Configurations Flashcards
1
Q
the configuration object for config.xml
A
Magento\Framework\App\Config.
2
Q
logical component that organizes code for optimized request processing
A
An area
3
Q
Commerce framework is organized into what main areas?
A
Admin (adminhtml)
Storefront (frontend)
Basic (base)
Cron (crontab)
4
Q
what class always loads the ‘crontab’ area?
A
\Magento\Framework\App\Cron
5
Q
an area that is used as a fallback for files absent in adminhtml and frontend areas.
A
Basic (base)
6
Q
entry point for admin area
A
pub/index.php
7
Q
the code needed for store management can be found in what area?
A
The Admin panel area
8
Q
what area contains template and layout files that define the appearance of your storefront.
A
frontend
9
Q
what directory contains all the code for components you’ll see while working in the Admin?
A
/app/design/adminhtml directory
10
Q
with what areas you send requests to the Commerce framework?
A
Web API REST (webapi_rest)
GraphQL (graphql)
Web API SOAP (webapi_soap)
11
Q
entry point for webapi_rest?
A
pub/index.php
12
Q
how does URL look up for rest area happens?
A
The REST area has a front controller that understands how to do URL lookups for REST-based URLs.
13
Q
entry point for GraphQl?
A
pub/index.php
14
Q
entry point for webapi_soap?
A
pub/index.php
15
Q
Disabling an area does not result in disabling the modules related to it. (True/False)
A
True
16
Q
where are areas registered?
A
di.xml
17
Q
how does adobe commerce interpret the HTTP request that arrives state the format?
A
[frontName]/[controller folder]/[controller class]
18
Q
what is the class for catalog/product_compare/add?
A
Magento/Catalog/Controller/Product/Compare/Add.php
19
Q
the controller folders are separated with dash, * or line or _?
A
underscore
20
Q
what method gets executed on controller?
A
only the execute() method of any given controller is executed.
21
Q
the scope for Shipping Methods in B2B
A
Global
22
Q
what is Offloader Header scope?
A
Global
23
Q
how to identify the protocol between the client and load balancer?
A
Offloader Header value
24
Q
what is default vaLUE FOR offloaded header?
A
X-Forwarded-Proto (XFP)
25
what is yes on Upgrade Insecure Requests?
converts unsecure (HTTP) requests received from the browser to the secure (HTTPS) protocol.
26
what does Enabling HTTP Strict Transport Security (HSTS) do?
provides a measure of security against “man in the middle” attacks, and prevents users from overriding the “invalid certificate” message.
27
in what condition you can choose to run the store Admin, with or without SSL encryption?
If your domain has a security certificate.
28
what is the scope for Use Secure URLs in Admin?
Global
29
what is the scope for Use Secure URLs on Storefront?
Store view
30
what is the scope for Secure Base URL for User Media Files?
Store view
31
the scope for cookie life time, Cookie Domain and cookie path?
Store View
32
what field Determines if Commerce Cookies can be used only over an unsecure channel (http), or can also be used over an encrypted channel (https).
Use HTTP Only
33
what field Verifies that the IP Address of a request matches $_SESSION data?
Validate REMOTE_ADDR to yes
34
what does Validate HTTP_VIA do?
if yes, Verifies incoming proxy data and checks that the proxy address of a request matches $_SESSION data. The session terminates if a different proxy address is detected.
35
name all 4 Session Validation configuration settings?
Validate REMOTE_ADDR
Validate HTTP_VIA
Validate HTTP_x_FORWARDED_FOR
Validate HTTP_USER_AGENT
36
what is scope for Cookie Restriction Mode?
Website
37
what is the scope for Base Currency?
Website or Global depends what was set on price catalog scope
38
What is the scope for Default Display Currency?
Store View
39
what is the scope for Allowed Currencies?
Store View
40
what is fixer.io?
Foreign exchange
rates and currency
conversion JSON API
41
what is the scope for API key and Connection Timeout in Seconds for fixer.io?
Global
42
what options frequency has for scheduled import configurations?
daily/weekly/monthly
43
What field Specifies the month and day upon which the year-to-date calculations are based?
