1 person found this helpful
The URL that displays for each page indicates the location of Oracle Application Express and identifies the address of Oracle Application Express, the application ID, page number, and session ID. For example:
This example indicates:
apex.somewhere.comis the URL of the server
plsis the indicator to use the
apexis the database access descriptor (DAD) name. The DAD describes how HTTP Server connects to the database server so that it can fulfill an HTTP request. The default value is
f?p=is a prefix used by Oracle Application Express
4350is the application being called
1is the page within the application to be displayed
220883407765693447is the session number
link of the Docu.
based on this you can understand what can be change and from where.
From the App itself here are some customisation that could be made.
Security through obscurity is no security at all. Session state protection is required to prevent URL tampering.
"No matter what lengths you go to in order to obfuscate the URL there will always be more potentially sensitive information easily available to the user simply by using the "View Source" option in the browser. If you have security concerns then they must be addressed from the ground up in the design of the application."
look the following thread How to do URL Maksing / Hide parameter datas in url in Oracle APEX.
read this documentation there you will find your solution.
Thanks for the insights. It is not for the security reasons though. Users want to see the readable URL's rather than these URL with app ID,page num etc., Any easy way to do this?
One of the hyperlink is not working (that could be made).