New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GCFR Exam - Topic 1 Question 38 Discussion

Actual exam question for GIAC's GCFR exam
Question #: 38
Topic #: 1
[All GCFR Questions]

At what point of the OAuth delegation process does the Resource Owner approve the scope of access to be allowed?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Lashaun at Feb 12, 2025, 03:14 AM

Limited Time Offer

25%

Off

Get Premium GCFR Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Jose
3 months ago
No way, it’s not before the credentials are sent! That’s incorrect.
upvoted 0 times
...
Raelene
3 months ago
Definitely after the credentials are accepted!
upvoted 0 times
...
Caprice
3 months ago
Wait, so the user approves access before anything else? That seems odd.
upvoted 0 times
...
Tarra
4 months ago
I think it's actually before the credentials are sent.
upvoted 0 times
...
Leanna
4 months ago
It's right after the user logs in, before the token is issued.
upvoted 0 times
...
Renea
4 months ago
I’m confused about this one. I thought the Resource Owner approves the access before anything else, so D seems likely, but I need to double-check.
upvoted 0 times
...
Marcos
4 months ago
I feel like the approval comes after the credentials are accepted, which makes me lean towards A, but I could be wrong.
upvoted 0 times
...
Diane
4 months ago
I remember practicing a question like this, and I think the approval happens before the token is issued, so it might be D.
upvoted 0 times
...
Reuben
5 months ago
I think the Resource Owner approves the scope right after they log in, so maybe it's A? But I'm not entirely sure.
upvoted 0 times
...
Ronny
5 months ago
I think the key here is to focus on the wording of the question and really understand the OAuth flow. I'm leaning towards option A, but I want to double-check my understanding.
upvoted 0 times
...
Tasia
5 months ago
I'm a bit confused on the exact steps of the OAuth delegation process. I'll have to review my notes to make sure I understand where the scope approval happens.
upvoted 0 times
...
Kimi
5 months ago
Okay, I'm pretty confident the answer is A. The Resource Owner approves the scope after the user credentials are accepted by the Authorization Server.
upvoted 0 times
...
Rebbecca
5 months ago
Hmm, I'm not totally sure about this one. I'll have to think it through carefully. The options seem a bit tricky.
upvoted 0 times
...
Darrin
5 months ago
This one seems pretty straightforward. I think the Resource Owner approves the scope of access before the user credentials are sent to the Authentication Server.
upvoted 0 times
...
Chara
10 months ago
If I was the resource owner, I'd approve any scope the app wanted. Who needs privacy anyway?
upvoted 0 times
Gerardo
9 months ago
C) When the Resource Server receives the OAuth token
upvoted 0 times
...
Theron
9 months ago
That's when the Resource Owner approves the scope.
upvoted 0 times
...
Lashandra
9 months ago
A) After user credentials are accepted by the Authorization Server
upvoted 0 times
...
...
Tracey
10 months ago
A for sure. The resource owner doesn't wait until the very end to decide what the app can access, that would be silly.
upvoted 0 times
Roy
9 months ago
C) When the Resource Server receives the OAuth token
upvoted 0 times
...
Arlene
9 months ago
I agree, the resource owner needs to approve the scope of access early on.
upvoted 0 times
...
Trinidad
9 months ago
A) After user credentials are accepted by the Authorization Server
upvoted 0 times
...
...
Curtis
10 months ago
Hold up, isn't the resource owner the one who's actually granting access? I'm pretty sure the answer is A.
upvoted 0 times
Wenona
9 months ago
Yes, the resource owner plays a key role in determining the level of access granted during the OAuth delegation process.
upvoted 0 times
...
Latanya
9 months ago
That makes sense, the resource owner needs to approve the scope of access before it is granted.
upvoted 0 times
...
Shoshana
9 months ago
So, the OAuth delegation process involves the resource owner granting access after their credentials are accepted.
upvoted 0 times
...
Harrison
9 months ago
I think you're right, the resource owner approves the scope after user credentials are accepted by the Authorization Server.
upvoted 0 times
...
...
Sherita
10 months ago
I think B is the correct answer. The resource owner approves the scope when the application accepts the OAuth token.
upvoted 0 times
Felicitas
9 months ago
Yes, the resource owner approves the scope when the application accepts the OAuth token.
upvoted 0 times
...
Bulah
10 months ago
I think B is the correct answer.
upvoted 0 times
...
...
Denae
11 months ago
Definitely option A. The resource owner approves the scope of access before the authorization server accepts the user credentials.
upvoted 0 times
Vincenza
9 months ago
Exactly. It's an important step in ensuring security and privacy in OAuth delegation.
upvoted 0 times
...
Lashon
9 months ago
So, the Resource Owner has control over what access is allowed to their resources.
upvoted 0 times
...
Elke
10 months ago
Yes, that's correct. The approval happens at that point in the OAuth delegation process.
upvoted 0 times
...
Vincent
10 months ago
I think it's option A. The resource owner approves the scope of access after user credentials are accepted by the Authorization Server.
upvoted 0 times
...
...
Shayne
11 months ago
That makes sense, as the Resource Owner needs to give consent before the process can continue.
upvoted 0 times
...
Shala
11 months ago
I believe it's after user credentials are accepted by the Authorization Server.
upvoted 0 times
...
Shayne
11 months ago
I think the Resource Owner approves the scope of access before user credentials are sent to the Authentication Server.
upvoted 0 times
...

Save Cancel