Hi, I’m facing an issue with Oracle APEX – Generative AI Service (OpenAI provider) where Test Connection behaves differently across two environments, even though the configuration looks identical.
Scenario
• TEST: Test Connection works
OpenAI provider, Base URL https://api.openai.com/v1, same model, same credential, same API key.
• DEV: Test Connection fails with:
“Authentication error or forbidden access (HTTP-) for URL https://api.openai.com/v1/chat/completions. Please check the configuration of Generative AI Services.”
Configuration
• Appears identical on DEV and TEST (provider / base URL / model / credential / same API key).
Evidence
• From the DEV ORDS server: curl -I https://api.openai.com/v1/models works.
• From the DB side: DNS resolution is OK (UTL_INADDR) and TCP connectivity to api.openai.com:443 is OK (UTL_TCP).
• Wallet/TLS behavior is opposite between DEV and TEST:
• DEV: we imported the OpenAI certificate chain into the Oracle Wallet and DB-side HTTPS calls from SQL Developer (UTL_HTTP) work, but the APEX Test Connection still fails.
• TEST: the opposite happens: APEX Test Connection works, while DB-side UTL_HTTP fails unless the wallet is updated.
This suggests the APEX Test Connection may be using a different HTTP/TLS stack/path (ORDS/Java client vs DB UTL_HTTP), or in DEV the outbound request might not be sending the Authorization header correctly (or it’s being altered by a proxy/WAF), even though the UI configuration looks the same.
