The HTTP status code _______ is commonly returned when the requested resource does not exist.
- 404
- 400
- 403
- 405
The correct option is 404. This status code indicates that the server could not find the requested resource. It is a standard response for situations where the server cannot locate the requested URL on the server.
Negative testing often involves sending ________ types of data to check for API robustness.
- Invalid
- Null
- Random
- Valid
Negative testing involves sending invalid types of data to check how well the API handles unexpected inputs. Valid data is used in positive testing, not negative testing.
In API security, what is the purpose of an access token in OAuth?
- Authenticate the Client
- Authorize the Client
- Identify the Resource Server
- Identify the User
The access token in OAuth is primarily meant to identify the user who authorized the application, allowing the application to access resources on behalf of that user. It does not necessarily identify the client or resource server.