I want to build an web application in Oracle APEX, where i want users to enter into the database server through the application server, thus i can ensure more security in my application. IF this is hard, then is there any other way where i can ensure more security in a web application in Oracle APEX?
Asked
Active
Viewed 142 times
-1
-
I think you need to review installation options, because this is what Tomcat, HTTP Server, WLS do. APEX is very secure, leveraging off db security. http://joelkallman.blogspot.com.au/2016/01/is-oracle-application-express-secure.html – Scott Jan 24 '17 at 04:26
-
Whether only the database server will provide more security? or a database server with a application server will provide more security? Please help. – Edward Smith Jan 24 '17 at 04:40
-
Please clarify what you think you mean. You can't run Apex without an application server. The security of your setup will depend on how well you secure access to both the database and your application server. – Jeffrey Kemp Jan 24 '17 at 05:12
-
Thank You. -Jeffrey Kemp – Edward Smith Jan 24 '17 at 05:22
1 Answers
0
Oracle APEX is a very stable and secure environement.
As is,
- you can encrypt and enforce high level passwords for the users
- you can lock account to avoid brute force attacks
- Devs and admins have accounts locked after a few attempts by default to avoid this issue
- The service can be easily configured with any SSL
- Webservices, like most of them, can be programmed to use access_tokens and other validations.
To my knowledge any additions security could be configured on the server and firewall. So I would say that you can do I lot, but it is up to you to perform good practices when defining your system's security.
Hope ity helps and good luck! :)
Paulo Künzel
- 729
- 2
- 7
- 30