Configurations

Question 1

the configuration object for config.xml

Answer 1

Magento\Framework\App\Config.

Question 2

logical component that organizes code for optimized request processing

Answer 2

An area

Question 3

Commerce framework is organized into what main areas?

Answer 3

Admin (adminhtml)
Storefront (frontend)
Basic (base)
Cron (crontab)

Question 4

what class always loads the ‘crontab’ area?

Answer 4

\Magento\Framework\App\Cron

Question 5

an area that is used as a fallback for files absent in adminhtml and frontend areas.

Answer 5

Basic (base)

Question 6

entry point for admin area

Answer 6

pub/index.php

Question 7

the code needed for store management can be found in what area?

Answer 7

The Admin panel area

Question 8

what area contains template and layout files that define the appearance of your storefront.

Answer 8

frontend

Question 9

what directory contains all the code for components you’ll see while working in the Admin?

Answer 9

/app/design/adminhtml directory

Question 10

with what areas you send requests to the Commerce framework?

Answer 10

Web API REST (webapi_rest)
GraphQL (graphql)
Web API SOAP (webapi_soap)

Question 11

entry point for webapi_rest?

Answer 11

pub/index.php

Question 12

how does URL look up for rest area happens?

Answer 12

The REST area has a front controller that understands how to do URL lookups for REST-based URLs.

Question 13

entry point for GraphQl?

Answer 13

pub/index.php

Question 14

entry point for webapi_soap?

Answer 14

pub/index.php

Question 15

Disabling an area does not result in disabling the modules related to it. (True/False)

Answer 15

True

Question 16

where are areas registered?

Answer 16

di.xml

Question 17

how does adobe commerce interpret the HTTP request that arrives state the format?

Answer 17

[frontName]/[controller folder]/[controller class]

Question 18

what is the class for catalog/product_compare/add?

Answer 18

Magento/Catalog/Controller/Product/Compare/Add.php

Question 19

the controller folders are separated with dash, * or line or _?

Answer 19

underscore

Question 20

what method gets executed on controller?

Answer 20

only the execute() method of any given controller is executed.

Question 21

the scope for Shipping Methods in B2B

Answer 21

Global

Question 22

what is Offloader Header scope?

Answer 22

Global

Question 23

how to identify the protocol between the client and load balancer?

Answer 23

Offloader Header value

Question 24

what is default vaLUE FOR offloaded header?

Answer 24

X-Forwarded-Proto (XFP)

Question 25

what is yes on Upgrade Insecure Requests?

Answer 25

converts unsecure (HTTP) requests received from the browser to the secure (HTTPS) protocol.

Question 26

what does Enabling HTTP Strict Transport Security (HSTS) do?

Answer 26

provides a measure of security against “man in the middle” attacks, and prevents users from overriding the “invalid certificate” message.

Question 27

in what condition you can choose to run the store Admin, with or without SSL encryption?

Answer 27

If your domain has a security certificate.

Question 28

what is the scope for Use Secure URLs in Admin?

Answer 28

Global

Question 29

what is the scope for Use Secure URLs on Storefront?

Answer 29

Store view

Question 30

what is the scope for Secure Base URL for User Media Files?

Answer 30

Store view

Question 31

the scope for cookie life time, Cookie Domain and cookie path?

Answer 31

Store View

Question 32

what field Determines if Commerce Cookies can be used only over an unsecure channel (http), or can also be used over an encrypted channel (https).

Answer 32

Use HTTP Only

Question 33

what field Verifies that the IP Address of a request matches $_SESSION data?

Answer 33

Validate REMOTE_ADDR to yes

Question 34

what does Validate HTTP_VIA do?

Answer 34

if yes, Verifies incoming proxy data and checks that the proxy address of a request matches $_SESSION data. The session terminates if a different proxy address is detected.

Question 35

name all 4 Session Validation configuration settings?

Answer 35

Validate REMOTE_ADDR
Validate HTTP_VIA
Validate HTTP_x_FORWARDED_FOR
Validate HTTP_USER_AGENT

Question 36

what is scope for Cookie Restriction Mode?

Answer 36

Website

Question 37

what is the scope for Base Currency?

