APEX 5 New Substitution Syntax Features


You've probably all heard about XSS, a.k.a. Cross Site Scripting. One of the ways you make yourself vulnerable to XSS is by creating JavaScript in your APEX applications that accepts unescaped user input - either direct or data retrieved from the database.
As a - very stupid and simple - example, create a Page with a Text Item (say P3_TEXT).  Next create a Dynamic Action that executes this snippet of Javascript on Page (more...)

APEX 5 New Runtime API Lockdown Features

In APEX 4.x the developer could implement a feature that involves a call to the APEX API. E.g. you could create new pages on the fly if you would like to (just examine an export file for the how-to). You could drop an application using a procedure from the APEX_INSTANCE_ADMIN package. You could drop a user using APEX_UTIL.REMOVE_USER. If this is all on purpose and secured than that's fine. But maybe you (more...)

APEX 5 New Password Reset Features

Now and then it happens when we're logging in into our APEX instance: We have to change our password again .... And that means, typing it in an awful number of times:
1. Current Password
2. New Password (and of course preferably the same as the current one ...)
3. Confirm New Password
4. Press Apply Changes
5. Press Retun
6. And we're back at Square One : The login screen - and here we type (more...)

APEX 5 New Developer Preferences Features

As a lot of the new APEX 5 features are "by developers for developers", this one is also a nifty little thing that make our lives easier. Only the developer part of our lives of course....
In the upper right corner of APEX 5 you'll see your login name and a rather anonymous avatar. Just for fun - and recognisability - you can add your own face there. Or a picture of your (more...)

My OOW14 Performances

Oracle Open World 2014 starts in just over 4 weeks from now. And I am one of the (50,000?) lucky people who will be there ....
I will even take part in three sessions, one straight at the start and one almost at the end:

What Are They Thinking? With Oracle Application Express and Oracle Data Miner [UGF2861]
Sunday, Sep 28, 9:00 AM - 9:45 AM - Moscone South - 304

Panel Discussion: Bring Your (more...)

APEX 5 New Column Link Features

In the current version of Oracle Application Express you could use up to three items in a Column Link.
Most of the times that is enough. But there were always some use cases where you needed four or even five. And of course, just like with all limitations, you can figure out a work around. But wouldn't it be just awesome if APEX offers us more items out of the box.

And in APEX 5 (more...)

APEX 5 New Supporting Objects Features

In the current version of APEX the Supporting Objects feature is undervalued. You can create (sort of) self installing applications with it, but it is not widely used. Why? Because people don't realy know the feature or people do and experience lack of functionality. In both cases : Check out the functionality of APEX 5!
When you have scripts for creating tables, packages etc., in the current version you have to manually keep those (more...)

APEX 5 New Calendar Features

While playing around in the APEX 5 EA2 environment I discovered a few neat little features for Calendar regions.

First of all you can export the data of the calendar - only the data that's currently visible - to four types of format. Especially the iCal format is new and interesting as this is readable by most calendar applications. Right now, in EA2, the PDF option doesn't seem to work yet. And alas, the iCal (more...)

Kscope Wednesday

Also today is packed with excellent sessions. The first one, "Cookie Monster", by Tim St.Hillaire covered the different type of cookies and how you can set and read them from within your APEX application. For a lot of purposes you could nowadays use local storage as well, but there's still a case for cookies - and that's not a jar ;-)
The second one, "Single Sign On", by Anton Nielsen (more...)

Kscope Tuesday

This day was quite busy: I had two presentations and a panel session, more or less back to back. My first presentation "Intro into Mobile APEX Development" went ok, but I was especially pleased with the way my second presentation "Creating Hybrid APEX Applications" did go. I think I got the message across that it is not that hard to create APEX Applications with native iOS (or Android) functionality, like accessing (more...)

Kscope Monday

The Monday started off with the general session. The most awaited announcement was: Where will Kscope have it's residence in 2015? The answer can be found on www.kscope15.com (in short: in an awesome resort in Florida).
After that, the selection begins ... which session should I attend... I picked two interesting sessions about the APEX Listener / Oracle Rest Data Service. This product is growing fast in functionality and will get more important in (more...)

Kscope is awesome ….

As a tradition, this Sunday Kscope kicked off with a full day of presentations by Oracle's APEX Development Team. And of course it was all about "5.0". Joel started with the "Awesome revolution of APEX" - the term "awesome" (and the associated song) seems the be the conference team this year. After that the Page Designer, Interactive Reports, Mobile development all got the special attention they deserve. But the best part - (more...)