Topic: 350-401 topic 1 question 980
Which security feature does stateless authentication and authorization use for REST API calls?
A.
OAuth 2 tokens
B.
API keys
C.
SSL/TLS certificate encryption
D.
cookie-based session authentication
Re: 350-401 topic 1 question 980
Reference: https://frontegg.com/guides/api-authentication-api-authorization
OAth2 tokens: OAuth 2.0 involves several roles, including the resource owner, the client, the authorization server, and the resource server.
API keys: API key-based authentication involves sending an API key along with a request. An API key is a unique identifier that is issued by the API provider to authorized users or applications, and is used to identify and track API usage.
Since stateless does not requiere a server I think the correct one is B.
Re: 350-401 topic 1 question 980
A- OAuth 2 is a (stateful+ stateless) and can be used for (authentication+ authorization)
B- API keys is a (stateless) and can be used for (authentication)
C- SSL/TLS certificate encryption is a (stateful) and can be used for (authentication)
D- cookie-based session authentication is a (stateful) and can be used for (authentication)
means A is a correct answer
Re: 350-401 topic 1 question 980
Based on this information. it would be A since its asking for "stateless" + "authentication & Authorization"
API Keys from your info is "stateless" + "Authentication"
Re: 350-401 topic 1 question 980
I think A is the right answer.
from chatgpt
OAuth 2 tokens. OAuth 2 is commonly used for stateless authentication and authorization in REST API calls. It allows clients to obtain access tokens from an authorization server, which they can then use to authenticate and authorize their requests to protected resources. These access tokens are typically sent along with API requests to prove the client's identity and permissions.