- All Exams Instant Download
For the 'prompt' parameter, there are several values that it can take:
For the 'prompt' parameter, there are several values that it can take:A . 'none' B. 'login' C. 'login consent' D. 'consent' E. 'consent login'View AnswerAnswer: A,B,C,D,E
In either cases: where Okta is the Authorization Server or where you are using a Custom Authorization Server - the ID tokens' lifetime is:
In either cases: where Okta is the Authorization Server or where you are using a Custom Authorization Server - the ID tokens' lifetime is:A . Set to 60 minutes B. Set to 1 minute C. Configurable between 5 minutes and 1 yearView AnswerAnswer: A
'openid' is required for any OpenID request connect flow.
'openid' is required for any OpenID request connect flow.A . If the 'openid' scope value is not present, the request is not a valid OAuth 2.0 request either B. If the 'openid' scope value is not present, the request may still be a valid OAuth 2.0 request and also a...
In regards to OpenID Connect & OAuth 2.0 API, '/.well-known/openid-configuration' is the endpoint which has the following use:
In regards to OpenID Connect & OAuth 2.0 API, '/.well-known/openid-configuration' is the endpoint which has the following use:A . Return OpenID Connect metadata related to the specified authorization server B. Return OAuth 2.0 metadata related to the specified authentication server C. Interact with the resource owner and obtain an authorization...
Which of the following Oauth 2.0 flow(s) supports Access Tokens?
Which of the following Oauth 2.0 flow(s) supports Access Tokens?A . Authorization Code B. Authorization Code with PKCE C. Implicit D. Resource Owner Password E. Client CredentialsView AnswerAnswer: A,B,C,D,E
When you are using a Custom Authorization Server, you can configure the lifetime of the Refresh Tokens and you can even set those with a lifetime of 4 years or even more.
When you are using a Custom Authorization Server, you can configure the lifetime of the Refresh Tokens and you can even set those with a lifetime of 4 years or even more.A . False, due to security issues B. True, but with a limit at 10 years C. TRUE D....
'profile' requests access to these default profile claims:
'profile' requests access to these default profile claims:A . 'name', 'family_name', 'given_name', 'middle_name', 'nickname' B. 'gender', 'birthdate' C. 'profile' D. 'locale'View AnswerAnswer: A,B,C,D
When you are using a Custom Authorization Server, you can configure the lifetime of the JWT tokens.
When you are using a Custom Authorization Server, you can configure the lifetime of the JWT tokens.A . For access tokens the minimum is 60 minutes and the maximum is 1 year B. For access tokens the minimum is 5 minutes and the maximum is 24 hours C. For refresh...
'none' - Use this with clients that don't have a client secret:
'none' - Use this with clients that don't have a client secret:A . Such as applications that use the authorization code flow with PKCE B. Not with applications that use the authorization code flow with PKCE C. Such as applications that use the implicit flow D. Not with applications that...
When using Okta as an authorization server:
When using Okta as an authorization server:A . You can set the audience to the preferred custom service you'll use B. The audience is always set to Okta org itself C. You cannot set the audience D. You cannot set the audience as it can only be used with the...
