CAS-005 Question #137: Real Exam Question with Answer & Explanation

Sign in or unlock CAS-005 to reveal the answer and full explanation for question #137. The question stem and answer options stay visible for context.

Submitted by yuki_2020· Mar 6, 2026Security Architecture - Implementing delegated authorization using OAuth 2.0, understanding the roles of Authorization Server, Resource Server, and Client Application, and applying least-privilege access through token scopes.

Question

SIMULATION You are tasked with integrating a new B2B client application with an existing OAuth workflow that must meet the following requirements: - The application does not need to know the users' credentials. - An approval interaction between the users and the HTTP service must be orchestrated. - The application must have limited access to users' data. INSTRUCTIONS Use the drop-down menus to select the action items for the appropriate locations. All placeholders must be filled. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button. Answer:

Options

taskIntegrate a new B2B client application with an existing OAuth workflow that must meet the following requirements: The application does not need to know the users' credentials; An approval interaction between the users and the HTTP service must be orchestrated; The application must have limited access to users' data.
prerequisites

Unlock CAS-005 to see the answer

You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CAS-005 - $49.99 / 30 days Sign in

Topics

#OAuth 2.0#Authorization Code Flow#API Security#Identity and Access Management

Full CAS-005 Practice Browse All CAS-005 Questions