Discussions
Categories
- 384.5K All Categories
- 2.5K Data
- 551 Big Data Appliance
- 1.9K Data Science
- 451.3K Databases
- 222.1K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 32 Multilingual Engine
- 561 MySQL Community Space
- 479 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3.1K ORDS, SODA & JSON in the Database
- 561 SQLcl
- 4K SQL Developer Data Modeler
- 187.4K SQL & PL/SQL
- 21.4K SQL Developer
- 296.8K Development
- Application Development
- 18 Developer Projects
- 140 Programming Languages
- 293.5K Development Tools
- 112 DevOps
- 3.1K QA/Testing
- 646.2K Java
- 28 Java Learning Subscription
- 37K Database Connectivity
- 186 Java Community Process
- 105 Java 25
- 22.1K Java APIs
- 138.2K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 21 Java Essentials
- 164 Java 8 Questions
- 86K Java Programming
- 81 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.3K Java SE
- 13.8K Java Security
- 206 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 525 LiveLabs
- 39 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.7K Other Languages
- 2.3K Chinese
- 178 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 236 Portuguese
How to allow users of the apps to create their own application user?
Hi
I need to allow the users of my application to be able to manage the access control of the application, which includes creating new users of the application.
I tried Access Control Page, although it can "Add User", but it doesn't allow you to input passwords. So it seems Access Control Page can only allow existing APEX users to access applications.
How can I accomplish my goal?
Best Answer
-
Use a custom authentication process that is driven by a table or tables in your application.. Many examples available on the web..
Thank you,
Tony Miller
LuvMuffin Software
Ruckersville, VA
Answers
-
Use a custom authentication process that is driven by a table or tables in your application.. Many examples available on the web..
Thank you,
Tony Miller
LuvMuffin Software
Ruckersville, VA -
Hi, I created a custom authentication scheme.
Here is the authentication function I created:
create or replace function harbin_spatial_auth2(
p_username varchar2,
p_password varchar2)
return boolean
is
type refcur is ref cursor;
passwd varchar2(200);
cur refcur;
begin
open cur for ('select PASSWD from XUXUEHAN."harbin_spatial_users" where USERNAME='''||p_username||''' and PASSWD='''||p_password||'''');
fetch cur into passwd;
if cur%NOTFOUND then
return false;
end if;
return true;
end;
I attached the authentication scheme to my application.
Here is the content of my user table:
ID USERNAME PASSWD
1 admin admin
2 xxh xxh
But when I tried to login with username "xxh" and password "xxh", it failed.
Why is this happening? Thank you
-
I also tested the function from command line:
declare
res boolean;
begin
res := harbin_spatial_auth2('xxh', 'xxh');
if res = true then
dbms_output.put_line('true');
else
dbms_output.put_line('false');
end if;
end;
The result is true.
Why did the function return false when used for login?
-
Perhaps APEX is sending the username in uppercase and you're only checking for exact case?
-
Ok, I got it. I only checked for exact ase.
Thank you:-)
-
Lingxi Ruan wrote: Hi, I created a custom authentication scheme. Here is the authentication function I created: create or replace function harbin_spatial_auth2( p_username varchar2, p_password varchar2) return boolean is type refcur is ref cursor; passwd varchar2(200); cur refcur; begin open cur for ('select PASSWD from XUXUEHAN."harbin_spatial_users" where USERNAME='''||p_username||''' and PASSWD='''||p_password||''''); fetch cur into passwd; if cur%NOTFOUND then return false; end if; return true; end;And what happens when you enter
' union select 'x' from dual where 'x' = 'x
as a password?
Your authentication scheme needs much more work.
