Question 1

A developer deploys an API to CloudHub and applies an OAuth policy on API Manager. During testing, theAPI response is slow, so the developer reconfigures the API so that the out-of-the-box HTTP Caching policyis applied first, and the OAuth API policy is applied second.What will happen when an HTTP request is received?

Options :

A : In case of a cache hit, both the OAuth and HTTP Caching policies are evaluated; then the cachedresponse is returned to the caller

B : In case of a cache it, only the HTTP Caching policy is evaluating; then the cached response is returnedto the caller

C : In case of a cache miss, only the HTTP Caching policy is evaluated; then the API retrieves the data fromthe API implementation, and the policy stores the data to be cached in Object Store

D : In case of a cache miss, both the OAuth and HTTP Caching policies are evaluated; then the APIretrieves the data from the API implementation, and the policy does not store the data in Object Store

Answer: B

Question 2

Refer to the exhibit.A Mute Object Store is configured with an entry TTL of one second and an expiration interval of 30 seconds.What is the result of the flow if processing between os’store and os:retrieve takes 10 seconds? MCD-Level-2-page47-image1

Options :

A : nullPayload

B : originalPayload

C : OS:KEY_NOT_FOUND

D : testPayload

Answer: A

Question 3

Which properties are mandatory on the HTTP Connector configuration in order to use the OAuth 2.0 Authorization Code grant type for authentication?

Options :

A : External callback URL, access token URL, client ID response access token

B : Token URL, authorization URL, client ID, client secret local callback URL

C : External callback URL, access token URL, client ID, response refresh token

D : External callback URL, access token URL, local authorization URL, authorization URL, client ID, client secret

Answer: B

Question 4

When implementing a synchronous API where the event source is an HTTP Listener, a developer needs toreturn the same correlation ID back to the caller in the HTTP response header.How can this be achieved?

Options :

A : Enable the auto-generate CorrelationID option when scaffolding the flow

B : Enable the CorrelationID checkbox in the HTTP Listener configuration

C : Configure a custom correlation policy

D : NO action is needed as the correlation ID is returned to the caller in the response header by default

Answer: D

Question 5

The flow is invoicing a target API. The API’s protocol is HTTPS. The TLS configuration in the HTTPRequest Configuration global element is set to None. A web client submits a request tohttp:localhost:8081/vehicles. MCD-Level-2-page47-image22 If the certificate of the target API is signed by a certificate authority (CA), what is true about the HTTPRequest operation when the flow executes?

Options :

A : The HTTP Request operation will succeed if the CA’S certificate is present in the JRE’s default keystore

B : The HTTP Request operation will succeed if the CA’s certificate is present in the JRE’s default truststore.

C : The HTTP Request operation will always succeed regardless of the CA

D : The HTTP Request operation will always fail regardless of the CA

Answer: B