A developer is frustrated by frequent reauthentication requests in a microservices application. The application uses tokens, and the rotation frequency causes users to lose active sessions. What action best addresses this complaint?
Store fixed credentials in code for simpler usage
Extend user sessions beyond standard guidelines
Suspend credential rotation updates for a subset of services
Implement a refresh mechanism for session credentials when updates occur
Rotation protects credentials from compromise. A refresh setup allows updating session credentials without forcing every user to log out, helping maintain security and convenience. Suspended rotation or embedding credentials in code invites potential exploitation. Extending sessions beyond recommended guidelines can reduce protective measures and raise exposure risks.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a token in the context of a microservices application?
Open an interactive chat with Bash
How does a refresh mechanism for session credentials work?
Open an interactive chat with Bash
Why is embedding credentials in code considered insecure?