0
0
Spring Bootframework~5 mins

HTTP Basic authentication in Spring Boot - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallPerf
Recall & Review
beginner
What is HTTP Basic authentication?
HTTP Basic authentication is a simple way to protect web resources by requiring a username and password sent in the HTTP header encoded in Base64.
Click to reveal answer
intermediate
How does Spring Boot enable HTTP Basic authentication?
Spring Boot enables HTTP Basic authentication by configuring security settings, often using the @EnableWebSecurity annotation and setting up an AuthenticationManager with user details.
Click to reveal answer
beginner
What header does the client send for HTTP Basic authentication?
The client sends the 'Authorization' header with the value 'Basic ' followed by the Base64 encoded string of 'username:password'.
Click to reveal answer
intermediate
What happens if HTTP Basic authentication fails in Spring Boot?
If authentication fails, Spring Boot responds with HTTP status 401 Unauthorized and includes a 'WWW-Authenticate' header prompting the client to provide credentials.
Click to reveal answer
beginner
Why is HTTP Basic authentication not recommended for production without HTTPS?
Because credentials are only Base64 encoded, not encrypted, they can be easily intercepted and read if sent over plain HTTP. HTTPS encrypts the entire connection to protect credentials.
Click to reveal answer
Which HTTP header carries the credentials in HTTP Basic authentication?
AAuthentication
BAuthorization
CWWW-Authenticate
DProxy-Authorization
In Spring Boot, which annotation is commonly used to enable web security including HTTP Basic?
A@EnableWebSecurity
B@SpringBootApplication
C@RestController
D@EnableAutoConfiguration
What status code does the server return when HTTP Basic authentication fails?
A400 Bad Request
B403 Forbidden
C401 Unauthorized
D500 Internal Server Error
How are credentials sent in HTTP Basic authentication?
AHashed password in a cookie
BEncrypted username and password in the body
CPlain text username and password in URL parameters
DBase64 encoded username and password in the Authorization header
Why should HTTP Basic authentication be used with HTTPS?
ATo encrypt credentials and protect them from interception
BTo speed up authentication
CTo avoid using passwords
DTo allow anonymous access
Explain how HTTP Basic authentication works in a Spring Boot application.
Think about the request header and server response.
You got /4 concepts.
    Describe why it is important to use HTTPS with HTTP Basic authentication.
    Consider what happens if data is sent over an unprotected network.
    You got /4 concepts.