.NET

Authentication & Authorization

JWT tokens, cookie authentication, Identity, authorization policies, claims, role-based access

18 domande da colloquioยท
Mid-Level
1

What is a JWT (JSON Web Token)?

Risposta

JWT is a self-contained token that encodes authentication information as digitally signed JSON. It consists of three parts separated by dots: header (algorithm), payload (data/claims), and signature (verification). Unlike server sessions, JWT is stateless and enables distributed authentication without server-side storage.

2

What is the fundamental difference between authentication and authorization?

Risposta

Authentication verifies user identity (who is he), while authorization determines permissions (what can he do). Authentication is always the first step, followed by authorization. For example, logging in with a password is authentication, then checking if the user can access an admin resource is authorization.

3

How does cookie authentication work in ASP.NET Core?

Risposta

The server generates an encrypted cookie after credential validation, automatically stored by the browser. This cookie contains user claims and is automatically sent with each request. The server decrypts the cookie to identify the user without database query. Suitable for traditional web applications with server-side navigation.

4

What is the typical JWT authentication workflow in an API?

5

What is a claim in the authentication context?

+15 domande da colloquio

Altri argomenti di colloquio .NET

C# Basics

Junior
25 domande

LINQ & Delegates

Junior
20 domande

C# Language Essentials

Junior
15 domande

ASP.NET Core Fundamentals

Junior
18 domande

ASP.NET Core Request Lifecycle

Junior
20 domande

Configuration & Settings

Junior
20 domande

Application Lifecycle

Junior
20 domande

Dependency Injection

Mid-Level
24 domande

Entity Framework Core

Mid-Level
25 domande

Minimal APIs

Mid-Level
18 domande

Web API Development

Mid-Level
22 domande

Async in ASP.NET Core

Mid-Level
20 domande

HttpClient & Networking

Mid-Level
20 domande

JSON Serialization

Mid-Level
20 domande

Entity Framework Core Advanced

Mid-Level
25 domande

C# Advanced Features

Mid-Level
20 domande

Clean Architecture

Mid-Level
20 domande

Logging, Monitoring & Observability

Mid-Level
22 domande

Unit Testing & xUnit

Mid-Level
20 domande

Integration Testing

Mid-Level
18 domande

Docker & Containerization

Mid-Level
16 domande

NuGet Package Management

Mid-Level
16 domande

Memory Management & GC

Senior
22 domande

Reactive Programming

Senior
24 domande

Async/await & Patterns

Senior
26 domande

.NET Design Patterns

Senior
24 domande

Performance Optimization

Senior
22 domande

Security & Best Practices

Senior
24 domande

SignalR & Real-time

Senior
22 domande

Microservices Architecture

Senior
25 domande

Padroneggia .NET per il tuo prossimo colloquio

Accedi a tutte le domande, flashcards, test tecnici, esercizi di code review e simulatori di colloquio.

Inizia gratis