AWS Certified Developer Associate DVA-C02 Practice Question
When developing a cloud-based solution that exposes a set of HTTP endpoints to its users, which technique should a developer implement to ensure that each incoming request is both authenticated and authorized before granting access to the underlying resources?
Integrate Amazon API Gateway with a Lambda authorizer that checks OAuth tokens for client identity verification on each interaction.
Configure the application to fetch and use static access credentials from AWS Systems Manager Parameter Store for each service request.
Develop a bespoke authentication system within a Lambda function that generates and validates JSON Web Tokens before each service interaction.
Deploy AWS Security Token Service within the client’s scope to regularly assume an IAM role necessary for service interaction.
Incorporating Amazon API Gateway with a Lambda authorizer that utilizes OAuth tokens ensures that each request is verified for authenticity. The Lambda authorizer can validate the token's integrity and expiration, as well as enforce access control, making it an optimal choice for securing serverless applications without embedding security checks directly into the application logic.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a Lambda authorizer?
Open an interactive chat with Bash
What are OAuth tokens and how do they work?
Open an interactive chat with Bash
What is the difference between authentication and authorization?
Open an interactive chat with Bash
AWS Certified Developer Associate DVA-C02
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access