spring-security

Question 1

Define authentication

Answer 1

It is the process of verifying the identity of the user based on the credentials provided

Question 2

Define authorization

Answer 2

It is the process of determining if the user has access to a particular data, assuming that user is authenticated.

Question 3

Define Principle

Answer 3

The currently authenticated user.

Question 4

Define Granted authority

Answer 4

Permissions given to the authenticated user

Question 5

Define role

Answer 5

Group of permissions for a particular user.

Question 6

Which maven dependency is required to initialize a spring boot web app

Answer 6

spring-boot-starter-web

Question 7

Which maven dependency automatically adds spring security to the app

Answer 7

spring-boot-starter-security

Question 8

which property is used to set password for spring secured apps

Answer 8

spring.security.web.password in application.properties

Question 9

what is the spring-boot default login and logout page?

Answer 9

localhost:8080/hello/login | localhost:8080/hello/logout

Question 10

DaoAuthenticationProvider fetches details of user from ___

Answer 10

UserDetailsService

Question 11

Which class does Security configurer extend?

Answer 11

WebSecurityConfigurerAdapter

Question 12

Which annotation is required by the security configure class?

Answer 12

@EnableWebSecurity

Question 13

This overloaded method is used to configure security two times

Answer 13

protected configure(AuthenticationManagerBuilder auth);
public configure(HttpSecurity http)