This section describes how workspace administrators can create new user accounts, manage existing user accounts, and change user passwords.
See Also:
"Creating Account Login Controls for a Workspace" and "Managing Users Across an Application Express Instance"User accounts are particularly useful if your application is using Application Express Accounts authentication. Application Express Accounts is an built-in authentication method in which user accounts are created and managed in the Oracle Application Express user repository.
See Also:
"Application Express Account Credentials" in Oracle Application Express Application Builder User's GuideTo access the Oracle Application Express development environment, users sign in to a shared work area called a workspace. Users are divided into four primary roles:
End users do not have access to development or administrative capabilities. End cannot sign into a workspace and create applications. End users can only run existing database or Websheet applications.
Developers are users who create and edit applications.
Workspace administrators are users who perform administrator tasks specific to a workspace such as managing user accounts, monitoring workspace activity, and viewing log files.
Instance administrators are superusers that manage an entire hosted instance using the Application Express Administration Services application. Instance administrators manage workspace provisioning, configure features and instance settings, and manage security.
This section describes the ways a workspace administrator can create new user accounts.
To create a new user account:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
Click Create User.
The Create User page appears.
Under User Identification, enter:
Username - Enter the username used to sign in to the system. Restrictions include:
Maximum length of 100 characters
No spaces
Only these special characters are permitted: ampersand (&) and period (.)
Email Address - Enter the valid email address for this user.
First Name - Enter the first or given name to further identify the user (optional).
Last Name - Enter the last or family name to further identify the user (optional).
Description - Enter comments about this user (optional).
Default Date Format - Specify the default Oracle date format for the user. This option controls the default date format within SQL Workshop.
Under Account Privileges:
Default Schema - Specify the default schema used for data browsing, application creation, and SQL script execution.
When using workspaces that have more than one schema available, this schema is the default. This setting does not control security, only the user's preference.
Accessible Schemas (null for all) - Leave this blank to enable the end user to access all schemas associated with the workspace.
User is a workspace administrator - Select Yes or No to specify if this user should have workspace administrator privileges. Administrators are given access to all components. Additionally, they can manage user accounts, groups, and development services. Components may not be available if they are switched off by Instance Administrators.
User is a developer - Select Yes or No to specify if this user should have developer privileges. Developers create and modify applications and database objects and view developer activity, session state, workspace activity, application, and schema reports.
Developers must have access to either Application Builder, SQL Workshop, or both. Components may not be available if they are switched off by Instance Administrators.
Application Builder Access - Determines whether a developer has access to the Application Builder.
SQL Workshop Access - Determines whether a developer has access to the SQL Workshop.
Team Development Access - Determines whether a developer has access to the Team Development.
Set Account Availability - Select Locked to prevent the account from being used. Select Unlocked to allow the account to be used.
If the user has exceeded the maximum login failures allowed as defined in Workspace Preferences, then the account is locked automatically.
Tip:
An Instance administrator can configure these settings for an entire Oracle Application Express instance and define password complexity policies. See "About Authentication Controls," "About Strong Password Policies," and "Configuring Password Policies."Under Password:
Password - Enter a case-sensitive password.
Confirm Password - Enter the password again.
Require Change of Password On First Use - Select No to allow the user to use the same password until it expires. Select Yes to require the user to change the password immediately when logging in the first time.
Tip:
An Instance administrator can configure these settings for an entire Oracle Application Express instance and define password complexity policies. See "About Authentication Controls," "About Strong Password Policies," and "Configuring Password Policies."Under Group Assignments, specify the groups to which this user belongs. To assign a user to a group, select the group and click Move. To select multiple groups, press and hold the CTRL key and then click Move All. To remove a user from a group, select the group and click Remove.
Click Create User or Create and Create Another.
Workspace administrators can create multiple user accounts in a single operation.
To create multiple user accounts simultaneously:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
Click Create Multiple Users.
The Create Multiple Users page appears.
In List of Email Addresses, enter or copy and paste email addresses separated by commas, semicolons, or new lines.
Under Users:
List of Email Addresses - Enter or copy and paste email addresses separated by commas, semicolons, or new lines.
Usernames - Specify whether to include or exclude the domain name. Select one of the following:
Set username to full email address
Exclude @ domain as part of the username
Removes all text after the @ symbol (for example, user1@xyz.com becomes user1).
Under Account Privileges:
Default Schema - Specify the default schema used for data browsing, application creation, and SQL script execution. When using workspaces that have more than one schema available, this schema is the default for creating applications, performing SQL queries, and so on.
Accessible Schemas (null for all) - Enter a colon-delimited list of schemas for which this developer has permissions when using the SQL Workshop. The list of schemas you enter here restricts the user to a subset of the full set of schemas provisioned for the workspace and determines what schema names the user sees in SQL Workshop.
Users are workspace administrators - Select Yes or No to specify if this user should have workspace administrator privileges. Administrators are given access to all components. Additionally, they can manage user accounts, groups, and development services. Components may not be available if they are switched off by Instance Administrators.
