API overview

The Oracle Central Designer application provides an API for creating .NET DLLs to execute custom code (user-defined functions) called by rules through the Oracle Central Designer rule engine.

Rules and user-defined functions can be executed in the following places:

• On the Oracle Central Designer application client during interactive rule testing.
• On the Oracle Central Designer application server during study validation that executes rule tests.
• On the Oracle Health Sciences InForm application server during rule execution.

Because any .NET API can be called from these DLLs (file access, database access, and so on), developers must follow secure guidelines while developing the code. In addition, the Oracle Central Designer application provides a certificate-based mechanism to prevent untrusted DLLs from executing code that requires elevated permissions.

For more information on the .NET Code Access Security (CAS) model, see https://msdn.microsoft.com/en-us/library/dd233102(v=vs.100).aspx.

For secure coding guidelines for .NET applications, see https://msdn.microsoft.com/en-us/library/d55zzx87(v=vs.90).aspx.