Year-to-Date Starts
44
What field Specifies the day of the month that is used in calculations to mark the beginning of the current month?
Current Month Starts
45
collection of statistics scope for fields?
Global
46
what is the scope for WYSIWYG Editor?
Website
47
what is the scope for Use Static URLs for Media Content in WYSIWYG?
Global
48
in cms configurations, what does Enable Hierarchy Metadata do?
Gives you the ability to associate meta data with pages in the hierarchy.
49
options for Default Layout for Hierarchy Menu?
Content, Right column, Left Column
50
how many currencies in the world adobe commerce accepts?
more than 200 countries around the world.
51
set the display of the price can be done in what scopes?
separately for each store or view.
52
If you have a multisite Adobe Commerce or Magento Open Source installation, you can manage multiple base currencies by............?
by setting the scope to the website level.
53
base currency is set to what by default?
It is set to global by default,
54
the base currency scope is defined by?
the catalog price scope- catalog->price->catalog price scope
55
Set Catalog Price Scope to either .......
Global or Website
56
name 2 currency service connection?
fixer.io and Currency Converter API
57
how to update the currency rates?
update the rates manually or to import the rates automatically.
58
3 Redis features ?
PHP session storage
Tag-based cache cleanup without foreach loops
On-disk saves and master/slave replication
59
find your Redis configuration in one of the following files?
/etc/redis/redis.conf or /etc/redis/.conf
60
How To optimize the Redis instance for your requirements?
using a dedicated instance for each session, Commerce cache and FPC.
61
name 2 persistence options of redis?
Redis Database Backup (RDB)
Append Only File (AOF)
62
what does Redis Database Backup (RDB) do?
Redis Database Backup (RDB) snapshots store the complete database in a dump file after a given time, when a minimum number of keys have changed since the last save. Use the save setting inside the redis.conf file to configure this setting.
63
what does Append Only File (AOF) in redis do?
Append Only File (AOF) stores each write operation sent to Redis in a journal file. Redis reads this file on restart only and uses it to restore the original dataset.
64
AOF files are usually ....... than the equivalent RDB files for the same dataset.
bigger
65
AOF can be ...... than RDB depending on the exact fsync policy
slower
66
If you care a lot about your data, but still can live with a few minutes of data loss in case of disasters, you can simply use
RDB alone
67
There are many users using ...... alone, but redis discourage it since to have an ---- snapshot from time to time is a great idea for doing database backups, for faster restarts, and in the event of bugs in the AOF engine.
AOF
RDB
68
By default Redis saves snapshots of the dataset on disk, in a binary file called .....
dump.rdb
69
for in linux
create a child process
70
how much should be the redis cache instance?
As a starting point, you can use the size of the cache folder on your file system. For example, if the var/cache folder on your file system is 5 GB, set up your Redis instance with at least 5 GB to start. Persistence is not required for the cache instance because the Commerce cache can be restored.
71
performance options on redis
lazyfree-lazy-eviction yes
lazyfree-lazy-expire yes
lazyfree-lazy-server-del yes
replica-lazy-flush yes
6.x or later redis:
lazyfree-lazy-user-del yes
72
commandline for redis setup
bin/magento setup:config:set --cache-backend=redis --cache-backend-redis-=...
73
To configure Redis page caching
bin/magento setup:config:set --page-cache=redis --page-cache-redis-=...
74
enables Redis page caching, sets the host to 127.0.0.1 and assigns the database number to 1.all others set to default
bin/magento setup:config:set --page-cache=redis --page-cache-redis-server=127.0.0.1 --page-cache-redis-db=1
75
what is required in redis if you use Redis for both the default and full page cache.
