[&] In what scenario are bearer tokens most commonly used according to the course?
- In APIs for secure access -- Correct
- For offline data encryption
- In web browser extensions
- In desktop applications

[&] What is the primary advantage of using token-based authentication over traditional session management?
- Tokens allow for scalable and stateless authentication. -- Correct
- Tokens are immutable once created.
- Tokens work better with older web technologies.
- Tokens are less susceptible to interception.

[&] Which type of token is commonly used for granting access to resources without re-authentication?
- API token
- Session token
- JWT
- Refresh token -- Correct

[&] What is a key feature of JSON Web Tokens that aids with stateless authentication?
- They contain signatures for verification -- Correct
- They are easy to decrypt
- They are stored only in cookies
- They need continuous renewal

[&] Why should query parameters generally be avoided for token placement in HTTP requests?
- They cannot support long token strings
- They are difficult for developers to manage
- They lack the necessary security features for tokens
- They might be logged in server-side logs -- Correct

[&] What does the 'HTTP only' attribute for cookies prevent?
- Prevents the token from being logged
- Prevents the token from being stored in the cache
- Prevents JavaScript from accessing the token -- Correct
- Prevents the token from being encrypted