Database Reference
In-Depth Information
You can prevent this from happening in a few easy steps using APEX's session-state
protection functionality:
1.
Go to the
Shared Components
of the application.
2.
In the
Security
region, click
Session State Protection
.
3.
Click
Page
.
4.
Click the link for
Page 210 - Manage Tickets
.
5.
Set
Page Access Protection
to
Arguments Must Have Checksum
, set
Display Item Type
to
Data Entry Items
, set
Item Session State Protec-
tion
for
P210_TICKET_ID
to
Checksum Required - Session Level
, and
click
Apply Changes
.
Figure 9-39
shows the session-state protection set-
tings for page 210.
Figure 9-39.
Session-state protection settings for page 210
Now run the Tickets report on page 200 in the application. Hover your mouse over
the Edit icon, and examine the URL. Notice the
&cs=
portion of the URL. The
&cs=
parameter is the checksum that was automatically generated by APEX. Alter the value
for P210_TICKET_ID in the URL, or remove
&cs=
and everything to the right of it,
and try to run the page. You receive an error message similar to that shown in
Figure