Secure Session Variables
A session variable is made up of a name, value, and the secure flag. The session variable name has the same limits as a host-type variable name. The secure flag is a Boolean value that describes whether the value should be securely stored.
When a value is securely stored, the secure flag is set to true. The value of the session variable appears as *** and is encrypted when the variable is saved. When this value is used during plan execution, the value of this variable is obscured from plan history output, as well. Use this secure flag when the variable value is sensitive data, such as passwords. By default, session variables are created with the secure flag set to true.
If any secure variables are saved to the database, you must type your password, which is used as the encryption key. If you supply the wrong password, you are prompted for the password again.
If the password you enter is not recognized, an error is issued. This might occur if the system administrator has changed your password or your login configuration. You are given the following options:
-
Reencrypt the session variables. Supply your user name, the password with which the session variables have been encrypted, and your new password.
-
Flush the session variables. Delete all of the session variables that you declared. Supply your user name and your current password.
Use this option if you forgot the password with which the session variables were encrypted.
- © 2010, Oracle Corporation and/or its affiliates