Node.js / NestJS

Authorization & RBAC

Role-based access control, custom guards, decorators, permissions, resource ownership

20 mülakat soruları·
Mid-Level
1

What is RBAC (Role-Based Access Control)?

Cevap

RBAC is an access control system that grants permissions to users based on their roles. Instead of managing permissions individually for each user, RBAC groups permissions into roles (e.g., ADMIN, USER, MANAGER) and assigns these roles to users. This simplifies access management in applications, particularly useful in NestJS with custom guards and metadata decorators.

2

What is the difference between authentication and authorization?

Cevap

Authentication verifies the user's identity (who are you?), typically via login/password or JWT token. Authorization verifies the user's permissions (what can you do?), controlling access to resources based on roles or permissions. In NestJS, authentication often uses JwtAuthGuard, while authorization uses custom guards like RolesGuard to check access rights.

3

Which NestJS decorator allows creating a custom guard?

Cevap

To create a custom guard in NestJS, create a class decorated with @Injectable() that implements the CanActivate interface. This interface requires the canActivate(context: ExecutionContext) method that returns a boolean or Promise. The guard can then be applied to routes with @UseGuards(). This architecture allows injecting dependencies (services, repositories) into the guard to perform complex validations.

4

In RBAC, what does a 'permission' represent?

5

How to attach a guard to a controller in NestJS?

+17 mülakat soruları

Diğer Node.js / NestJS mülakat konuları

Node.js Fundamentals

Junior
20 soru

Node.js Core APIs

Junior
25 soru

Asynchronous Programming

Junior
25 soru

Express.js Basics

Junior
20 soru

NestJS Fundamentals

Junior
23 soru

REST API Design

Junior
20 soru

Validation & DTO

Junior
20 soru

API Documentation & Contracts

Junior
20 soru

Error Handling

Junior
20 soru

Unit Testing

Junior
20 soru

Task Scheduling

Junior
15 soru

NestJS Modules & DI

Mid-Level
20 soru

Configuration & Environment Management

Mid-Level
20 soru

JWT Authentication

Mid-Level
25 soru

Database with TypeORM

Mid-Level
30 soru

Prisma ORM

Mid-Level
25 soru

Middleware & Interceptors

Mid-Level
20 soru

File Upload

Mid-Level
15 soru

WebSockets

Mid-Level
20 soru

GraphQL with NestJS

Mid-Level
25 soru

End-to-End Testing

Mid-Level
20 soru

Caching with Redis

Mid-Level
20 soru

Queues with Bull

Mid-Level
20 soru

DevOps, Logging & CI/CD

Mid-Level
25 soru

Docker & Containerization

Mid-Level
25 soru

Microservices

Senior
30 soru

Security Best Practices

Senior
25 soru

Performance & Cloud Deployment

Senior
30 soru

Bir sonraki mülakatın için Node.js / NestJS'de uzmanlaş

Tüm sorulara, flashcards'a, teknik testlere, code review alıştırmalarına ve mülakat simülatörlerine eriş.

Ücretsiz başla