Your demo application allows everyone to have complete access to every page, which is very unusual for a web application. This chapter examines the APEX facilities for restricting access. These facilities can be divided into authentication, which identifies the legal users, and authorization, which specifies what information each legal user is allowed to see. You will also consider the issue of how to protect the data from malicious users.


Authentication is the ability to identify the current user of the application. APEX users identify themselves by providing a username and password. APEX supports several possible ...

Get Understanding Oracle APEX 5 Application Development, Second Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.