JavaThinking.com
Toggle Menu
Home
Online Kotlin Compiler
Tutorials
Spring Boot
Spring Cloud
Spring Data
Spring MVC
Spring Security
Blog
All Posts
Spring Security OAuth2
Test your skills in OAuth2,OpenID Connect,and JWT-based authentication.
1. Which OAuth2 grant type is recommended for server-side web applications?
Authorization Code
Implicit
Password
Client Credentials
2. Which of the following are core OAuth2 grant types?
Authorization Code
PKCE
Implicit
Refresh Token
3. Spring Security OAuth2 requires the use of JWT tokens.
True
False
4. What does OAuth stand for? (full form)
5. Which dependency is required to enable a legacy Authorization Server in Spring Security OAuth2?
spring-security-oauth2
spring-security-oauth2-authorization-server
spring-boot-starter-security
spring-web
6. Which responsibilities belong to a Resource Server in OAuth2?
Validate access tokens
Serve protected resources
Authenticate end-users
Issue access tokens
7. The 'scope' parameter in OAuth2 requests specifies the specific permissions the client is requesting.
True
False
8. What term describes the application that requests access to a user's resources via OAuth2?
9. Which token is used to obtain a new access token without re-authenticating the user?
Refresh Token
Access Token
ID Token
JWT Token
10. Which steps are part of the OAuth2 Authorization Code flow?
User authenticates with the Authorization Server
Client receives an authorization code
Client exchanges the code for access/refresh tokens
Client stores the user's password
Reset
Answered 0 of 0 — 0 correct