Important: If you use Redis for more than one type of caching, the database numbers must be different. It is recommended that you assign the default caching database number to 0, the page-caching database number to 1, and the session storage database number to 2. 0
76
how to On install the Redis client on the EC2 instance?
sudo apt-get install redis
77
Configure Commerce to use Redis for session storage:
bin/magento setup:config:set --session-save=redis --session-save-redis-host= --session-save-redis-port= --session-save-redis-log-level=4 --session-save-redis-db=2
78
extended Redis cache implementation in etc/env.php
'cache' => [
'frontend' => [
'default' => [
'backend' => '\\Magento\\Framework\\Cache\\Backend\\Redis',
'backend_options' => [
'server' => '127.0.0.1',
'database' => '0',
'port' => '6379'
],
],
],
79
In case you are using the preload feature with the L2 cache, do not forget to add the......suffix to your keys, since L2 cache only transfers the hash of the data, not the data itself:
:hash
80
L2 cache only transfers the ..... of the data, not the data itself:
hash
81
what is L2 cache?
A level 2 cache (L2 cache) is a CPU cache memory that is located outside and separate from the microprocessor chip core
82
Redis ping command?
redis-cli ping
83
Redis monitor command?
redis-cli monitor
84
what is response of redis ping?
pong
85
what tool in redis supports automatic decompression of Commerce 2 Session and Page cache and displays PHP session data in a human-readable form. ?
RESP.app-GUI for Redis
86
parameters for enabling Redis session storage?
--session-save=redis
87
default value for session-save-redis-compression-threshold?
2048
88
how to disable compression in redis?
session-save-redis-compression-threshold=0
89
options for compression lib in redis?
Options: gzip, lzf, lz4 or snappy.
90
default value for session-save-redis-compression-lib
gzip
91
session-save-redis-log-level options?
Set to any of the following, listed in order from least verbose to most verbose:
0 (emergency: only the most severe errors)
1 (alert: immediate action required)
2 (critical: application component unavailable)
3 (error: runtime errors, not critical but must be monitored)
4 (warning: additional information, recommended)
5 (notice: normal but significant condition)
6 (info: informational messages)
7 (debug: the most information for development or testing only)
92
how to set log level for redis to the only the most severe errors?
0
93
what is 5 in log level of redis?
(notice: normal but significant condition
94
how to have the most info on log level of redis?
set session-save-redis-log-level to 7 (debug: the most information for development or testing only)
95
name 4 essential initialization routines happening in app/bootstrap.php
1- error handling
2-initialing the autoloader
3- setting profiling options
4-setting the default timezone
96
in catching exceptions in bootstrap what happens in true/false?
If true: Commerce handled exception successfully. No need to do anything else.
If false: (or any other empty result) Commerce did not handle the exception. The bootstrap object performs the default exception-handling subroutine.
96
bootstrap run logic , what 4 steps should happen before starting the application?
Initializes the error handler.
Creates the object manager and basic shared services that are used everywhere and are affected by the environment. The environment parameters are injected properly into these objects.
Asserts that maintenance mode is not enabled; otherwise, terminates.
Asserts that the Commerce application is installed; otherwise, terminates.
97
bootstrap object file name?
/app/bootstrap.php /
98
an application for retrieving static resources ?
\Magento\Framework\App\StaticResource
99
how avoid potential exploits on the server?
The entry point for static view files is not used in production mode ,In production mode, the Commerce application expects that all necessary resources exist in the /pub/static directory.
100
in what mode the content of the file is returned so that every time the resource is requested, the returned content is up to date?
developer mode
101
in what mode the retrieved resource is published so it is accessible by the previously requested URL?
default mode
102
in what mode bootstrap shows exception as is?
developer mode
103
in what mode bootstrap attempts to log exception and display a generic error message?
any mode except developer mode
104
what's error code for default exception handling in bootstrap?
Terminates Commerce with error code 1
105
what is edit resource entry point?
Magento\MediaStorage\App\Media
106
-------- attempts to find the media file in the configured ---------and and write it into the -------- directory, then return its ------.
\Magento\Core\App\Media
database storage
pub/static
contents
107
\Magento\Core\App\Media On error, returns an ..... status code in the ------ with ------
HTTP 404 (Not Found)
header
no contents
108
HTTP entry point Error handling
If you are using developer mode:
If the Commerce application is not installed, --------
If the Commerce application is installed, display an error and HTTP status code 500 (Internal Server Error).
redirect to Setup Wizard.
