Spring Security Objective Questions and Answers

This Spring Security quiz contains carefully curated objective questions with correct answers and clear explanations. It is designed for developers, security learners, and interview preparation, covering authentication, authorization, encryption, JWT, OAuth2, and advanced Spring Security concepts.

Practice Spring Security MCQs with Detailed Explanations

Answer at least 12 questions to submit and verify answers.

1 Which of the following is true about the default password storage in Spring Security 5? Medium

2 What is the default HTTP method for CSRF protection in Spring Security? Easy

3 Which annotation enables method-level security in Spring Security? Medium

4 In Spring Security, what does the 'ROLE_' prefix signify? Medium

5 Which of the following is NOT a standard authentication mechanism supported by Spring Security? Medium

6 What is the primary purpose of the AuthenticationManager in Spring Security? Medium

7 Which interface in Spring Security provides access to the current user’s authentication information? Medium

8 Which of the following statements about JWT in Spring Security is correct? Medium

9 What does the @PreAuthorize annotation allow you to do? Medium

10 In Spring Security, what is the default behavior when a user is unauthenticated and tries to access a protected resource? Medium

11 Which PasswordEncoder implementation should be used for maximum compatibility with older Spring Security versions? Medium

12 Which Spring Security filter handles authentication of login credentials? Medium

13 How can you disable CSRF protection for a specific endpoint in Spring Security? Medium

14 Which method in UserDetailsService loads a user by username? Medium

15 Which of the following is true about OAuth2 Resource Server in Spring Security? High