0
0
Postmantesting~20 mins

Inheriting auth from collection in Postman - Practice Problems & Coding Challenges

Choose your learning style9 modes available
LearnWhyDeepTraceTryChallengeAutomateRecallFrame
Challenge - 5 Problems
🎖️
Postman Auth Inheritance Master
Get all challenges correct to earn this badge!
Test your skills under time pressure!
🧠 Conceptual
intermediate
2:00remaining
How does Postman inherit authentication from a collection?

In Postman, when a request does not have its own authentication set, how does it inherit authentication from the collection?

AThe request uses the authentication method defined at the collection level automatically.
BThe request prompts the user to manually select authentication each time it runs.
CThe request ignores collection authentication and runs without any authentication.
DThe request inherits authentication only if the environment variable is set.
Attempts:
2 left
💡 Hint

Think about default behaviors in Postman when no auth is set on a request.

Predict Output
intermediate
2:00remaining
What is the effective Authorization header sent by this request?

Given a Postman collection with Bearer Token auth set to abc123, and a request inside the collection with no auth set, what Authorization header will the request send?

Postman
{
  "collectionAuth": {
    "type": "bearer",
    "bearer": [{"key": "token", "value": "abc123", "type": "string"}]
  },
  "requestAuth": null
}
AAuthorization: Bearer abc123
BAuthorization: Bearer null
CNo Authorization header sent
DAuthorization: Basic abc123
Attempts:
2 left
💡 Hint

Remember how bearer tokens are formatted in headers.

assertion
advanced
2:00remaining
Which test script assertion correctly verifies inherited auth header?

You want to write a test script in Postman to check if the Authorization header sent matches the collection's Bearer Token abc123. Which assertion is correct?

Postman
pm.test('Authorization header is correct', () => {
  const authHeader = pm.request.headers.get('Authorization');
  // Assertion goes here
});
Apm.expect(authHeader).to.include('abc1234');
Bpm.expect(authHeader).to.equal('Basic abc123');
Cpm.expect(authHeader).to.eql('Bearer abc123');
Dpm.expect(authHeader).to.be.undefined;
Attempts:
2 left
💡 Hint

Check exact match of the Authorization header value.

🔧 Debug
advanced
2:00remaining
Why does this request fail to send auth despite collection auth set?

A request inside a collection with OAuth 2.0 auth set at collection level fails with 401 Unauthorized. The request has Inherit auth from parent enabled. What could cause this?

APostman does not support inheriting OAuth 2.0 tokens.
BThe collection auth token expired and was not refreshed.
CThe environment variables for OAuth token are missing.
DThe request has its own auth type set to 'No Auth', overriding the collection auth.
Attempts:
2 left
💡 Hint

Check if the request auth settings override collection auth.

framework
expert
3:00remaining
How to programmatically verify a request inherits collection auth in Postman test scripts?

In a Postman test script, you want to confirm that the current request is using the collection's authentication settings (i.e., it inherits auth). Which approach correctly verifies this?

ACheck if <code>pm.request.auth.type</code> equals the collection auth type string.
BCheck if <code>pm.request.auth.type</code> is <code>null</code> or <code>undefined</code>, indicating inheritance from collection.
CCheck if <code>pm.request.headers.get('Authorization')</code> is empty.
DCheck if <code>pm.variables.get('auth_inherited')</code> is true.
Attempts:
2 left
💡 Hint

Requests inherit auth when they have no auth type set themselves.