假设有以下的web.xml设定档: <security-constraint> <web-resource-collection> <web-resource-name>Login Required</web-resource-name> <url-pattern>/delete.jsp</url-pattern> <url-pattern>/delete.do</url-pattern> <http-method>GET</http-method> <http-method>POST</http-method> </web-resource-collection> <auth-constraint> <role-name>admin</role-name> </auth-constraint> </security-constraint> 以下描述何者正确?