Review ords skills

[Fm0007]

Summary

This PR updates the ORDS skills to correct outdated, inaccurate, and broken ORDS documentation examples. It aligns the skills with current ORDS CLI and configuration behavior, refreshes standalone HTTPS and reverse-proxy guidance, fixes the silent install walkthrough, replaces invalid monitoring settings with supported ones, corrects CORS guidance, and updates broken or outdated Oracle documentation links to 25.4 references.

Commit Breakdown

Commit	Focus
docs(ords): align secret commands and wallet paths with current ORDS CLI	Fixes outdated secret-storage commands, updates wallet-path guidance, and corrects the current ORDS config layout references.
docs(ords): refresh standalone HTTPS and logging commands	Replaces outdated standalone HTTPS flags and settings, updates reverse-proxy HTTPS handling, and refreshes logging-related command examples.
docs(ords): fix silent install examples and update refs	Fixes the non-interactive install walkthrough, corrects stdin/password usage, adds documented tablespace options, and updates the related Oracle references.
docs(ords): correct CORS guidance for REST modules and PL/SQL gateway	Replaces invalid CORS settings with documented REST module and PL/SQL Gateway guidance and clarifies the role of request validation.
docs(ords): replace forceHTTPS with documented httpsHeaderCheck	Replaces undocumented security.forceHTTPS guidance with documented security.httpsHeaderCheck reverse-proxy handling.
docs(ords): replace invalid monitoring settings with supported ones	Removes unsupported monitoring and tuning settings and replaces them with supported 25.4 logging, access-log, Java logging, thread, and pagination guidance.
docs(ords): replace broken doc links and update sources to 25.4	Removes broken Oracle doc links and updates the corrected ORDS skill source references to verified 25.4 pages and anchors.

What changed

• Replaced invalid ords config secret set examples with the correct ords config secret --password-stdin form.
• Updated wallet-path guidance to reflect the current ORDS configuration layout.
• Replaced invalid standalone HTTPS examples that used --secure-port, --certificate-hostname, and standalone.https.cert.secret.
• Updated standalone HTTPS guidance to use serve --secure --port, standalone.https.cert, standalone.https.cert.key, standalone.https.port, and standalone.https.host.
• Replaced invalid reverse-proxy HTTPS guidance that used security.forceHTTPS with the documented security.httpsHeaderCheck.
• Clarified that in reverse-proxy deployments, HTTP-to-HTTPS redirects and HTTP Strict Transport Security should be configured on the proxy or load balancer, not in ORDS.
• Fixed the silent install walkthrough by removing --interactive false.
• Removed the invalid --db-username example and clarified that --db-user is the correct flag when overriding the default runtime user.
• Added documented non-interactive install examples that use --password-stdin with both inline stdin input and file-based input redirection.
• Added --proxy-user where the examples provide both administrator and runtime-user passwords on stdin.
• Replaced the invalid ords config set db.tablespace guidance with install-time --schema-tablespace and --schema-temp-tablespace options.
• Replaced misleading CORS guidance that used invalid security.allowedCORS* settings.
• Added documented CORS guidance for REST modules using ORDS.SET_MODULE_ORIGINS_ALLOWED.
• Added documented PL/SQL Gateway CORS guidance using security.externalSessionTrustedOrigins.
• Clarified that security.requestValidationFunction is not the CORS allowlist.
• Removed invalid monitoring settings such as log.level, log.logging.requestlog*, standalone.threadPoolMax, and misc.pagination.defaultLimit.
• Removed broken or outdated Oracle doc links and updated remaining source references to Oracle REST Data Services 25.4 pages and anchors.

Validation

• Reviewed the updated ORDS sections for internal consistency and structure.
• Verified the revised command examples against local ORDS binaries, including ORDS 25.4.0.
• Confirmed outdated config secret set, security.forceHTTPS, allowedCORS*, --secure-port, standalone.https.cert.secret, --interactive false, and invalid monitoring settings were removed from the revised skills.
• Confirmed the silent install section now reflects documented --password-stdin, --proxy-user, and install-time tablespace options.
• Confirmed the CORS section now documents ORDS.SET_MODULE_ORIGINS_ALLOWED and security.externalSessionTrustedOrigins.
• Confirmed broken or outdated 24.2/25.3 ORDS source links in the updated files were replaced with 25.4 references.
• Ran git diff --check on the touched documentation files.
• Used Codex during review to cross-check command names, settings, and documentation links.

Notes

This is a skills/documentation change only.