Answer 37

Website or Global depends what was set on price catalog scope

Question 38

What is the scope for Default Display Currency?

Answer 38

Store View

Question 39

what is the scope for Allowed Currencies?

Answer 39

Store View

Question 40

what is fixer.io?

Answer 40

Foreign exchange
rates and currency
conversion JSON API

Question 41

what is the scope for API key and Connection Timeout in Seconds for fixer.io?

Answer 41

Global

Question 42

what options frequency has for scheduled import configurations?

Answer 42

daily/weekly/monthly

Question 43

What field Specifies the month and day upon which the year-to-date calculations are based?

Answer 43

Year-to-Date Starts

Question 44

What field Specifies the day of the month that is used in calculations to mark the beginning of the current month?

Answer 44

Current Month Starts

Question 45

collection of statistics scope for fields?

Answer 45

Global

Question 46

what is the scope for WYSIWYG Editor?

Answer 46

Website

Question 47

what is the scope for Use Static URLs for Media Content in WYSIWYG?

Answer 47

Global

Question 48

in cms configurations, what does Enable Hierarchy Metadata do?

Answer 48

Gives you the ability to associate meta data with pages in the hierarchy.

Question 49

options for Default Layout for Hierarchy Menu?

Answer 49

Content, Right column, Left Column

Question 50

how many currencies in the world adobe commerce accepts?

Answer 50

more than 200 countries around the world.

Question 51

set the display of the price can be done in what scopes?

Answer 51

separately for each store or view.

Question 52

If you have a multisite Adobe Commerce or Magento Open Source installation, you can manage multiple base currencies by…………?

Answer 52

by setting the scope to the website level.

Question 53

base currency is set to what by default?

Answer 53

It is set to global by default,

Question 54

the base currency scope is defined by?

Answer 54

the catalog price scope- catalog->price->catalog price scope

Question 55

Set Catalog Price Scope to either …….

Answer 55

Global or Website

Question 56

name 2 currency service connection?

Answer 56

fixer.io and Currency Converter API

Question 57

how to update the currency rates?

Answer 57

update the rates manually or to import the rates automatically.

Question 58

3 Redis features ?

Answer 58

PHP session storage
Tag-based cache cleanup without foreach loops
On-disk saves and master/slave replication

Question 59

find your Redis configuration in one of the following files?

Answer 59

/etc/redis/redis.conf or /etc/redis/<port>.conf</port>

Question 60

How To optimize the Redis instance for your requirements?

Answer 60

using a dedicated instance for each session, Commerce cache and FPC.

Question 61

name 2 persistence options of redis?

Answer 61

Redis Database Backup (RDB)
Append Only File (AOF)

Question 62

what does Redis Database Backup (RDB) do?

Answer 62

Redis Database Backup (RDB) snapshots store the complete database in a dump file after a given time, when a minimum number of keys have changed since the last save. Use the save setting inside the redis.conf file to configure this setting.

Question 63

what does Append Only File (AOF) in redis do?

Answer 63

Append Only File (AOF) stores each write operation sent to Redis in a journal file. Redis reads this file on restart only and uses it to restore the original dataset.

Question 64

AOF files are usually ……. than the equivalent RDB files for the same dataset.

Answer 64

bigger

Question 65

AOF can be …… than RDB depending on the exact fsync policy

Answer 65

slower

Question 66

If you care a lot about your data, but still can live with a few minutes of data loss in case of disasters, you can simply use

Answer 66

RDB alone

Question 67

There are many users using …… alone, but redis discourage it since to have an —- snapshot from time to time is a great idea for doing database backups, for faster restarts, and in the event of bugs in the AOF engine.

Answer 67

AOF
RDB

Question 68

By default Redis saves snapshots of the dataset on disk, in a binary file called …..

Answer 68

dump.rdb

Question 69

for in linux

Answer 69

create a child process

Question 70

how much should be the redis cache instance?

Answer 70

As a starting point, you can use the size of the cache folder on your file system. For example, if the var/cache folder on your file system is 5 GB, set up your Redis instance with at least 5 GB to start. Persistence is not required for the cache instance because the Commerce cache can be restored.

