an ASP.NET MVC Web application to Internet Information Services (IIS). The application has a secure area that provides access to custom reports.
You must develop custom business logic to support the reports. The custom business logic has the following requirements:

You must be able to quickly modify and deploy updates to the business logic. You need to develop the custom business logic.
What should you do?

• A. Update the report logic to include the custom business logi
• B. Use WebDAV to publish the reports to the server.
• C. Develop a new HTTP module that includes the custom business logi
• D. Deploy the HTTP module to IIS.
• E. Develop a new HTTP handler that includes the custom business logi
• F. Deploy the HTTP handler to IIS.
• G. Develop a new ISAPI filter that includes the custom business logi
• H. Deploy the ISAPI filter to IIS.

Answer: C

Explanation: An ASP.NET HTTP handler is the process that runs in response to a request that is made to an ASP.NET Web application.
ASP.NET maps HTTP requests to HTTP handlers based on a file name extension. Incorrect:
Not B: HTTP modules differ from HTTP handlers. An HTTP handler returns a response to a request that is identified by a file name extension or family of file name extensions. In contrast, an HTTP module is invoked for all requests and responses. It subscribes to event notifications in the request pipeline and lets you run code in registered event handlers.
References: https://msdn.microsoft.com/en-us/library/bb398986.aspx

NEW QUESTION 8
The date of the run must be displayed in ViewsRunlogGetLog.cshtml. The timestamp must not be displayed.
You need to display the date of the run according to the business requirements. Which code segment should you use?

• A. @Html.DisplayFor(model => log.ShortDate)
• B. @log.RunDate.ToString()
• C. @log.RunDate.ToShortDateString()
• D. @Html.DisplayFor(model => log.RunDate)

Answer: A

Explanation: The log file has the ShortDate function which is defined as: Return RunDate.ToLocalTime().ToShortDateString();
This meets the requirement. Note:
Scenario:
* The application uses the ModelsLogModel.cs model.
* The Html.DisplayFor method is typically used to display values from the object that is exposed by the Model property.
The DisplayExtensions.DisplayFor<TModel, TValue> method (HtmlHelper<TModel>, Expression<Func<TModel, TValue>>)
Returns HTML markup for each property in the object that is represented by the Expression expression.
Incorrect:
Not D: The RunDate attribute is defined as DateTime, but the timestamp (the time of day), should not be displayed.
References:
https://msdn.microsoft.com/en-us/library/system.web.mvc.html.displayextensions.displayfor(v=vs.118).aspx

Case Study: 2, Web Application
Background
You are developing an online shopping web application. Business Requirements
✑ A user is not required to provide an email address. If a user enters an email address, it must be verified to be a valid email address.
✑ Information about the first product on the product page must fade out over time to
encourage the user to continue browsing the catalog.
✑ Administrators must be able to edit information about existing customers.
✑ Administrators also must be able to specify a default product on the product page.
Technical Requirements General:
✑ The web store application is in a load-balanced web farm. The load balancer is not configured to use server affinity.
✑ The web store application is an ASP.NET MVC application written in Visual Studio 2012.
Products:
✑ The value of the productId property must always be greater than 0.
✑ The Products page for mobile devices must display to mobile users. The Products page for desktop devices must display to desktop users.
Storage:
✑ The data must be stored in a serialized XML data format.
✑ Serialized objects must be schema-independent.
Exception handling:
✑ Exceptions originating from IIS must display a page with support contact information.
✑ Some page links expire, and users who access these links encounter 404 errors.
✑ Exceptions must be logged by using the WriteLog method of the Utility class.
Browser and device support:
✑ The application must support image format conversions from .bmp to .jpeg for mobile devices.
✑ The application must support image format conversions from .bmp to .png for desktop devices.
Application Structure

NEW QUESTION 9
You are developing an ASP.NET web application.
You need to ensure that the application can securely render user-generated content
What are two possible ways to achieve this goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
A)

B)

C)

• A. Option A
• B. Option B
• C. Option C

Answer: AB

NEW QUESTION 10
You need to implement client-side animations according to the business requirements.
Which line of code should you use? (Each correct answer presents a complete solution. Choose all that apply.)

