A company is developing a serverless multi-tier application on AWS. The company will build the serverless logic tier by using Amazon API Gateway and AWS Lambda.
While the company builds the logic tier, a developer who works on the frontend of the application must develop integration tests. The tests must cover both positive and negative scenarios, depending on success and error HTTP status codes.
Which solution will meet these requirements with the LEAST effort?

• A.Set up a mock integration for API methods in API Gateway. In the integration request from Method Execution, add simple logic to return either a success or error based on HTTP status code. In the integration response, add messages that correspond to the HTTP status codes.
• B.Create two mock integration resources for API methods in API Gateway. In the integration request, return a success HTTP status code for one resource and an error HTTP status code for the other resource. In the integration response, add messages that correspond to the HTTP status codes.
• C.Create Lambda functions to perform tests. Add simple logic to return either success or error, based on the HTTP status codes. Build an API Gateway Lambda integration. Select appropriate Lambda functions that correspond to the HTTP status codes.
• D.Create a Lambda function to perform tests. Add simple logic to return either success or error- based HTTP status codes. Create a mock integration in API Gateway. Select the Lambda function that corresponds to the HTTP status codes.

Comment: *

Name: *

Email: *

Verification: *

A developer is troubleshooting an application. The application includes several AWS Lambda functions that invoke an Amazon API Gateway API. The API Gateway's method request is set up to use an Amazon Cognito authorizer for authentication.
All the Lambda functions pass the user ID as part of the Authorization header to the API Gateway API. The API Gateway API returns a 403 status code for all GET requests.
How should the developer resolve this issue?

• A.Modify the client GET request to include a valid token in the Authorization header.
• B.Modify the client GET request to include a valid API key in the Authorization header.
• C.Modify the client to send an OPTIONS preflight request before the GET request.
• D.Update the resource policy for the API Gateway API to allow the execute-api:Invoke action.

Comment: *

Name: *

Email: *

Verification: *

A company has an application that is hosted on Amazon EC2 instances The application stores objects in an Amazon S3 bucket and allows users to download objects from the S3 bucket A developer turns on S3 Block Public Access for the S3 bucket After this change, users report errors when they attempt to download objects The developer needs to implement a solution so that only users who are signed in to the application can access objects in the S3 bucket.
Which combination of steps will meet these requirements in the MOST secure way? (Select TWO.)

• A.Create an EC2 instance profile and role with an appropriate policy Associate the role with the EC2 instances
• B.Create an 1AM user with an appropriate policy. Store the access key ID and secret access key on the EC2 instances
• C.Modify the application to use the S3 GeneratePresignedUrl API call
• D.Modify the application to use the S3 GetObject API call and to return the object handle to the user
• E.Modify the application to delegate requests to the S3 bucket.

Comment: *

Name: *

Email: *

Verification: *

A developer is creating an application that will store personal health information (PHI). The PHI needs to be encrypted at all times. An encrypted Amazon RDS for MySQL DB instance is storing the data. The developer wants to increase the performance of the application by caching frequently accessed data while adding the ability to sort or rank the cached datasets.
Which solution will meet these requirements?

• A.Create an Amazon ElastiCache for Redis instance. Enable encryption of data in transit and at rest. Store frequently accessed data in the cache.
• B.Create an Amazon ElastiCache for Memcached instance. Enable encryption of data in transit and at rest. Store frequently accessed data in the cache.
• C.Create an Amazon RDS for MySQL read replica. Connect to the read replica by using SSL. Configure the read replica to store frequently accessed data.
• D.Create an Amazon DynamoDB table and a DynamoDB Accelerator (DAX) cluster for the table. Store frequently accessed data in the DynamoDB table.

Comment: *

Name: *

Email: *

Verification: *

A developer is working on a new authorization mechanism for an application. The developer must create an Amazon API Gateway API and must test JSON Web Token (JWT) authorization on the API.
The developer must use the built-in authorizer and must avoid managing the code with custom logic. The developer needs to define an API route that is available at /auth to test the authorizer configuration.
Which solution will meet these requirements?

• A.Create an HTTP API and the /auth route. Configure the JWT authorizer. Attach the JWT authorizer to the /auth route. Deploy the API.
• B.Create a WebSocket API and the /auth route. Configure and attach the JWT authorizer to the API. Deploy the API.
• C.Create a WebSocket API and the /auth route. Create and configure an AWS Lambda authorizer.
  Attach the Lambda authorizer to the API. Deploy the API.
• D.Create an HTTP API and the /auth route. Create and configure an AWS Lambda authorizer.
  Attach the Lambda authorizer to the /auth route.
  Deploy the API.

Comment: *

Name: *

Email: *

Verification: *