Question 71

performance options on redis

Answer 71

lazyfree-lazy-eviction yes
lazyfree-lazy-expire yes
lazyfree-lazy-server-del yes
replica-lazy-flush yes
6.x or later redis:
lazyfree-lazy-user-del yes

Question 72

commandline for redis setup

Answer 72

bin/magento setup:config:set –cache-backend=redis –cache-backend-redis-<parameter_name>=<parameter_value>...</parameter_value></parameter_name>

Question 73

To configure Redis page caching

Answer 73

bin/magento setup:config:set –page-cache=redis –page-cache-redis-<parameter_name>=<parameter_value>...</parameter_value></parameter_name>

Question 74

enables Redis page caching, sets the host to 127.0.0.1 and assigns the database number to 1.all others set to default

Answer 74

bin/magento setup:config:set –page-cache=redis –page-cache-redis-server=127.0.0.1 –page-cache-redis-db=1

Question 75

what is required in redis if you use Redis for both the default and full page cache.

Answer 75

Important: If you use Redis for more than one type of caching, the database numbers must be different. It is recommended that you assign the default caching database number to 0, the page-caching database number to 1, and the session storage database number to 2. 0

Question 76

how to On install the Redis client on the EC2 instance?

Answer 76

sudo apt-get install redis

Question 77

Configure Commerce to use Redis for session storage:

Answer 77

bin/magento setup:config:set –session-save=redis –session-save-redis-host=<ElastiCache> --session-save-redis-port=<ElastiCache> --session-save-redis-log-level=4 --session-save-redis-db=2</ElastiCache></ElastiCache>

Question 78

extended Redis cache implementation in etc/env.php

Answer 78

‘cache’ => [
‘frontend’ => [
‘default’ => [
‘backend’ => ‘\Magento\Framework\Cache\Backend\Redis’,
‘backend_options’ => [
‘server’ => ‘127.0.0.1’,
‘database’ => ‘0’,
‘port’ => ‘6379’
],
],
],

Question 79

In case you are using the preload feature with the L2 cache, do not forget to add the……suffix to your keys, since L2 cache only transfers the hash of the data, not the data itself:

Answer 79

:hash

Question 80

L2 cache only transfers the ….. of the data, not the data itself:

Answer 80

hash

Question 81

what is L2 cache?

Answer 81

A level 2 cache (L2 cache) is a CPU cache memory that is located outside and separate from the microprocessor chip core

Question 82

Redis ping command?

Answer 82

redis-cli ping

Question 83

Redis monitor command?

Answer 83

redis-cli monitor

Question 84

what is response of redis ping?

Answer 84

pong

Question 85

what tool in redis supports automatic decompression of Commerce 2 Session and Page cache and displays PHP session data in a human-readable form. ?

Answer 85

RESP.app-GUI for Redis

Question 86

parameters for enabling Redis session storage?

Answer 86

–session-save=redis

Question 87

default value for session-save-redis-compression-threshold?

Answer 87

2048

Question 88

how to disable compression in redis?

Answer 88

session-save-redis-compression-threshold=0

Question 89

options for compression lib in redis?

Answer 89

Options: gzip, lzf, lz4 or snappy.

Question 90

default value for session-save-redis-compression-lib

Answer 90

gzip

Question 91

session-save-redis-log-level options?

Answer 91

Set to any of the following, listed in order from least verbose to most verbose:
0 (emergency: only the most severe errors)
1 (alert: immediate action required)
2 (critical: application component unavailable)
3 (error: runtime errors, not critical but must be monitored)
4 (warning: additional information, recommended)
5 (notice: normal but significant condition)
6 (info: informational messages)
7 (debug: the most information for development or testing only)

Question 92

how to set log level for redis to the only the most severe errors?

Answer 92

0

Question 93

what is 5 in log level of redis?

Answer 93

(notice: normal but significant condition

Question 94

how to have the most info on log level of redis?

Answer 94

set session-save-redis-log-level to 7 (debug: the most information for development or testing only)

Question 95

name 4 essential initialization routines happening in app/bootstrap.php

Answer 95

1- error handling
2-initialing the autoloader
3- setting profiling options
4-setting the default timezone

Question 96

in catching exceptions in bootstrap what happens in true/false?

Answer 96

If true: Commerce handled exception successfully. No need to do anything else.
If false: (or any other empty result) Commerce did not handle the exception. The bootstrap object performs the default exception-handling subroutine.

Question 96

bootstrap run logic , what 4 steps should happen before starting the application?

Answer 96

Initializes the error handler.

Creates the object manager and basic shared services that are used everywhere and are affected by the environment. The environment parameters are injected properly into these objects.

Asserts that maintenance mode is not enabled; otherwise, terminates.

Asserts that the Commerce application is installed; otherwise, terminates.

Question 97

bootstrap object file name?

Answer 97

/app/bootstrap.php /

Question 98

an application for retrieving static resources ?

Answer 98

\Magento\Framework\App\StaticResource

Question 99

how avoid potential exploits on the server?

Answer 99

The entry point for static view files is not used in production mode ,In production mode, the Commerce application expects that all necessary resources exist in the <your>/pub/static directory.</your>

Question 100

in what mode the content of the file is returned so that every time the resource is requested, the returned content is up to date?

Answer 100

developer mode

Question 101

in what mode the retrieved resource is published so it is accessible by the previously requested URL?

Answer 101

default mode

Question 102

in what mode bootstrap shows exception as is?

Answer 102

developer mode

Question 103

in what mode bootstrap attempts to log exception and display a generic error message?

Answer 103

any mode except developer mode

Question 104

what’s error code for default exception handling in bootstrap?

Answer 104

Terminates Commerce with error code 1

Question 105

what is edit resource entry point?

Answer 105

Magento\MediaStorage\App\Media

Question 106

——– attempts to find the media file in the configured ———and and write it into the ——– directory, then return its ——.

Answer 106

\Magento\Core\App\Media
database storage
pub/static
contents

Question 107

\Magento\Core\App\Media On error, returns an ….. status code in the —— with ——

Answer 107

HTTP 404 (Not Found)
header
no contents

Question 108

HTTP entry point Error handling
If you are using developer mode:
If the Commerce application is not installed, ——–
If the Commerce application is installed, display an error and HTTP status code 500 (Internal Server Error).

Answer 108

redirect to Setup Wizard.

Question 109

HTTP entry point Error handling
If you are using developer mode:

If the Commerce application is installed, display an error and HTTP status code ——–

Answer 109

500 (Internal Server Error).

Question 110

HTTP entry point Error handling
If the Commerce application is in maintenance mode, display a user-friendly “Service Unavailable” landing page with———

Answer 110

HTTP status code 503 (Service Unavailable).

Question 111

If the Commerce application is not installed, ——–

Answer 111

redirect to Setup Wizard.

Question 112

If the session is invalid,———

Answer 112

redirect to the home page.

Question 113

If there is any other application initialization error, display a user-friendly “Page Not Found” page with ———-

Answer 113

HTTP status code 404 (Not Found).

Question 114

On any other error, display a user-friendly “Service Unavailable” page with HTTP response ———

Answer 114

e with HTTP response 503 and generate an error report and display its ID on the page.

Question 115

what is maintenance parameter on bootstrap file?

Answer 115

$params[Bootstrap::PARAM_REQUIRE_MAINTENANCE]

Question 116

what is default value for $params[Bootstrap::PARAM_REQUIRE_MAINTENANCE] ?

Answer 116

false

Question 117

what is default value for $params[Bootstrap::PARAM_REQUIRE_IS_INSTALLED] ?

Answer 117

true

Question 118

what is input for $bootstrap->createApplication(X?)?

Answer 118

Magento\Framework\App\Http

Question 119

in what mode Exceptions are not displayed to the user; instead, exceptions are written to log files.?

Answer 119

default, production

Question 120

what mode Hides custom X-Magento-* HTTP request and response headers?

Answer 120

default

Question 121

in what mode You can configure maintenance mode to allow visitor access from a specified list of IP addresses.?

Answer 121

maintenance mode

Question 122

how to Redirects site visitors to a default Service Temporarily Unavailable page.?

Answer 122

maintenance mode

Question 123

what mode Enables automatic code compilation?

Answer 123

developer mode

Question 124

what mode Shows custom X-Magento-* HTTP request and response headers?

Answer 124

developer mode

Question 125

what mode Serves static view files from cache only?

