Oracle Cloud Platform Data Integration 2020 Specialist — Question 30

A developer using Oracle Cloud Infrastructure (OCI) API Gateway must authenticate the API requests to their web application. The authentication process must be implemented using a custom scheme which accepts string parameters from the API caller.
Which method can the developer use in this scenario? (Choose the best answer.)

Answer options

• A. Create an authorizer function using request header authorization.
• B. Create an authorizer function using token-based authorization.
• C. Create a cross account functions authorizer.
• D. Create an authorizer function using OCI Identity and Access Management based authentication.

Correct answer: A

Explanation

The correct answer is A because creating an authorizer function using request header authorization allows for custom string parameters to be passed with the API requests. The other options do not align with the requirement for a custom scheme that accepts string parameters: token-based and IAM-based authentications are more rigid in their structure.