Spring Security MCQs with answers Page - 5

Here, you will find a collection of MCQ questions on Spring Security. Go through these questions to enhance your preparation for upcoming examinations and interviews.

To check the correct answer, simply click the View Answer button provided for each question.

Have your own questions to contribute? Click the button below to share your MCQs with others!

+ Add Question

A

Arogya • 3.49K Points
Extraordinary

Q. Which method restricts access based on authorities in configuration?

Code:
http.authorizeHttpRequests()
     .requestMatchers("/admin/**") .hasAuthority("ADMIN");
  • (A) hasAuthority()
  • (B) permitAll()
  • (C) denyAll()
  • (D) authenticated()

A

Arogya • 3.49K Points
Extraordinary

Q. Which annotation checks permission after method execution?

  • (A) @PostAuthorize
  • (B) @Autowired
  • (C) @Override
  • (D) @Bean

A

Arogya • 3.49K Points
Extraordinary

Q. Which component handles access denied exceptions?

  • (A) AccessDeniedHandler
  • (B) ExceptionResolver
  • (C) ViewResolver
  • (D) ControllerAdvice

A

Arogya • 3.49K Points
Extraordinary

Q. Which filter validates JWT tokens in Spring Security?

  • (A) OncePerRequestFilter (custom JWT filter)
  • (B) DispatcherServlet
  • (C) CharacterEncodingFilter
  • (D) OpenSessionInViewFilter

A

Arogya • 3.49K Points
Extraordinary

Q. Which HTTP response code is returned when authentication fails?

  • (A) 401 Unauthorized
  • (B) 200 OK
  • (C) 302 Found
  • (D) 500 Internal Server Error

A

Arogya • 3.49K Points
Extraordinary

Q. Which Spring Security component stores authentication information per thread?

  • (A) SecurityContextHolder
  • (B) AuthenticationManager
  • (C) UserDetailsService
  • (D) HttpSession

A

Arogya • 3.49K Points
Extraordinary

Q. Which annotation enables method-level security in Spring?

  • (A) @EnableMethodSecurity
  • (B) @EnableScheduling
  • (C) @EnableCaching
  • (D) @EnableAsync

A

Arogya • 3.49K Points
Extraordinary

Q. What does remember-me authentication do?

  • (A) Stores user password in cookies
  • (B) Keeps user logged in across sessions
  • (C) Disables logout
  • (D) Extends JWT expiration

A

Arogya • 3.49K Points
Extraordinary

Q. Which attack is primarily mitigated by X-Frame-Options header?

  • (A) Clickjacking
  • (B) SQL Injection
  • (C) CSRF
  • (D) MITM

A

Arogya • 3.49K Points
Extraordinary

Q. Which Spring Security feature limits concurrent user sessions?

  • (A) SessionManagement
  • (B) AuthenticationProvider
  • (C) PasswordEncoder
  • (D) CsrfFilter