Answer 125

production

Question 126

what mode enables you to deploy the Commerce application on a single server without changing any settings?

Answer 126

default

Question 127

in what modes Static view files are cached?

Answer 127

default

Question 128

in what mode You cannot enable or disable cache types using the Admin.?

Answer 128

production

Question 129

in what mode Static view files are not materialized, and URLs for them are composed on the fly.

Answer 129

production

Question 130

in what mode An exception is thrown when an event subscriber cannot be invoked?

Answer 130

developer

Question 131

in what mode Static view files are not cached; they are written to the pub/static directory every time they are called?

Answer 131

developer

Question 132

when application runs a deployment script, If the app/etc/config.php file does not exist in the codebase, static files are ———–and deployed during this phase. This ——– the length of your deploy phase and site maintenance.

Answer 132

compressed using gzip
increases

Question 133

what file defines how to build and deploy Adobe Commerce, including user access, service mapping (relationships), hooks, cron jobs, and more.

Answer 133

.magento.app.yaml

Question 134

defines the system-specific settings Adobe Commerce uses to configure your store. Adobe Commerce generates this file if it does not detect it during the build phase

Answer 134

app/etc/config.php

Question 135

defines the services Adobe Commerce uses by name and version. For example, this file can include versions of MySQL, PHP extensions, and Elasticsearch or OpenSearch. These are referred to as services.

Answer 135

.magento/services.yaml

Question 136

defines how Adobe Commerce processes an incoming URL.

Answer 136

.magento/routes.yaml

Question 137

centralizes the management of build and deploy actions across all of your environments, including Pro Staging and Production, using environment variables.

Answer 137

.magento.env.yaml

Question 138

user access, service mapping (relationships), hooks, cron jobs, a are in what file?

Answer 138

.magento.app.yaml

Question 139

how to view logs in magento cloud?

Answer 139

You can view logs using the magento-cloud log command.

Question 140

build phase

Answer 140

During the build phase, the site is not in maintenance mode and will not be brought down if errors or issues occur. We build only what has changed since the last build.

Question 141

how to change Fastly API token credentials?

Answer 141

submit a ticket to adobe support

Question 142

what is apex domain?

Answer 142

An apex domain is a custom domain that does not contain a subdomain,

Question 143

name common attacks that vastly can avoid?

Answer 143

Ping of Death, Smurf attacks, as well as other ICMP-based floods.

Question 144

Fastly manages the TCP level attacks at the———

Answer 144

cache layer

Question 145

DDOS protection is built-in to the ——- service.

Answer 145

FAstly CDN

Question 146

For attacks targeting ……, the Fastly service filters out ———-

Answer 146

layer 3 or 4
traffic based on port and protocol,

Question 147

The apex domain (testweb.com and www.testweb.com) is linked to the Adobe Commerce on cloud infrastructure Fastly service account. You want to manage Fastly services for the service.testweb.com and product-updates.testweb.com subdomains from a ——- Fastly account.Submit a Adobe Commerce support ticket requesting that the subdomains be delegated from the Adobe Commerce on cloud infrastructure Fastly service account to the Fastly account. Include the ——– for the Fastly account in the ticket.

Answer 147

different
Service ID

Question 148

how to Block traffic by IP?

Answer 148

the most effective way to block traffic by specific IP addresses and subnets is adding an ACL for Fastly in the Commerce Admin. Following are the steps with links to more detailed instructions:
Stores > Configuration > Advanced > System > Full Page Cache > Fastly Configuration.
Create a new ACL with a list of IP addresses or subnets you’re going to block.
Add it to the ACL list and block as described in the Blocking guide for the Fastly_Cdn module for Adobe Commerce.

Question 149

Block by country?

Answer 149

For the Adobe Commerce on cloud infrastructure store, the most effective way to block traffic by country(s) is adding an ACL for Fastly in the Commerce Admin.

In the Commerce Admin, navigate to Stores > Configuration > Advanced > System > Full Page Cache > Fastly Configuration.
Select the countries and configure blocking using ACL as described in the Blocking guide for the Fastly_Cdn module for Adobe Commerce.

Question 150

To establish blocking based on user agent,?

