I have installed APEX in our EBS database. We are not using SSO, and our EBS middle tier is in a different domain than APEX. Because of this I am unable to follow Rod West's document to integrate EBS and APEX using the FND_WEB_SEC package.
In order to get around this I have created my own JSP that passes the session_id for the user to the APEX URL. Apex is then able to get the EBS user information. This works well, but I need it to be more secure, so I want to encrypt the session_id in the JSP and then decrypt it in the APEX authorization scheme.
My question is how can I encrypt the session_id in the JSP (java), and then decrypt it in APEX (PL/SQL)? Do I need to call a pl/sql function from the JSP or can I use java classes (which is what I would prefer).
Thanks in advance for your help.