Bird
0
0

Why does OAuth 2.0 separate the roles of Authorization Server and Resource Server?

hard📝 Conceptual Q10 of 15
Rest API - Authentication and Authorization
Why does OAuth 2.0 separate the roles of Authorization Server and Resource Server?
ATo reduce the number of tokens issued
BTo allow independent scaling and security management
CTo simplify client registration
DTo avoid using HTTPS
Step-by-Step Solution
Solution:

  1. Step 1: Understand role separation

    Authorization Server handles authentication and token issuance; Resource Server protects data.

  2. Step 2: Reason about benefits

    Separating roles allows each to scale and secure independently, improving flexibility and security.

  3. Final Answer:

    To allow independent scaling and security management -> Option B

  4. Quick Check:

    Role separation = better scaling and security [OK]
Quick Trick: Separate servers for better security and scaling [OK]
Common Mistakes:
  • Thinking separation reduces tokens
  • Assuming it simplifies client registration
  • Believing it avoids HTTPS requirement

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Rest API Quizzes
Authentication and Authorization - Bearer token authentication - Quiz 9hard Authentication and Authorization - Token refresh mechanism - Quiz 7medium Error Handling - Error response structure - Quiz 6medium HATEOAS and Linking - Link relations in responses - Quiz 5medium Pagination Patterns - Why pagination manages large datasets - Quiz 14medium Pagination Patterns - Link headers for navigation - Quiz 11easy Rate Limiting and Throttling - Fixed window algorithm - Quiz 1easy Rate Limiting and Throttling - Per-user vs per-IP limits - Quiz 14medium Rate Limiting and Throttling - Fixed window algorithm - Quiz 10hard Rate Limiting and Throttling - Fixed window algorithm - Quiz 14medium