Abstract: Methods and systems are disclosed for flexibly managing lock modes in a data-sharing environment, including optimistic and pessimistic lock modes. A lock mode determination service receives a request from an application instance for a lock mode with which to access specified data objects. The service can determine and provide a suitable lock mode based on a context of the application, and optionally other parameters, by evaluating a checklist of criteria sorted in precedential order. Criteria can include geo-boundaries, platform, role, and others. The requesting application instance uses the determined lock mode to access the data, with optional assistance of a lock service. The lock mode determination service can support one or more applications having one or more instances each, and can also support multiple disjoint data-sharing environments. Suitable environments include cloud, datacenter, mobile, client-server, and SAAS.

Abstract: A system includes reception, at a server and in a first browser session, of a request from a client for a token to access a first software service, determination of a token stored in a server memory of the server and associated with the first service and the client, determination, at the server, of whether a validity period of the token is within a predetermined period of expiration, and, if it is determined that the validity period of the token is within a predetermined period of expiration, transmission of a request for a new token to access the first software service from a token provider associated with the first service, reception of the new token from the token provider, and provision of the new token to the client in the first browser session.

Abstract: Methods and systems are disclosed for flexibly managing lock modes in a data-sharing environment, including optimistic and pessimistic lock modes. A lock mode determination service receives a request from an application instance for a lock mode with which to access specified data objects. The service can determine and provide a suitable lock mode based on a context of the application, and optionally other parameters, by evaluating a checklist of criteria sorted in precedential order. Criteria can include geo-boundaries, platform, role, and others. The requesting application instance uses the determined lock mode to access the data, with optional assistance of a lock service. The lock mode determination service can support one or more applications having one or more instances each, and can also support multiple disjoint data-sharing environments. Suitable environments include cloud, datacenter, mobile, client-server, and SAAS.

Abstract: A system includes reception, at a server and in a first browser session, of a request from a client for a token to access a first software service, determination of a token stored in a server memory of the server and associated with the first service and the client, determination, at the server, of whether a validity period of the token is within a predetermined period of expiration, and, if it is determined that the validity period of the token is within a predetermined period of expiration, transmission of a request for a new token to access the first software service from a token provider associated with the first service, reception of the new token from the token provider, and provision of the new token to the client in the first browser session.

Abstract: A method and system for secure download includes generating a path to a location where a downloadable object is temporarily stored. The method can include receiving a request for a downloadable object, generating one or more unique identifiers, creating a path to the requested object using the unique identifiers, storing a copy of the requested object in a temporary location indicated by the path, and returning the generated path to the requestor. The method can further include receiving a path to a downloadable object and, responsive to a determination that the path is valid, returning the downloadable object. A generated path can be rendered obsolete and its corresponding file removed from the temporary location after a predefined time interval has elapsed. A database of the generated paths and associated files may be periodically checked, and those paths and files that have been stored in the database beyond a pre-definable expiry time can be removed.

Abstract: A system is configured to maintain a plurality of mobile applications in the computer storage device and to maintain a Multipurpose Internet Mail Extensions (MIME) repository in the computer storage device. The system uploads a new mobile application from a user interface to the computer storage device, and stores the new mobile application in to the MIME repository. The system identifies a uniform resource locator for the new mobile application based on a type of operating system on which the mobile application will execute, and retrieves system specific information for the URL from the MIME repository. The system retrieves the new mobile application from the MIME repository by selecting the URL and transferring the new mobile application over-the-air to a user device.

Abstract: A method and system for secure download includes generating a path to a location where a downloadable object is temporarily stored. The method can include receiving a request for a downloadable object, generating one or more unique identifiers, creating a path to the requested object using the unique identifiers, storing a copy of the requested object in a temporary location indicated by the path, and returning the generated path to the requestor. The method can further include receiving a path to a downloadable object and, responsive to a determination that the path is valid, returning the downloadable object. A generated path can be rendered obsolete and its corresponding file removed from the temporary location after a predefined time interval has elapsed. A database of the generated paths and associated files may be periodically checked, and those paths and files that have been stored in the database beyond a pre-definable expiry time can be removed.

Abstract: A system is configured to maintain a plurality of mobile applications in the computer storage device and to maintain a Multipurpose Internet Mail Extensions (MIME) repository in the computer storage device. The system uploads a new mobile application from a user interface to the computer storage device, and stores the new mobile application in to the MIME repository. The system identifies a uniform resource locator for the new mobile application based on a type of operating system on which the mobile application will execute, and retrieves system specific information for the URL from the MIME repository. The system retrieves the new mobile application from the MIME repository by selecting the URL and transferring the new mobile application over-the-air to a user device.