Angular MCQs – Authentication and Security

11.) What Angular feature helps prevent CSRF attacks?

A) HTTP Interceptors
B) Angular Forms
C) CORS Headers
D) Content Projection

Answer: Option A

Explanation: HTTP Interceptors can attach anti-CSRF tokens to every outgoing request, protecting against CSRF attacks.

12.) What does HttpOnly in cookies do?

A) Allows JavaScript to access cookies
B) Prevents JavaScript from accessing cookies
C) Enables real-time data binding
D) Blocks Angular services

Answer: Option B

Explanation: HttpOnly cookies protect JWT tokens from XSS attacks by preventing JavaScript access.

13.) What type of attack does XSS refer to?

A) SQL Injection
B) Phishing
C) Cross-Site Scripting
D) DDoS

Answer: Option C

Explanation: XSS (Cross-Site Scripting) injects malicious scripts into a website to steal data.

14.) What Angular security feature prevents clickjacking?

A) X-Frame-Options header
B) URL Hashing
C) Angular Guards
D) Data Binding

Answer: Option A

Explanation: X-Frame-Options prevents embedding Angular pages inside iframes, protecting against clickjacking attacks.

15.) What encryption technique is recommended for storing passwords?

A) Plain text
B) Base64 Encoding
C) Hashing with bcrypt
D) URL Encoding

Answer: Option C

Explanation: bcrypt provides a strong one-way hashing function for storing passwords securely.

16.) What is OAuth 2.0 in Angular authentication?

A) A CSS framework for styling Angular applications
B) A token-based authentication framework
C) A frontend library for animations
D) A debugging tool for Angular components

Answer: Option B

Explanation: OAuth 2.0 is a widely used authorization framework that allows secure API access without exposing user credentials.

17.) What does OpenID Connect add to OAuth 2.0?

A) Authorization
B) Encryption
C) Security
D) Authentication

Answer: Option D

Explanation: OpenID Connect (OIDC) extends OAuth 2.0 by adding authentication to verify users.

18.) Where should authentication tokens be stored?

A) Cookies
B) Local Storage
C) Session Storage
D) HTTP Headers

Answer: Option A

Explanation: Cookies (especially HttpOnly cookies) are safer for storing authentication tokens.

19.) What Angular security measure prevents sensitive information exposure?

A) Logging user data in the console
B) Storing credentials in environment.ts
C) Using environment variables for sensitive data
D) Hardcoding API keys in the frontend

Answer: Option C

Explanation: Storing sensitive data in environment variables instead of the frontend reduces security risks.

20.) What does CSRF stand for?

A) Cross-Server Response Function
B) Client-Side Resource Fetch
C) Common Security Request Form
D) Cross-Site Request Forgery

Answer: Option D

Explanation: CSRF attacks trick users into making unauthorized requests on authenticated sites.

Pages: 1 2 3

Leave a Reply

Your email address will not be published. Required fields are marked *