Is there a way to restrict or deny access to the ORacle APEX Administration page from end users:
Because, since we dont have control on the administration page, users can still key in the Application ID: 4000/4550 and get into the administration/developer page.
There is an option in administration page i.e. security where you can restrict access by domain/IP adress. But we dont want that. As restricting IP access will also restrict the developers access to the page.
We are using Oracle DB 11g XE , Oracle APEX 4.2 in our systems.
Thank you very much,
Yes you are right. But the problem is that we are not using Oracle APEX authentication scheme.
We are using a Table-based authentication in the DB.
See it should work like this. We have an End-user authorization scheme. Is there a condition which i can give in the adminstration page, that if the authorization user is "End User", then restrict.
I dont see any place where i can edit the administration controls itself.
I mean the Oracle APEX Administration services, which hosts as the id : 4000
I am not talking about the administration which is there when you login as a developer.
I hope you get it. Any user can just key in the ID:4550 in the URL and get into the Oracle APEX administration services. That is something different that he cannot login, but i want to restrict the page itself by saying "Not Authorised"
If you login to the INTERNAL workspace of your instance and go to Home > Manage Instance > Security you'll see the following two options:
<li>Disable Administrator Login: Yes/No
<li>Disable Workspace Login: Yes/No
Try playing around with those and see if that helps.