Hi,
We are building an application using React web and Oracle cloud database free tier (for now).
We are using the database as the entire backend. We built the business logic in pl/sql objects and we published them as API endpoints using ORDS.
Now we want to implement the users authentication and authorization mechanism but since we are new to this type of architecture we are kinda lost. Most of the research lead to using OAUTH but the thing is this we don't want to use third parties like Facebook and google and such. This is a business app so it will be used by an organization not for regular users.
So what is the proper mechanism to be used here? What is the best secure way to authenticate users so that only authorized users from our app can access the the APIs?
Thanks,
Gado