Welcome to the Oracle APEX Foundations course. Today, in this lesson on Implementing Security in Your Application, I will be talking about Authorization. Let's get started. First, you will learn the two different ways of implementing authorization schemes in your Apex app. Then you will learn to create an authorization scheme from scratch. Finally, you will learn to associate this authorization scheme to a page in your application. You can create and apply an authorization scheme to an application and its components using two different ways; by navigating to Shared components and then either creating an authorization scheme from scratch or by copying an existing authorization scheme. By creating an access control page and then performing the following steps. Configuring the Access control page, where you set the application mode and add users to the access control list. Applying the authorization scheme to the application components. This video covers how to create an authorization scheme from scratch. Let us see how to create an authorization scheme from scratch. When you create an authorization scheme, you select an Authorization scheme type.

The authorization scheme type determines how an authorization scheme is applied. Developers can create new authorization type plugins to extend this list. To create an authorization scheme, navigate to your application home page. In this example, I have created a simple demo projects 'Application' and I'm in the application home page. Click "Check components". Under "security" select authorization schemes. On this page, click "Create" to create a new authorization scheme. For create authorization scheme, select 'from scratch'. And click 'Next'. In create Authorization Scheme wizard, enter a unique name that identifies this authorization scheme. Here in this example I enter "administrator". For scheme type, select how this authorization scheme will be applied. In this example, I select

'Value of Item in Expression 1 = Expression 2'. The authorization succeeds if the items value is equal to the authorization value. In this example, let us enter app user for item. And for value I enter manager. That is, if the value of the app user, of the user who is logged in is equal to manager, then the user is able to see the page. Identify error message displayed when scheme is violated. You can enter something like, "You don't have sufficient privileges". For validate authorization scheme, select once per session. Authorization scheme are evaluated on first use in a session. Use this option to control if future uses cause re-evaluations and when a memorised result can be taken instead. Click "Create Authorization" scheme.

We have a new authorization scheme created. Now, to attach an authorization scheme to a page, let's see how it is done. Navigate to the page where you want to apply the authorization. Under rendering, select the page name. In the property editor, search for "security". From the authorization scheme list, select a "Scheme." Here, you can see the new authorization scheme we created earlier. We select administrator. For the page to be rendered, this authorization scheme may say value to true. Click "Save". Save and run the page. Let's see what happens when we enter a user who is not our manager. So, you are displayed with an error message saying you do not have sufficient privileges.

This is because the low code user does not have the manager privileges. Let us go back. Now, let us enter a manager user who has the privileges to view this page. There you go. The user has successfully logged in and authorised to view the page. In this example, we saw how when an authorization scheme evaluates to true, the page is displayed and is subject to other defined conditions. But, if the authorizations scheme evaluates to false then the page does not display and an error message is displayed. In this lesson, you learned how to create and implement an authorization scheme in your Apex app. I hope you learned something useful. Thank you for watching.