SAP Exam C_FIORDEV_22 Topic 5 Question 32 Discussion

Actual exam question for SAP's C_FIORDEV_22 exam

Question #: 32
Topic #: 5

You develop an SAPUI5 app that updates dat on the SAP back-end system. What activities are required when you implement an XSRF token? Note: There are 2 correct answers to this question.

ARetrieve the token and send it with each write request

BExecute the Refresh method for an expired token.

CInclude the token in the HTTP request body of each write request

DGenerate a token on each read and write request

Show Suggested Answer

Suggested Answer: A, B

by Brandon at Feb 11, 2024, 08:25 AM

Limited Time Offer

25%

Off

Get Premium C_FIORDEV_22 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Elliot

4 months ago

I will stick with A) and C) as the correct answers for this question

upvoted 0 times

...

Rickie

4 months ago

I feel confident that A) and C) are the correct activities to ensure XSRF token implementation

upvoted 0 times

...

Tracey

4 months ago

I've read that D) Generate a token on each read and write request is not necessary for implementing an XSRF token

upvoted 0 times

...

Hoa

4 months ago

I'm not sure about that, I think B) Execute the Refresh method for an expired token might also be required

upvoted 0 times

...

Alex

4 months ago

I agree with you, those two activities are necessary to implement an XSRF token

upvoted 0 times

...

Ollie

4 months ago

I think the correct answers are A) Retrieve the token and send it with each write request and C) Include the token in the HTTP request body of each write request

upvoted 0 times

...

Alfred

4 months ago

I think A and C are the way to go here. Gotta keep those pesky XSRF attacks at bay by including the token in the request. Sounds like a pretty straightforward SAPUI5 implementation to me.

upvoted 0 times

...

Lizbeth

4 months ago

I believe option C is also correct, including the token in the HTTP request body makes sense.

upvoted 0 times

...

Nickie

4 months ago

B is a trap answer for sure. Refreshing an expired token? That's not how it works, you just need to retrieve the fresh token and send it with the request.

upvoted 0 times

Mila

4 months ago

C) Include the token in the HTTP request body of each write request

upvoted 0 times

...

Louvenia

4 months ago

A) Retrieve the token and send it with each write request

upvoted 0 times

...

Jerry

5 months ago

Haha, D is a classic - generate a new token for every read and write? That's just asking for trouble! Gotta love those XSRF token questions, they really separate the UI5 pros from the amateurs.

upvoted 0 times

Ahmed

4 months ago

C) Include the token in the HTTP request body of each write request

upvoted 0 times

...

Luis

4 months ago

A) Retrieve the token and send it with each write request

upvoted 0 times

...

Rosenda

4 months ago

Yeah, D does seem like a risky choice. It's important to handle those tokens carefully to avoid security issues.

upvoted 0 times

...

Royal

4 months ago

C) Include the token in the HTTP request body of each write request

upvoted 0 times

...

Leila

4 months ago

A) Retrieve the token and send it with each write request

upvoted 0 times

...

A and C are definitely the correct answers. You need to retrieve the token and send it with each write request, and include the token in the HTTP request body. No need to refresh or generate a new token for each request.

upvoted 0 times

Rory

4 months ago

C) Include the token in the HTTP request body of each write request

upvoted 0 times

...

Gayla

5 months ago

A) Retrieve the token and send it with each write request

upvoted 0 times

...

Ronny

5 months ago

C) Include the token in the HTTP request body of each write request

upvoted 0 times

...

Ronny

5 months ago

A) Retrieve the token and send it with each write request

upvoted 0 times

...

German

5 months ago

I'm not sure about option D, generating a token on each request seems excessive.

upvoted 0 times

...

Kattie

6 months ago

I agree with Glendora, it's important to include the token in the request.

upvoted 0 times

...

Glendora

6 months ago

I think option A is correct, we need to retrieve and send the token with each write request.

upvoted 0 times

...

SAP Exam C_FIORDEV_22 Topic 5 Question 32 Discussion

Contribute your Thoughts:

Elliot

Rickie

Tracey

Hoa

Alex

Ollie

Alfred

Lizbeth

Nickie

Mila

Louvenia

Jerry

Ahmed

Luis

Rosenda

Royal

Leila

Vashti

Rory

Gayla

Ronny

Ronny

German

Kattie

Glendora