109
HTTP entry point Error handling
If you are using developer mode:
If the Commerce application is installed, display an error and HTTP status code --------
500 (Internal Server Error).
110
HTTP entry point Error handling
If the Commerce application is in maintenance mode, display a user-friendly “Service Unavailable” landing page with---------
HTTP status code 503 (Service Unavailable).
111
If the Commerce application is not installed, --------
redirect to Setup Wizard.
112
If the session is invalid,---------
redirect to the home page.
113
If there is any other application initialization error, display a user-friendly “Page Not Found” page with ----------
HTTP status code 404 (Not Found).
114
On any other error, display a user-friendly “Service Unavailable” page with HTTP response ---------
e with HTTP response 503 and generate an error report and display its ID on the page.
115
what is maintenance parameter on bootstrap file?
$params[Bootstrap::PARAM_REQUIRE_MAINTENANCE]
116
what is default value for $params[Bootstrap::PARAM_REQUIRE_MAINTENANCE] ?
false
117
what is default value for $params[Bootstrap::PARAM_REQUIRE_IS_INSTALLED] ?
true
118
what is input for $bootstrap->createApplication(X?)?
Magento\Framework\App\Http
119
in what mode Exceptions are not displayed to the user; instead, exceptions are written to log files.?
default, production
120
what mode Hides custom X-Magento-* HTTP request and response headers?
default
121
in what mode You can configure maintenance mode to allow visitor access from a specified list of IP addresses.?
maintenance mode
122
how to Redirects site visitors to a default Service Temporarily Unavailable page.?
maintenance mode
123
what mode Enables automatic code compilation?
developer mode
124
what mode Shows custom X-Magento-* HTTP request and response headers?
developer mode
125
what mode Serves static view files from cache only?
production
126
what mode enables you to deploy the Commerce application on a single server without changing any settings?
default
127
in what modes Static view files are cached?
default
128
in what mode You cannot enable or disable cache types using the Admin.?
production
129
in what mode Static view files are not materialized, and URLs for them are composed on the fly.
production
130
in what mode An exception is thrown when an event subscriber cannot be invoked?
developer
131
in what mode Static view files are not cached; they are written to the pub/static directory every time they are called?
developer
132
when application runs a deployment script, If the app/etc/config.php file does not exist in the codebase, static files are -----------and deployed during this phase. This -------- the length of your deploy phase and site maintenance.
compressed using gzip
increases
133
what file defines how to build and deploy Adobe Commerce, including user access, service mapping (relationships), hooks, cron jobs, and more.
.magento.app.yaml
134
defines the system-specific settings Adobe Commerce uses to configure your store. Adobe Commerce generates this file if it does not detect it during the build phase
app/etc/config.php
135
defines the services Adobe Commerce uses by name and version. For example, this file can include versions of MySQL, PHP extensions, and Elasticsearch or OpenSearch. These are referred to as services.
.magento/services.yaml
136
defines how Adobe Commerce processes an incoming URL.
.magento/routes.yaml
137
centralizes the management of build and deploy actions across all of your environments, including Pro Staging and Production, using environment variables.
.magento.env.yaml
138
user access, service mapping (relationships), hooks, cron jobs, a are in what file?
.magento.app.yaml
139
how to view logs in magento cloud?
You can view logs using the magento-cloud log command.
140
build phase
During the build phase, the site is not in maintenance mode and will not be brought down if errors or issues occur. We build only what has changed since the last build.
141
how to change Fastly API token credentials?
submit a ticket to adobe support
142
what is apex domain?
An apex domain is a custom domain that does not contain a subdomain,
143
name common attacks that vastly can avoid?
Ping of Death, Smurf attacks, as well as other ICMP-based floods.
144
Fastly manages the TCP level attacks at the---------
cache layer
145
DDOS protection is built-in to the ------- service.
