Crucial Exams

Microsoft Azure Developer Associate AZ-204 Practice Question

Your team builds a multi-tenant ASP.NET Core web API protected by the Microsoft identity platform. The API exposes a delegated permission named Inventory.Read and is called from a JavaScript single-page application (SPA). Access tokens reaching the API lack the scp claim, so all signed-in users are accepted. You must ensure tokens include the Inventory.Read scope so the API can authorize calls. What must the SPA add to its authorization request?

  • Add Inventory.Read to the scope parameter sent to the authorization endpoint.

  • Configure the SPA to use the implicit grant flow.

  • Include the offline_access permission together with openid.

  • Request an ID token instead of an access token.

Microsoft Azure Developer Associate AZ-204
Implement Azure security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot