Free Test Spring Security – JAVA

Q1: What is the primary goal of Spring Security?

A. Data Persistence B. Security and Access Control C. MVC Implementation D. API Documentation

Q2: Which annotation is used to enable Spring Security in a Spring Boot application?

A. @EnableWebSecurity B. @EnableSecurity C. @SecureApp D. @SecurityEnabled

Q3: Which class is used to configure HTTP security in Spring Security?

A. HttpConfig B. SecurityFilter C. HttpSecurity D. WebSecurityManager

Q4: Which method configures security rules in Spring Security?

A. configure(HttpSecurity http) B. setupSecurity() C. secureRoutes() D. defineRules()

Q5: Which annotation is used to protect methods in Spring?

A. @Secured B. @Protect C. @Authorize D. @MethodSecure

Q6: What is the default login URL provided by Spring Security?

A. /auth/login B. /login C. /user/login D. /signin

Q7: Which filter is responsible for username and password authentication?

A. SecurityInterceptor B. AuthenticationFilter C. UsernamePasswordAuthenticationFilter D. LoginFilter

Q8: Which interface represents the currently authenticated user?

A. Principal B. SecurityUser C. Authentication D. UserDetails

Q9: What does CSRF stand for in Spring Security?

A. Client Security Request Form B. Cross-Site Request Forgery C. Critical Security Resource Framework D. Cross Site Resource Filter

Q10: Which class in Spring Security defines user roles and credentials?

A. SecurityUser B. UserDetails C. UserCredentials D. SecurityPrincipal

Q11: Which interface provides custom user data for authentication?

A. UserRepository B. UserInfoProvider C. UserDetailsService D. SecurityProvider

Q12: What is the purpose of PasswordEncoder?

A. Decode encrypted passwords B. Store credentials C. Encrypt and verify passwords D. Generate CSRF token

Q13: Which method in PasswordEncoder checks if passwords match?

A. validate() B. match() C. compare() D. matches()

Q14: Which annotation allows role-based access in Spring Security?

A. @RoleCheck B. @WithRole C. @PreAuthorize D. @SecureRole

Q15: What is the use of SecurityContextHolder?

A. Stores request data B. Holds authentication info C. Creates sessions D. Logs access

Q16: What is the default behavior for unauthenticated users in Spring Security?

A. Redirect to login page B. Show error message C. Allow access D. Return 404

Q17: Which class is used to customize authentication manager?

A. AuthManager B. AuthenticationConfigurer C. AuthenticationManagerBuilder D. SecurityBuilder

Q18: How can you disable CSRF in Spring Security?

A. Set csrf to false in config B. Use @DisableCSRF C. http.csrf().disable() D. Remove csrf filter manually

Q19: What type of security does Spring Security primarily offer?

A. Database encryption B. File access control C. Authentication and Authorization D. Dependency management

Q20: Which annotation disables security for a specific method or endpoint?

A. @AllowAll B. @PermitAll C. @NoSecurity D. @SecurityOff

Quiz for Spring Security