Answer 150

To establish blocking based on user agent, you need to add a custom VCL snippet to your Fastly configuration. To do this, take the following steps:

In the Commerce Admin, navigate to Stores > Configuration > Advanced > System > Full Page Cache.
Then Fastly Configuration > Custom VCL Snippets.
Create the new custom snippet as described in the Custom VCL snippets guide for the Fastly_Cdn module. You can use the following code sample as an example. This sample disallows traffic for the AhrefsBot and SemrushBot user agents.
name: block_bad_useragents
type: recv
priority: 5
VCL:
if ( req.http.User-Agent ~ “(AhrefsBot|SemrushBot)” ) {
error 405 “Not allowed”;
}

Question 151

what is rate limiting?

Answer 151

Rate limiting is a strategy for limiting network traffic.

Question 152

There is an experimental Fastly functionality for Adobe Commerce on cloud infrastructure which allows you to specify the …….for particular paths

Answer 152

rate limit

Question 153

Fastly works with —— to provide fast caching capabilities and a Content Delivery Network (CDN) for static assets

Answer 153

Varnish

Question 154

Get Fastly credentials for Staging and Production environments
Enable Fastly CDN caching
Upload Fastly ………
Update ——- to ——- traffic to the Fastly service
Test Fastly caching

Answer 154

VCL snippets
DNS configuration, rout

Question 155

file to get Fastly credentials?

Answer 155

/mnt/shared/fastly_tokens.txt

Question 156

command to get Fastly credentials?

Answer 156

magento-cloud variable:get -e <environment></environment>

Question 157

environment variables for Fastly

Answer 157

CONFIG__DEFAULT__SYSTEM__FULL_PAGE_CACHE__FASTLY__FASTLY_API_KEY

CONFIG__DEFAULT__SYSTEM__FULL_PAGE_CACHE__FASTLY__FASTLY_SERVICE_ID

Question 158

DNS setting for Fastly

Answer 158

For Pro Staging and Production:
mcprod.<your-domain>.com
mcstaging.<your-domain>.com
For Starter Production only:
mcprod.<your-domain>.com</your-domain></your-domain></your-domain>

Question 159

how to check version of Fastly installed?

Answer 159

composer show fastly

Question 160

curl command to check response headers?

Answer 160

curl -vo /dev/null -H Fastly-Debug:1 https://<live-URL></live-URL>

Question 161

command with resolution bypass of dns

Answer 161

curl -vo /dev/null -H Fastly-Debug:1 –resolve <live-URL-hostname>:443:<live-IP-address></live-IP-address></live-URL-hostname>

Question 162

response that Fastly is working

Answer 162

< Fastly-Magento-VCL-Uploaded: yes
< X-Cache: HIT, MISS

Question 163

domains and subdomains for Fastly can configurations

Answer 163

DOMAIN OR SUBDOMAIN CNAME
mcprod.your-domain.com prod.magentocloud.map.fastly.net
mcstaging.your-domain.com prod.magentocloud.map.fastly.net

Question 164

When the CNAME records are live, Adobe——-certificates and uploads the ——

Answer 164

provisions, SSL/TLS certificates.

Question 165

image optimization features by Fastly

Answer 165

Force lossy conversion
Deep image optimization
Adaptive pixel ratios
Support for common image formats: PNG, JPEG, GIF, and WebP

Question 166

. Image optimization only applies to —– images. —— images are not resized.

Answer 166

product, CMS

Question 167

Deep image optimization is —– by default. When this feature is —-, the built-in resizing feature in Adobe Commerce is turned —– and resizing work is ——- to the Fastly IO service.

Answer 167

off, enabled,off,offloaded

Question 168

The Adaptive pixel ratios feature is useful to optimize images for ——– web applications. It allows you to deliver multiple image sizes and resolutions from —— image source file by adding a —– for each product image.

Answer 168

Progressive, one,srcset

Question 169

The standard WAF service powered by Fastly does not support what features?

Answer 169

Protection against malware or bot mitigation
Rate limiting
Configuring a logging endpoint for customer

Question 170

what benefits The WAF service provides ?

Answer 170

CI compliance—WAF enablement ensures that Adobe Commerce storefronts in Production environments meet PCI DSS 6.6 security requirements.
Default WAF policy—The default WAF policy, configured and maintained by Fastly, provides a collection of security rules tailored to protect your Adobe Commerce web applications from a wide range of attacks, including injection attacks, malicious inputs, cross-site scripting, data exfiltration, HTTP protocol violations, and other OWASP Top Ten security threats.
WAF onboarding and enablement—Adobe deploys and enables the default WAF policy in your Production environment within 2 to 3 weeks after provisioning is final.
Operations and maintenance support—
Adobe and Fastly set up and manage your logs and alerts for the WAF service.
Adobe triages customer support tickets related to WAF service issues that block legitimate traffic as Priority 1 issues.
Automated upgrades to the WAF service version ensure immediate coverage for new or evolving exploits.

Question 171

collection of security rules in Fastly avoids what attacks?

Answer 171

range of attacks, including injection attacks, malicious inputs, cross-site scripting, data exfiltration, HTTP protocol violations,

Question 172

what does WAF do? the WAF in adobe commerce is powered by whom?

Answer 172

detects, logs, and blocks malicious request traffic before it can damage your sites or network. , FASTLY

Question 173

customize Fastly error?

Answer 173

In the right pane, expand Full Page Cache > Fastly Configuration > Custom Synthetic Pages.

Question 174

how to Retrieve the IP address of your store?

Answer 174

nslookup {your_project_id}.ent.magento.cloud

and for integration
nslookup gw.{your_region}.magentosite.cloud

Question 175

If any block in a layout is designated as uncacheable, the entire page is uncacheable.

Answer 175

uncacheable

Question 176

name some Examples of uncacheable pages

Answer 176

compare products, cart, checkout pages

Question 177

Only HTTP — and —- requests are cacheable.

Answer 177

GET ,HEAD

Question 178

The list of resources that you can access depends on your …….Permissions required to access particular resource are configured in the ——

Answer 178

user type,webapi.xml

Question 179

if administrators are authorized for the Magento_Customer::group resource, they can make a ……..

Answer 179

GET /V1/customerGroups/:id call.

Question 180

user type for Resources with anonymous or self permission

Answer 180

Customer

Question 181

user type for Resources with anonymous permission

Answer 181

Guest

Question 182

A guest or anonymous is a special permission that doesn’t need to be defined in —–

Answer 182

acl.xml

Question 183

what is a special access used if you already have an authenticated session with the system?

Answer 183

self

Question 184

For example,——– fetches the logged-in customer’s details. This is typically useful for …….

Answer 184

GET /V1/customers/me ,JavaScript-based widgets

Question 185

<route>
33 <service></service>
34 <resources>
35 <resource></resource>
36 </resources>
37 <data>
38 <parameter>%customer_id%</parameter>
39 </data>
). It just indicates that the current resource in webapi.xml can be accessed -------- the need for authentication.
</route>

Answer 185

without

Question 186

—- access enables a user to access resources they own.

Answer 186

self

Question 187

authentication method for your clients:

Answer 187

Mobile application authentication
Third-party application authentication
JavaScript widget authentication (storefront or Admin)

Question 188

Mobile application. 1………..authentication.
Third-party application. 2-…. authentication.
JavaScript widget on the Admin or storefront. 3—– authentication.

Answer 188

1-Token-based
2-OAuth-based
3-Session-based

Question 189

access token types in token authentication ?

Answer 189

Integration
Admin
Customer

Question 190

DEFAULT LIFETIME for Integration, admin and customer token

Answer 190

Integration The merchant determines which Commerce resources the integration can access. Indefinite. It lasts until it is manually revoked.

Admin The merchant determines which Commerce resources an admin user has access to. 4 hours

Customer Commerce grants access to resources with the anonymous or self permission. Merchants cannot edit these settings. 1 hour

Question 191

make a web API call with an admin token:

Answer 191

curl -X GET “http://<host>/rest/default/V1/customers/2" -H "Authorization: Bearer vbnf3hjklp5iuytre"</host>

Question 192

make a web API call with a customer token:

Answer 192

curl -X GET “http://<host>/rest/default/V1/customers/me" -H "Authorization: Bearer asdf3hjklp5iuytre"</host>