How To Create an Authentication Scheme in Oracle APEX

Introduction
Creating an authentication scheme in Oracle APEX is essential for controlling how users access your application. An authentication scheme defines the process of verifying user identities during login. While APEX offers several preconfigured schemes, creating a custom authentication scheme allows you to tailor user validation to specific business needs, such as integrating with custom user tables or external systems.

How to Create an Authentication Scheme in Oracle APEX

1. Open Your Application
   Log in to Oracle APEX and open the application where you want to add the authentication scheme.

2. Access Authentication Schemes
   Navigate to Shared Components and select Authentication Schemes under the Security section.

3. Create a New Authentication Scheme
   Click Create and choose the type of scheme you want to create. For custom logic, select Custom authentication.

4. Define the Authentication Logic
   Provide a name for your scheme (e.g., Custom_Auth). Then, write the PL/SQL code that validates the user credentials. A simple example:

   DECLARE
     l_count NUMBER;
   BEGIN
     SELECT COUNT(*) INTO l_count
     FROM users
     WHERE username = :USERNAME
       AND password = :PASSWORD;
     RETURN l_count = 1;
   END;
   

   This code checks if the username and password exist in the users table.

5. Configure Additional Settings
   Set options like post-login and post-logout behavior, session timeout, and other preferences.

6. Make the Scheme Current
   After saving, select your new scheme and click Make Current to activate it.

7. Test the Authentication Scheme
   Run your application and verify that login works as expected with your authentication logic.

In Oracle APEX, an authentication scheme controls how users log in to an application. To associate an authentication scheme with an application, you must create one in the Shared Components section.

Steps to Create an Authentication Scheme

1. Open the App Builder

• Log in to your Oracle APEX workspace.

• Click on App Builder to view your applications.

2. Select an Application

• Click on the application where you want to set up authentication.

• This will take you to the application's home page.

3. Navigate to Authentication Schemes

• Click on Shared Components under the application menu.

• Under the Security section, select Authentication Schemes.

4. Create a New Authentication Scheme

• Click Create to add a new authentication scheme.

• Choose one of the predefined authentication schemes or create a custom one.

5. Select the Authentication Type

• Oracle APEX offers several authentication methods, including: 

• APEX Accounts – Uses Oracle APEX workspace credentials.

• Database Accounts – Uses database schema user credentials.

• LDAP Directory – Connects to an LDAP authentication server.

• Social Sign-In – Supports authentication via Google, Facebook, or other OpenID Connect/OAuth2 providers.

• Custom Authentication – Allows you to define your own authentication logic using PL/SQL.

6. Configure Authentication Settings

• Depending on the authentication type selected, provide the necessary credentials, URLs, or connection details.

• If using Custom Authentication, enter the PL/SQL function or process that validates users.

7. Save and Set as Current

• Click Create Authentication Scheme to save it.

• To enable this authentication scheme for the application, click Make Current.

8. Test the Authentication Scheme

• Run your application and attempt to log in to verify that authentication works as expected.

By following these steps, you can successfully create and configure an authentication scheme in Oracle APEX, ensuring secure access to your application.

Best Practices

• Always store passwords securely using hashing algorithms rather than plain text.

• Use consistent case (upper or lower) when comparing usernames to avoid mismatches.

• Test your authentication scheme thoroughly in a development environment before deploying to production.

• Name authentication schemes clearly for easy identification.

• Combine authentication with authorization schemes to control user access within your app.

Oracle APEX Documentation
For more detailed information, visit the official Oracle APEX documentation on authentication schemes:
https://docs.oracle.com/en/database/oracle/apex/23.2/aeapp/creating-authentication-schemes.html

Conclusion
Creating a custom authentication scheme in Oracle APEX provides flexibility and control over user access to your application. By defining your own validation logic, you can integrate with various user management systems and tailor authentication to your specific requirements. Following best practices ensures your scheme is secure, reliable, and maintainable as your application grows.