• A. $("body h1:nth-child(1)").fadeIn(1000);
• B. $("body h1:nth-child(1)")-fadeOut(1000);
• C. $("body h2:nth-child(1)").animate({ opacity: 0 });
• D. $("body h1:nth-child(1)").animate({ opacity: 1 });

Answer: BC

NEW QUESTION 11
HOTSPOT
You are developing an ASP.NET MVC application that has pages for users who browse the site with
Windows Phone 7.
The pages for Windows Phone 7 include the following files:

You need to update the application so that it renders the customized files correctly to Windows Phone 7 users. You have the following code:

How should you update the Application_Start method? (To answer, select the appropriate option from the drop-down list in the answer area.)

Answer:

Explanation:

NEW QUESTION 12
You are developing an ASP.NET MVC application that delivers real-time game results to sports fans. The application includes the following code. Line numbers are included for reference only.

The source data for the game results is updated every 30 seconds. Testers report the following issues with the application:

You need to correct the performance issues.
Which two changes should you make to the code? Each correct answer presents part of the solution.

• A. Replace the code at line 07 with the following code segment:[OutputCache(Duration = 30, VaryByParam = “none”, Location = OutputCacheLocation.Client, NoStore = true)]
• B. Replace the code at line 12 with the following code segment:[OutputCache(Duration = 30, VaryByParam = “none”, Location = OutputCacheLocation.Server, NoStore = true)]
• C. Replace the code at line 07 with the following code segment:[OutputCache(Duration = 3600, VaryByParam = “none”, Location = OutputCacheLocation.Server, NoStore = false)]
• D. Replace the code at line 12 with the following code segment:[OutputCache(Duration = 3600, VaryByParam = “none”, Location = OutputCacheLocation.Client, NoStore = true)]

Answer: AB

Explanation: B: They report delays in seeing the latest game results. This is the output of the GetResults() function. We decrease the Duration in the cache for this function from 3600 to 30. This is one line 12.
A: They report seeing other user's name when they sign in to the application. This is the output of the GetUserInfo() function. We should change the OutputCacheLocation of the caching of this function from Server to Client. This is on line 7.
Note: The OutputCacheLocation.Client option indicates that the content should be cached at the requesting client. Any requests for the same resource made from the same client within the expiry period, will be served out the client’s cache, without a network request being made to the server.
The OutputCacheLocation.Server option indicates that the content will be cached at the origin server. This content will be served for subsequent requests made by the initial client and any other client requesting the same resource within the expiry period.
References: https://growlycode.wordpress.com/2014/01/10/mvc4-outputcache-location-basics/

NEW QUESTION 13
You need to implement the requirements for handling IIS errors. What should you do?

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: A

NEW QUESTION 14
You are developing an ASP.NET MVC application that supports multiple cultures and multiple languages. The application will be sold to international customers.
The ASP.NET MVC application must store localized content in satellite assemblies for multiple languages. You need to generate the satellite assemblies during an automated build.
Which tool should you use?

• A. Gacutil.exe
• B. Al.exe
• C. Ildasm.exe
• D. nasm.exe

Answer: B

Explanation: Use the Assembly Linker (Al.exe) to compile .resources files into satellite assemblies. Al.exe creates an
assembly from the .resources files that you specify. By definition, satellite assemblies can only contain resources. They cannot contain any executable code.
The following Al.exe command creates a satellite assembly for the application MyApp from the file strings.de.resources.
al /t:lib /embed:strings.de.resources /culture:de /out:MyApp.resources.dll References: https://technet.microsoft.com/en-us/library/21a15yht(v=vs.85)

NEW QUESTION 15
DRAG DROP
You are developing an ASP.NET MVC application that allows users to log on by using a third-party authenticator.
You need to configure Microsoft Azure Access Control Services and the application.
Which five actions should you perform in sequence? (To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.)

Answer:

Explanation: Box 1: Create a service namespace
The first step is to create an ACS Namespace. This is your Security Token Services (STS) that will generate Signed Identity tokens to be consumed by WAP. This will also be the only STS that WAP will trust.
Box 2: Register the application as a relaying partner.
Now that the Namespace is created, you will have to tell it about the WAP Portals that is expecting tokens from it. We add the WAP Tenant Portal as a Relying Party to ACS (Access Control Services).
Box 3: Add a Security Token Service (STS) reference in Visual Studio 2012.
Now that the Namespace is created, you will have to tell it about the WAP Portals that is expecting tokens from it.
1. Click on Relying Party Applications and click on Add to add the Windows Azure Pack tenant Portal as a Relying Party to this namespace. This essentially tells the ACS namespace that the Tenant Portal is expecting it to provide user identities.
2. You will now go to the Add Relying Party Application page where you can enter details about the WAP tenant Portal.
3. The easier option is to provide the federation Metadata from the tenant portal. Save the XML file locally on your computer
4. Now back in the ACS management portal, Upload the federation metadata file and provide a Display Name for the Relying Party.
5. Scroll Down to the Token Format section and choose the token format to be 'JWT'. By Default, the Windows Live Identity Provider will be selected. Deselect it if you do not want to allow users to sign in using their Live id. Under the Token Signing Settings section, select X.509 Certificate as the Type. Click on Save.
Box 4: Add the third-party as the identity provider.
We have our ACS and WAP portals setup. We now have to find a source of Identities that can be flown in to the WAP Portals through ACS. We configure external services to act as Identity Providers
Box 5: Generate provider rules for claims
We now have our Relying Party and our Identity Providers set up. We should now tell ACS how to transform the incoming Claims from these Identity providers so that the Relying Party can understand it. We do that using Rule Groups which are a set of rules that govern Claim Transformation. Since, we have two identity Providers, we will have to create a rule for each of these.
References:
https://blogs.technet.microsoft.com/privatecloud/2014/01/17/setting-up-windows-azure-active-directory-acs-to-p

NEW QUESTION 16
You create an ASP.NET MVC application. You host the application by using the Open Web Interface for
.N ET (OWIN). You run the following command by using the NuGet Package Manager console:
install-package Microsoft.AspNet.SignalR
You plan to implement real-time push notifications from the server using ASP.NET SignalR. You need to complete the ASP.NET SignalR implementation.
Which three steps should you perform? Each correct answer presents part of the solution.

• A. Create a hub class to push content to clients.
• B. Create a class that derives from the PersistentConnection clas
• C. Use the derived class to push content to clients.
• D. Use the SignalR jQuery library in a web page to send messages to the hub and display updates from the hub.
• E. Map a SignalR hub to the app builder pipeline by using an OWIN startup class.
• F. Start the SignalR hub asynchronously and respond to the appropriate callback methods.

Answer: ACD

Explanation: A: In Solution Explorer, right-click the project, select Add | New Folder, and add a new folder named Hubs. Right-click the Hubs folder, click Add | New Item, select the Visual C# | Web | SignalR node in the Installed
pane, select SignalR Hub Class (v2) from the center pane, and create a new hub named ChatHub.cs. You will use this class as a SignalR server hub that sends messages to all clients.
C: Use the SignalR jQuery library in a web page to send messages and display updates from the hub. D: Create an OWIN startup class to configure the application.
References: https://www.asp.net/signalr/overview/getting-started/tutorial-getting-started-with-signalr-and-mvc

NEW QUESTION 17
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are developing an ASP.NET Core MVC web application.
The application must be exposed to external users over ports 80 and 443 and must meet the following requirements:
• Handle more than 1024 simultaneous connections.
• Support Windows authentication.
• Support HTTP/2 over TLS.
• Include response caching.
• Protect against denial-of-service attacks.
You need to deploy the application to an on-premises web server. Solution: You deploy the application to a standalone Kestrel server. Does the solution meet the goal?

• A. Yes
• B. No

Answer: B