User are developers - Select Yes or No to specify if this user should have developer privileges. Developers create and modify applications and database objects.
Tip:
An administrator always has access to the Application Builder. A developer must have access to either the Application Builder, the SQL Workshop, or both. These components may not be available if they are switched off by your Instance Administrators.Application Builder Access - Determines whether a developer has access to the Application Builder.
SQL Workshop Access - Determines whether a developer has access to the SQL Workshop.
Team Development Access - Determines whether a developer has access to the Team Development.
Under Password:
Password - Specify a password. Passwords are case-sensitive. Developers can change their own passwords. Developers with Administrator privilege can change the passwords of users within the same workspace.
Confirm Password - Enter the password again.
Click Next.
Click Create Valid Users.
Workspace administrators can edit existing user accounts.
To edit an existing user account:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
The Users page appears.
You can customize the appearance of the page using the Search bar at the top of the page.
Select a user.
The Edit User page appears.
Edit the appropriate attributes. To learn more, see field-level Help.
Click Apply Changes.
Workspace administrators can control access to a workspace by locking and unlocking the user account.
To lock or unlock a user account:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
Select a user.
The Edit User page appears.
Scroll down to Account Privileges.
Under Account Availability, select Locked to prevent the account from being used. Select Unlocked to enable the account to be used.
If the user exceeds the maximum login failures specified in Workspace Preferences, then the account is locked automatically. Instance administrators can configure these settings for an entire Oracle Application Express instance.
See Also:
"Configuring Security"Click Apply Changes.
To change an user account password:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
Select a user.
The Edit User page appears.
Scroll down to Password.
Under Password:
Password - Enter a case-sensitive password.
Confirm Password - Enter the password again.
Require Change of Password On First Use - Select No to allow the user to use the same password until it expires. Select Yes to require the user to change the password immediately when logging in the first time.
Click Apply Changes.
See Also:
"Resetting Your Password"This section describes the ways in which workspace administrators can delete user accounts.
To delete a user account:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
The Users page appears.
Select a user.
The Edit User page appears.
To delete a user:
Click Delete User.
Confirm your selection and click OK.
Workspace administrators can delete multiple user accounts at the same time
To delete multiple user accounts:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
On the Tasks list, click Delete Multiple Users.
The Delete Multiple Users page appears.
Select the users to be deleted.
Click Delete Users.
The Users Dashboard displays a summary of your account information, users in the current workspace, defined user groups, recently created users, and user status.
See Also:
"Viewing Workspace Dashboards"To view the Users Dashboard:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Dashboards.
The Dashboard page appears.
Click Users.
The Users Dashboard appears listing the following information:
Your Account lists information about your account including your username, workspace, account credentials, and email address.
Workspace Users lists statistics about all users in the current workspace.
User Groups lists all currently defined user groups.
Recently Created lists recently created users.
User Status lists valid passwords, expired passwords, locked accounts, unlocked accounts, and any accounts for which no email address is defined.
This section describes how to create and manage Application Express users using groups. You can use groups for categorization and to manage privileges.
You can create user groups to restrict access to various parts of an application. Specifically, creating groups enables you to:
Control access to application components.
Manage the privileges for a group of users. You can assign application groups to user groups to control user access.
User groups are not portable over different authentication schemes and are primarily useful when using Application Express Account Credentials authentication.
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
Click Groups.
Click Create User Group.
On the User Group Page:
Group Name - Enter a name for group to be created.
Description - Enter a description for the group to be created.
Group Grants - The current group is a member of the groups on the right. To make the current group a member of an additional group, select the group and click Move. To remove group membership, select the group and click Remove.
Click Create Group.
To edit an existing group assignment:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
You can customize the appearance of the page using the Search bar at the top of the page.
Select the group you want to edit.
The Create/Edit User Group page appears.
Make the appropriate edits and click Apply Changes.
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
Click Users.
Select a user.
The Edit User page appears.
Scroll down to Group Assignments.
Each user belongs to the groups on the right.
To add a user to a group, select the group and click Move.
To remove a user from a group, select the group and click Remove.
Click Apply Changes.
You can manage privileges by assigning application groups to user groups.
To assign a group to another group:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
The Manage Users and Groups page appears.
Click Groups.
Select the user group you want to add an group.
Scroll down to Group Grants.
The current group is a member of the groups on the right. To make the current group a member of an additional group, select the group and click Move. To remove group membership, select the group and click Remove.
Click Apply Changes.
The Group Assignments report lists groups assigned to users and other groups. You can use groups for categorization and to manage privileges.
To view group assignments:
Navigate to the Workspace Administration page. See "Accessing the Workspace Administration Page."
The Workspace Administration home page appears.
Click Manage Users and Groups.
The Manage Users and Groups page appears.
Click Group Assignments.
Select the grantee to edit.