I just changed my application from APEX Authentication to Custom Authentication. It seems to work perfectly well, I'm able to sign in with the user names and passwords that I have in my database table. I have a number of pages that are public, and they work just fine. I built a few Authorization Schemes as well, that check a privilege level within my database. As long as the page is set to public, this works (a non-logged in user gets an error, a logged in user with insufficient privilege gets an error, a logged in user with sufficient privs is able to view the page).
However, if I set the page to Authentication: Page Requires Authentication, every user receives “Access denied by Application security check”. This set up:
Produces this error:
This setup (with an admin user):
Works, but with a non-admin user, I recieve this (so I know my Authorization Scheme is working):
The only exception is if a user account in my custom scheme has the same user name as a prior user in my APEX scheme. They can then load the page just fine.
I assume with custom authentication, I should be able to use the Authentication: Page Requires Authentication setting? What am I missing in my custom auth settings that checks this?
I'm using APEX 22.2.4 in OCI. Thanks!
These are the settings in my custom auth section:
