In APEX 4.1 it was possible to define which users can't see special tabs.
I was in Shared Components, Authorization Scheme and there you had to choose in Authorization Scheme
-> Scheme Type "Value Of Item in Expression 1 Does Not Equal Expression 2"
There were two fields for expression 1 and expression 2.
How are the steps for APEX 4.2.0.00.22 to set up which tabs are visible for a user?
I can see that the fields were renamed to "Page Item Value" for Expr1 and "Value" for Expr2, which gives more clarity to the goal of the setup. To be able to check specific user id's you can for instance define your Auth Scheme using PL/SQL Function returning Boolean, like:
return (v('APP_USER') in ('id1', 'id2', 'id3'... 'idx'));
If you log in into your app as a power user this function will return True.
it is explained in this video in details:
I That tutorial was not in English, but this one , which was published a few days ago, in English.
[url http://skillbuilders.com/webinars/webinar.cfm/70?title=Securing%20Oracle%20APEX%20%13%20An%20Overview%20of%20Exploits%20and%20Solutions]Please click here to see it