ExamGecko
Search Search Login
Home Home / Cisco / 200-901
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

How are operations on REST APIs performed as compared to RPC APIs?
Refer to the exhibit. A developer can access the TLS REST API on server A, but cannot access the API on server B. The developer can ping server B. When the developer performs a packet capture on the TLS REST API port on server B, the capture shows that the packet arrived and the server responded. What causes the issue?
Where is an IP packet routed if the packet does not match any routes in the routing table?
What should a CI/CD pipeline aim to achieve?
A developer is trying to retrieve data over a REST API. The API server responds with an HTTP client error response code. After investigating the response the developer realizes the response has a RetryAfter header. What is the root cause of this error?
What is the Git command to delete a local branch named “experiment” without a warning?
Which Cisco compute management platform controls server, network, storage, and virtual resources with policy-driven management for up to 10000 physical Cisco servers?
What is a component of the first stage of an application development CI/CD pipeline?
What is a benefit of test-driven development?
What is the function of an IP address in networking?

Question 450 - 200-901 discussion

Report
Export

A resource named /item is protected by oAuth2 authentication. An endpoint named /login must request authentication. Which method must be used to access the resource by using the REST API?

A.

Make a GET call to /login that includes the username and password, and retrieve a token to insert into the /item call.

Answers
A.

Make a GET call to /login that includes the username and password, and retrieve a token to insert into the /item call.

B.

Make a POST call to /login including the user credentials in the message, and retrieve a token to insert into the authorization header of the /item call.

Answers
B.

Make a POST call to /login including the user credentials in the message, and retrieve a token to insert into the authorization header of the /item call.

C.

Make a GET call to /item, then make a call to /login that includes the username and password in the body of the message, and wait for the authorization code.

Answers
C.

Make a GET call to /item, then make a call to /login that includes the username and password in the body of the message, and wait for the authorization code.

D.

Make a POST call to /item that includes the username and password in the body of the request message, and submit it to request access.

Answers
D.

Make a POST call to /item that includes the username and password in the body of the request message, and submit it to request access.

Suggested answer: B

Explanation:

When using OAuth2 authentication for accessing a protected resource via a REST API, the typical flow involves obtaining an access token which can then be used to authenticate subsequent API requests. The correct process is:

POST Call to /login: Make a POST request to the /login endpoint with the user credentials (username and password) in the request body. This call will authenticate the user and, if successful, return an access token.

Use the Token: Use the retrieved token by including it in the Authorization header (usually as a Bearer token) in the request to access the protected resource, in this case, the /item endpoint.

OAuth 2.0 Authorization Framework - RFC 6749

Show Answer
asked 07/10/2024
Brian Lester
33 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms