Now can someone help me answer this question?
Northwind Traders is a chain of department stores located around the country. It is setting up a new sales system cashiers will use to accept payments from customers. As a pilot project, you are creating a Windows application to implement a new sales system in one of the stores. You want to use an existing Web Service in this Windows application. You have implemented security and ensured that only the users in the cashiers group and the store manager can access the sales system. Because of certain financial requirements, the sales application also needs to be accessed by Nancy, and accountant at that store. However, the XML Web service is not configured to ensure access control. Which of the following tasks ensure that only authorized users can access XML Web services? (Choose one correct option.)
A. In the web.config file, insert the following lines of code:
<authorization> <allow role="Cashiers, Managers"/> <allow users="Nancy"/> <deny users="*"> <deny users="?"></authorization>B. In the web.config file, insert the following lines of code:
<authorization> <deny users="*"> <allow users="Nancy"/> <allow role="Cashiers, Managers"/> <deny users="?"></authorization>C. In the web.config file, insert the following lines of code:
<authorization> <allow users="*"> <allow users="Nancy"/> <allow role="Cashiers, Managers"/> <deny users="?"></authorization>D. In the web.config file, insert the following lines of code:
<authorization> <allow users="?"> <deny users="*"> <allow users="Nancy"/> <allow role="Cashiers, Managers"/></authorization>
I would have assumed that B was the correct answer, but it looks like they wanted A. Or would A and B do the same thing?