FAstly CDN
146
For attacks targeting ......, the Fastly service filters out ----------
layer 3 or 4
traffic based on port and protocol,
147
The apex domain (testweb.com and www.testweb.com) is linked to the Adobe Commerce on cloud infrastructure Fastly service account. You want to manage Fastly services for the service.testweb.com and product-updates.testweb.com subdomains from a ------- Fastly account.Submit a Adobe Commerce support ticket requesting that the subdomains be delegated from the Adobe Commerce on cloud infrastructure Fastly service account to the Fastly account. Include the -------- for the Fastly account in the ticket.
different
Service ID
148
how to Block traffic by IP?
the most effective way to block traffic by specific IP addresses and subnets is adding an ACL for Fastly in the Commerce Admin. Following are the steps with links to more detailed instructions:
Stores > Configuration > Advanced > System > Full Page Cache > Fastly Configuration.
Create a new ACL with a list of IP addresses or subnets you’re going to block.
Add it to the ACL list and block as described in the Blocking guide for the Fastly_Cdn module for Adobe Commerce.
149
Block by country?
For the Adobe Commerce on cloud infrastructure store, the most effective way to block traffic by country(s) is adding an ACL for Fastly in the Commerce Admin.
In the Commerce Admin, navigate to Stores > Configuration > Advanced > System > Full Page Cache > Fastly Configuration.
Select the countries and configure blocking using ACL as described in the Blocking guide for the Fastly_Cdn module for Adobe Commerce.
150
To establish blocking based on user agent,?
To establish blocking based on user agent, you need to add a custom VCL snippet to your Fastly configuration. To do this, take the following steps:
In the Commerce Admin, navigate to Stores > Configuration > Advanced > System > Full Page Cache.
Then Fastly Configuration > Custom VCL Snippets.
Create the new custom snippet as described in the Custom VCL snippets guide for the Fastly_Cdn module. You can use the following code sample as an example. This sample disallows traffic for the AhrefsBot and SemrushBot user agents.
name: block_bad_useragents
type: recv
priority: 5
VCL:
if ( req.http.User-Agent ~ "(AhrefsBot|SemrushBot)" ) {
error 405 "Not allowed";
}
151
what is rate limiting?
Rate limiting is a strategy for limiting network traffic.
152
There is an experimental Fastly functionality for Adobe Commerce on cloud infrastructure which allows you to specify the .......for particular paths
rate limit
153
Fastly works with ------ to provide fast caching capabilities and a Content Delivery Network (CDN) for static assets
Varnish
154
Get Fastly credentials for Staging and Production environments
Enable Fastly CDN caching
Upload Fastly .........
Update ------- to ------- traffic to the Fastly service
Test Fastly caching
VCL snippets
DNS configuration, rout
155
file to get Fastly credentials?
/mnt/shared/fastly_tokens.txt
156
command to get Fastly credentials?
magento-cloud variable:get -e
157
environment variables for Fastly
CONFIG__DEFAULT__SYSTEM__FULL_PAGE_CACHE__FASTLY__FASTLY_API_KEY
CONFIG__DEFAULT__SYSTEM__FULL_PAGE_CACHE__FASTLY__FASTLY_SERVICE_ID
158
DNS setting for Fastly
For Pro Staging and Production:
mcprod..com
mcstaging..com
For Starter Production only:
mcprod..com
159
how to check version of Fastly installed?
composer show *fastly*
160
curl command to check response headers?
curl -vo /dev/null -H Fastly-Debug:1 https://
161
command with resolution bypass of dns
curl -vo /dev/null -H Fastly-Debug:1 --resolve :443:
162
response that Fastly is working
< Fastly-Magento-VCL-Uploaded: yes
< X-Cache: HIT, MISS
163
domains and subdomains for Fastly can configurations
DOMAIN OR SUBDOMAIN CNAME
mcprod.your-domain.com prod.magentocloud.map.fastly.net
mcstaging.your-domain.com prod.magentocloud.map.fastly.net
164
When the CNAME records are live, Adobe-------certificates and uploads the ------
provisions, SSL/TLS certificates.
