Hi All,
I am having problems understanding how (ORDS) roles are used in Apex.
I have (auto) Rest enabled a table (XXTV_ADDRESSES with alias addresses) and set the Authorization Required to Yes . This auto enabling will automatically generate a role and a privilege.
I can verify that this table can no longer be accessed. I get an Unauthorized error when I try to call the Full URL. When I change the pattern (in the privilege created by apex) to /Xaddresses/* the resource is no longer protected and a I can see all the data. So far everything is as expected.
I then create an ords client using OAUTH.create_client and use the created privilege name in the privilege_names parameter, I can access the data via Postman (and ofcourse using the client id and secret from the ords client.
This will still work even when I delete the role that Apex has generated. Where is the role used?
I assume the role can be assigned to a user. But where can you do this in Apex? I cannot find the created roles in the Application Access Control. Is the role needed?