I passed SCWCD with 98%. Like everybody I am big fan of Head First Series!
I have some questions unanswered.
1. In a case two overlapping <security-constraint> elements, if first one has <auth-constraint /> (empty) and if second one has no <auth-constraint> element, then what is the answer or is it a DD declaration error? 2. Is <body-content> tag mandatory for custom tag handlers. Head First says it is! But there are many examples that don't have <body-content> mentioned at all! If JSP is default value, and bodies in simple tag handlers must not have scriptings elements (JSPFragment) then what is default value for Simple tag handlers since there is no visible difference in DD for both Simple and Classic Tag handlers.
Well you can say try it out practically! But I would like to get some reasons why it is so. (Also I am bit lazy).