165
image optimization features by Fastly
Force lossy conversion
Deep image optimization
Adaptive pixel ratios
Support for common image formats: PNG, JPEG, GIF, and WebP
166
. Image optimization only applies to ----- images. ------ images are not resized.
product, CMS
167
Deep image optimization is ----- by default. When this feature is ----, the built-in resizing feature in Adobe Commerce is turned ----- and resizing work is ------- to the Fastly IO service.
off, enabled,off,offloaded
168
The Adaptive pixel ratios feature is useful to optimize images for -------- web applications. It allows you to deliver multiple image sizes and resolutions from ------ image source file by adding a ----- for each product image.
Progressive, one,srcset
169
The standard WAF service powered by Fastly does not support what features?
Protection against malware or bot mitigation
Rate limiting
Configuring a logging endpoint for customer
170
what benefits The WAF service provides ?
CI compliance—WAF enablement ensures that Adobe Commerce storefronts in Production environments meet PCI DSS 6.6 security requirements.
Default WAF policy—The default WAF policy, configured and maintained by Fastly, provides a collection of security rules tailored to protect your Adobe Commerce web applications from a wide range of attacks, including injection attacks, malicious inputs, cross-site scripting, data exfiltration, HTTP protocol violations, and other OWASP Top Ten security threats.
WAF onboarding and enablement—Adobe deploys and enables the default WAF policy in your Production environment within 2 to 3 weeks after provisioning is final.
Operations and maintenance support—
Adobe and Fastly set up and manage your logs and alerts for the WAF service.
Adobe triages customer support tickets related to WAF service issues that block legitimate traffic as Priority 1 issues.
Automated upgrades to the WAF service version ensure immediate coverage for new or evolving exploits.
171
collection of security rules in Fastly avoids what attacks?
range of attacks, including injection attacks, malicious inputs, cross-site scripting, data exfiltration, HTTP protocol violations,
172
what does WAF do? the WAF in adobe commerce is powered by whom?
detects, logs, and blocks malicious request traffic before it can damage your sites or network. , FASTLY
173
customize Fastly error?
In the right pane, expand Full Page Cache > Fastly Configuration > Custom Synthetic Pages.
174
how to Retrieve the IP address of your store?
nslookup {your_project_id}.ent.magento.cloud
and for integration
nslookup gw.{your_region}.magentosite.cloud
175
If any block in a layout is designated as uncacheable, the entire page is uncacheable.
uncacheable
176
name some Examples of uncacheable pages
compare products, cart, checkout pages
177
Only HTTP --- and ---- requests are cacheable.
GET ,HEAD
178
The list of resources that you can access depends on your .......Permissions required to access particular resource are configured in the ------
user type,webapi.xml
179
if administrators are authorized for the Magento_Customer::group resource, they can make a ........
GET /V1/customerGroups/:id call.
180
user type for Resources with anonymous or self permission
Customer
181
user type for Resources with anonymous permission
Guest
182
A guest or anonymous is a special permission that doesn't need to be defined in -----
acl.xml
183
what is a special access used if you already have an authenticated session with the system?
self
184
For example,-------- fetches the logged-in customer's details. This is typically useful for .......
GET /V1/customers/me ,JavaScript-based widgets
185
without
186
---- access enables a user to access resources they own.
self
187
authentication method for your clients:
Mobile application authentication
Third-party application authentication
JavaScript widget authentication (storefront or Admin)
188
Mobile application. 1...........authentication.
Third-party application. 2-.... authentication.
JavaScript widget on the Admin or storefront. 3----- authentication.
1-Token-based
2-OAuth-based
3-Session-based
189
access token types in token authentication ?
Integration
Admin
Customer
190
DEFAULT LIFETIME for Integration, admin and customer token
Integration The merchant determines which Commerce resources the integration can access. Indefinite. It lasts until it is manually revoked.
Admin The merchant determines which Commerce resources an admin user has access to. 4 hours
Customer Commerce grants access to resources with the anonymous or self permission. Merchants cannot edit these settings. 1 hour
191
make a web API call with an admin token:
curl -X GET "http:///rest/default/V1/customers/2" -H "Authorization: Bearer vbnf3hjklp5iuytre"
192
make a web API call with a customer token:
curl -X GET "http:///rest/default/V1/customers/me" -H "Authorization: Bearer asdf3hjklp5iuytre"
