REST Authentication | Day 61 (part two)

0.0(0)
Studied by 0 people
call kaiCall Kai
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/11

encourage image

There's no tags or description

Looks like no tags are added yet.

Last updated 8:37 PM on 6/8/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai

No analytics yet

Send a link to your students to track their progress

12 Terms

1
New cards

Which form of REST API authentication uses a username/password combination?

Basic authentication

2
New cards

In REST API Basic authentication, credentials are encoded in [format].

Base64

3
New cards

Is Base64 encoding secure?

No. Encoding is easily reversible; it is not encryption.

4
New cards

REST API Bearer authentication uses a […] for authentication.

token (also called a bearer token)

5
New cards

In REST API Basic authentication, in which part of the message are the credentials included?

In the HTTP Authorization header

6
New cards

In REST API Bearer authentication, in which part of the message are the credentials included?

In the HTTP Authorization header

7
New cards

In REST API Bearer authentication, are the bearer tokens valid indefinitely?

No; they expire after a set period of time

8
New cards

API key authentication uses a […] key issued by the API provider.

static (non-expiring)

9
New cards

In API key authentication, in which part of the message should the client specify the key?

The HTTP Authorization header (recommended).
*Other options: URL, cookie

10
New cards

REST API […] authentication provides access delegation.

OAuth 2.0

11
New cards

What are the four entities in OAuth 2.0?

Resource owner
Client app
Auth server
Resource server

12
New cards

OAuth 2.0: A […] can be used to renew access tokens without user reauthentication.

refresh token