As I understand it there is no explicit support for the HEAD method in ORDS (https://forums.oracle.com/ords/apexds/post/is-the-head-method-available-in-ords-3-0-4-5119)
We have a following challenge:
- Email is sent to students with a link (unique token)
- The link URI is an ORDS REST endpoint redirecting to an APEX page
- When user is using Outlook web the REST endpoint is called twice - first as HEAD and then as GET
- The reason is the Advance Thread protection (Safelink) feature
- https://learn.microsoft.com/en-us/answers/questions/431398/outlook-safe-link-protection-trigger-the-actual-re
- The ORDS is accepting the HEAD request and routing it as GET - we see owa_util.get_cgi_env('REQUEST_METHOD') = ‘GET’
- That's causing duplicate processing & token expiration
The question:
How we can distinguish the HEAD requests from GET within the ORDS.
We use self hosted ORDS and OCI autonomous database