Oracle APEX · Authentication Profile

Oracle Apex Authentication

Authentication

Oracle APEX secures its APIs with http and oauth2 across 2 declared security schemes, as derived from its OpenAPI definitions. OAuth 2.0 is offered via the authorizationCode and clientCredentials flow(s).

APEXCloudDatabaseDevelopment PlatformEnterpriseGenerative AILow-CodeOracleORDSPL/SQLREST APIWeb ApplicationsWorkflow
Methods: http, oauth2 Schemes: 2 OAuth flows: authorizationCode, clientCredentials API key in:

Security Schemes

basicAuth http
scheme: basic
oauth2 oauth2
· flows: clientCredentials, authorizationCode

Source

Authentication Profile

oracle-apex-authentication.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/ords-rest-api-openapi.json
summary:
  types:
  - http
  - oauth2
  oauth2_flows:
  - authorizationCode
  - clientCredentials
schemes:
- name: basicAuth
  type: http
  scheme: basic
  description: HTTP Basic authentication using ORDS-enabled database schema credentials
  sources:
  - openapi/ords-rest-api-openapi.json
- name: oauth2
  type: oauth2
  flows:
  - flow: clientCredentials
    tokenUrl: /ords/{schema}/oauth/token
    scopes: 0
  - flow: authorizationCode
    authorizationUrl: /ords/{schema}/oauth/auth
    tokenUrl: /ords/{schema}/oauth/token
    scopes: 0
  description: OAuth 2.0 authorization using ORDS OAuth client credentials or authorization
    code flow
  sources:
  - openapi/ords-rest-api-openapi.json