Developing Applications Using Cisco Core Platforms and APIs (DEVCOR) — Question 145

In the three-legged OAuth2 process, after the authorization server presents a form to the resource owner to grant access, what is the next step?

Answer options

• A. The resource owner authenticates and optionally authorizes with the authorization server.
• B. The user who owns the resource initiates a request to the OAuth client.
• C. If the resource owner allows access, the authorization server sends the OAuth client a redirection.
• D. A form to allow or restrict access is submitted by the owner of the resource.

Correct answer: D

Explanation

The correct answer, D, indicates that the resource owner must submit the form they received to either grant or deny access. Option A is incorrect because it describes the authentication step rather than the immediate action after presenting the form. Option B is not relevant as it pertains to the user's action before the authorization process. Option C is also incorrect because it describes a subsequent action that occurs only after the resource owner has submitted the form granting access.