[Solved] A developer wrote this code snippet to revoke an API key: function revokeKey(key) { if key in activeKeys: activeKeys.remove(key) else:... | Microservices

Microservices - Authentication and Authorization

A developer wrote this code snippet to revoke an API key:

function revokeKey(key) {
  if key in activeKeys:
    activeKeys.remove(key)
  else:
    print('Key not found')
}

But the key is still accepted after revocation. What is the likely issue?

AThe remove method does not delete keys properly

BThe key is not removed from the validKeys list used for validation

CThe function does not print 'Key revoked' message

DThe key is being re-added automatically elsewhere

Step-by-Step Solution

Solution:

Step 1: Understand key revocation logic
The function removes the key from activeKeys, but validation likely checks validKeys.
Step 2: Identify mismatch in key storage
If validation uses validKeys and revoke removes from activeKeys, the key remains valid.
Final Answer:
The key is not removed from the validKeys list used for validation -> Option B
Quick Check:
Revocation must remove key from validation list [OK]

Quick Trick: Revoking must remove key from validation store [OK]

Common Mistakes:

MISTAKES

Master "Authentication and Authorization" in Microservices

9 interactive learning modes - each teaches the same concept differently

More Microservices Quizzes

A developer wrote this code snippet to revoke an API key: