Newly Released Amazon Web Services DVA-C01 Exam PDF

AWS Certified Developer Associate Exam Questions and Answers

Question 49

A company has an application where reading objects from Amazon S3 is based on the type of user The user types are registered user and guest user The company has 25.000 users and is growing Information is pulled from an S3 bucket depending on the user type.

Which approaches are recommended to provide access to both user types? (Select TWO.)

Options:

Provide a different access key and secret access key in the application code for registered users and guest users to provide read access to the objects

Use S3 bucket policies to restrict read access to specific IAM users

Use Amazon Cognito to provide access using authenticated and unauthenticated roles

Create a new IAM user for each user and grant read access.

Use the AWS IAM service and let the application assume the different roles using the AWS Security Token Service (AWS STS) AssumeRole action depending on the type of user and provide read access to Amazon S3 using the assumed role

Question 50

A developer is writing a web application that must share secure documents with end users The documents are stored in a private Amazon S3 bucket The application must allow only authenticated users to download specific documents when requested, and only for a duration of 15 minutes

How can the developer meet these requirements?

Options:

Copy the documents to a separate S3 bucket that has a lifecycle policy for deletion after 15 minutes

Create a presigned S3 URL using the AWS SDK with an expiration time of 15 minutes

Use server-side encryption with AWS KMS managed keys (SSE-KMS) and download the documents using HTTPS

Modify the S3 bucket policy to only allow specific users to download the documents Revert the change after 15 minutes.

Question 51

A developer is creating as AWS lambda function that generates a new file each time it runs. Each new file must be checked into an AWS CodeCommit repository hosted in the same AWS account.

How should the developer accomplish this?

Options:

When the Lambda function starts, use the Git CLI to Clone the repository. Check the new file into the cloned repository and push the change.

After the new file is created in Lambda, use cURL to invoke the CodeCommit API. Send the file to the repository.

Use an AWS SDK to instantiate a CodeCommit Client. Invoke the put _ file method to add the file to the repository.

Upload the new file to an Amazon S3 bucket. Create an AWS step Function to accept S3 events. In the step Function, add the new file to the repository.

Question 52

A company is developing an application that will be accessed through the Amazon API Gateway REST API Registered users should be the only ones who can access certain resources of this API. The token being used should expire automatically and needs to be refreshed periodically.

How can a developer meet these requirements'?

Options:

Create an Amazon Cognito identity pool, configure the Amazon Cognito Authorizer in API Gateway, and use the temporary credentials generated by the identity pool

Create and maintain a database record for each user with a corresponding token and use an AWS Lambda authorizer m API Gateway

Create an Amazon Cognito user pool, configure the Cognito Authorizer in API Gateway, and use the identity or access token

Create an IAM user for each API user, attach an invoke permissions policy to the API. and use an IAM authorizer in API Gateway.

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Newly Released Amazon Web Services DVA-C01 Exam PDF

AWS Certified Developer Associate Exam Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation: