12 Replies Latest reply on Jul 12, 2013 1:21 PM by InoL

    Securely calling stored procedure with APEX URL

    Nick Clinite

      I have a web server that needs to call a stored procedure on an Oracle database (v10.2.0.4.0-64bit), and to do so without storing schema credentials on the web server it has been recommended to call the procedure using a URL to APEX, and granting execute privileges on the package storing the procedure to APEX_PUBLIC_USER.  However, this allows anyone on the network to call the procedure if they have the URL.  Is there any way to make sure that either Apex or the procedure only responds directly to requests from the web server?