Arcitura Education Exam S90.18 Topic 3 Question 110 Discussion

Actual exam question for Arcitura Education's S90.18 exam

Question #: 110
Topic #: 3

You are required to design an authorization mechanism for a REST service. The service provides functionality by providing access to different resources, some of which are local to the service while others are located on remote servers. You are required to restrict access to the service based on which resource is requested and which HTTP method has been specified by the service consumer. By doing so, which combination of action control rules needs to be used?

Aidentity and environment

Benvironment and resource

Cresource and action

Daction and identity

Show Suggested Answer

Suggested Answer: C

by Johanna at Apr 06, 2025, 12:05 AM

Limited Time Offer

25%

Off

Get Premium S90.18 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Cordelia

4 days ago

I'm not sure, but I think D) action and identity could also be a valid combination to control access.

upvoted 0 times

...

Louvenia

8 days ago

I'd say B. Environment and resource seems like the logical choice here. The service needs to know the environment and what resources are available to properly restrict access.

upvoted 0 times

...

Miesha

12 days ago

I agree with Beckie, because we need to restrict access based on the requested resource and HTTP method.

upvoted 0 times

...

Billye

14 days ago

Definitely C. Resource and action is the way to go for this authorization mechanism. Gotta control who can access what resources and how they can interact with them.

upvoted 0 times

...

Beckie

17 days ago

I think the answer is C) resource and action.

upvoted 0 times

...