Expert Oracle and Java Security: Programming Secure Oracle Database Applications with Java

C H A P T E R 10

Application Authorization

Every Oracle application connects to one or more Oracle database instance, perhaps as one or more user. We have already seen how we can accomplish this with security and encryption for one application at a time. Our first application attached as the appusr account and had access to data in the HR schema via the hr_view role.

For that application, and any similar one, the developer will develop a procedure for a secure application role, like our p_check_hrview_access. But for all our security, there is one aspect that we haven't addressed: developers are still required to hard-code application user passwords into their code (or find another mechanism.) What if we provide a secure password store for ...

Get Expert Oracle and Java Security: Programming Secure Oracle Database Applications with Java now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Expert Oracle and Java Security: Programming Secure Oracle Database Applications with Java by David Coffin

C H A P T E R 10

Application Authorization

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly