It should be avoided whenever possible, but it works for REST enabled SQL
My requirement is to have a simple way to manage ORDS users and their roles and privileges, and have a simple (e.g. basic) authentication scheme to my ORDS web service.
What I've found so far, haven't tried it though, it requires also having APEX installed, is to use APEX users to access ORDS web services:
Unfortunately no, I can't get successful authentication with an Apex user. I tried following the instructions from the link in the post before, I have an ordinary Apex user, and a workspace developer/administrator (which has an ORDS module). I assigned the "RESTful services" group to the ordinary user, created a privilege on the ORDS module which has the "RESTful services" role. When I try accessing the web service, with basic authentication, I get HTTP 401.
Any ideas why this doesn't work?
Not sure if I'm already too late:
java -jar ords.war user XXX "RESTful Services"
Where XXX is the user you would like to create. Of course this way ORDS and APEX would not be linked in the sense that if you change the APEX password, you'll have to do the same in ORDS.
Supposedly, starting ORDS 18.2, APEX and ORDS users may be linked, and in fact I actually tested, but I'm currently testing an ORDS 18.4 and it seems that this limitation has come back, or maybe I'm missing something.
I'll keep looking, but in the meantime, hope it helps.