Abstract: A method, system, and computer program product using a data dictionary to automatically determine an upgrade edition of relational database table in a database installation. The editioning method commences upon receiving a data dictionary of the database comprising at least entries corresponding to a first edition of the relational database table, then reading entries of the data dictionary to identify at least one relational database table column of the relational database table that has a revision identifier. The revision identifiers are used to determine a first edition (e.g., a run edition) and a second edition (e.g., an upgrade edition). Then, the method proceeds by creating at least a first relational database table view corresponding to the first edition of the relational database table; and creating at least a second relational database table view corresponding to the upgrade edition of the relational database table using the identified relational database table column.

Abstract: A method, system, and computer program product for reducing downtime during upgrades of interrelated components in a computing environment. The method commences while at least one running software application is executing within the computing environment by loading a plurality of database objects from an initial run edition into a patch edition. The database objects comprise at least one software application code module, at least one relational database table, and at least one file system. The method continues by applying at least one patch to the software application code module(s) corresponding to the running software application(s) to create patched software application(s), then applying patches to the relational database table to create a patched relational database table, and further applying a patch to the file system to create a patched file system. When the subject patches have been applied, the method stops the running software application(s) and starts the patched software application(s).

Abstract: A method for transparently upgrading derived database objects commences upon analysis of the data dictionary definition for an initial derived database object as compared to the data dictionary definition for a patched derived database object, then determining if a regenerated instance of the derived database object would be logically different from the initial derived database object. The determination is based on comparisons of the definitions of the initial derived database objects and patched definitions of respective database objects. The method produces a regenerated instance of the derived database object when a regenerated instance of the patched derived database object would be logically different from the initial derived database object. The method will suppress the production of a regenerated instance when a regenerated instance of the derived database object would not be logically different from the initial derived database object.

Abstract: One embodiment of the present invention provides a system that logs the use of privileges in a distributed computing environment. The distributed computing environment includes a database system, one or more client applications, and a unified security management layer between the database system and the one or more client applications. During operation, the system receives a request from a client application to execute a business function in the distributed computing environment. The system determines a privilege associated with the requested business function, and logs that the request is associated with the privilege. The system then checks, in the unified security management layer, whether a user associated with the request is associated with a role that has the privilege. If the user is associated with a role that has the privilege, the system performs the requested business function.

Abstract: A method, system, and computer program product for reducing downtime during upgrades of interrelated components in a computing environment. The method commences while at least one running software application is executing within the computing environment by loading a plurality of database objects from an initial run edition into a patch edition. The database objects comprise at least one software application code module, at least one relational database table, and at least one file system. The method continues by applying at least one patch to the software application code module(s) corresponding to the running software application(s) to create patched software application(s), then applying patches to the relational database table to create a patched relational database table, and further applying a patch to the file system to create a patched file system. When the subject patches have been applied, the method stops the running software application(s) and starts the patched software application(s).

Abstract: A method for transparently upgrading derived database objects commences upon analysis of the data dictionary definition for an initial derived database object as compared to the data dictionary definition for a patched derived database object, then determining if a regenerated instance of the derived database object would be logically different from the initial derived database object. The determination is based on comparisons of the definitions of the initial derived database objects and patched definitions of respective database objects. The method produces a regenerated instance of the derived database object when a regenerated instance of the patched derived database object would be logically different from the initial derived database object. The method will suppress the production of a regenerated instance when a regenerated instance of the derived database object would not be logically different from the initial derived database object.

Abstract: Techniques for implementing secure normal forms are provided. In one embodiment, in response to a request for data from a client, a database server is operable to enforce a column-level security policy that is defined for a particular column of some, but not necessarily all, rows of a table stored in a database. After retrieving a set of rows from the table and before returning a result set of rows to the client, the database server modifies the retrieved set of rows into the result set of rows by applying the security policy to each row of the retrieved set of rows, where applying the security policy to a row comprises: determining whether the security policy is satisfied for the particular column of that row; replacing, in the result set of rows, a data value in the particular column of that row with a security-NULL value when the security policy is not satisfied; and including the data value in the particular column of that row into the result set of rows when the security policy is satisfied.

Abstract: Methods and apparatus for efficiently scheduling downtimes associated with installing updates to software applications are described. According to one aspect of the present invention, a method for accessing an impact of a portion of code, e.g., and update, on an application, includes obtaining metadata associated with the portion of code and comparing the metadata against a plurality of data structures associated with the application. Comparing the metadata against the data structures includes determining whether a first data structure is identified in the metadata. The method also includes creating a first list when the first data structure is identified in the metadata. The first list identifies the first data structure as being arranged to be substantially directly affected by the portion of code.

Abstract: Methods and apparatus for enabling efficient testing of application programming interface (API) frameworks and application code are disclosed. According to one aspect of the present invention, a method for capturing a call to an API using a framework including an execution engine that communicate with an adapter to cause the API call to be executed involves making the API call and constructing an object using metadata associated with the API call. The constructed object is converted into a node that is of a declarative metadata format, and the node is stored.

Abstract: Systems and methods in accordance with various embodiments of the present invention provide for a computer based method for crawling application data from an application data store. The applications data store has business objects of an application stored thereon. The method may include identifying a first request for application data received from a search engine as a seed universal resource locator (URL). A crawlable definition for the identified business object is accessed, the crawlable definition including a query selecting one or more attributes of the business object. Moreover, the method can include sending the query to the application data store and receiving query results in response thereto. Additionally, the method can include forming a crawlable document which includes the retrieved results of the business object.

Abstract: One embodiment of the present invention provides a system that logs the use of privileges in a distributed computing environment. The distributed computing environment includes a database system, one or more client applications, and a unified security management layer between the database system and the one or more client applications. During operation, the system receives a request from a client application to execute a business function in the distributed computing environment. The system determines a privilege associated with the requested business function, and logs that the request is associated with the privilege. The system then checks, in the unified security management layer, whether a user associated with the request is associated with a role that has the privilege. If the user is associated with a role that has the privilege, the system performs the requested business function.

Abstract: Methods and apparatus for enabling efficient testing of application programming interface (API) frameworks and application code are disclosed. According to one aspect of the present invention, a framework suitable for use to test an API includes a metadata provider arrangement that stores declarative metadata and a metadata provider interface that obtains the declarative metadata associated with a test from the declarative metadata provider. A first test adapter includes logic used to process the declarative metadata, and a diagnostic test interface cooperates with the first test adapter to execute the test. The first test adapter is effectively interfaced with the diagnostic test interface. Finally, a diagnostics execution engine is arranged to communicate with the diagnostic test interface to cause the test to be executed.

Abstract: Techniques for implementing secure normal forms are provided. In one embodiment, in response to a request for data from a client, a database server is operable to enforce a column-level security policy that is defined for a particular column of some, but not necessarily all, rows of a table stored in a database. After retrieving a set of rows from the table and before returning a result set of rows to the client, the database server modifies the retrieved set of rows into the result set of rows by applying the security policy to each row of the retrieved set of rows, where applying the security policy to a row comprises: determining whether the security policy is satisfied for the particular column of that row; replacing, in the result set of rows, a data value in the particular column of that row with a security-NULL value when the security policy is not satisfied; and including the data value in the particular column of that row into the result set of rows when the security policy is satisfied.

Abstract: Methods and apparatus for enabling the framework and the application code associated with an application programming interface (API) to be efficiently and comprehensively tested are disclosed. According to one aspect of the present invention, a structure that defines an API test in declarative metadata includes an entity to be tested, a first metadata arrangement, and a second metadata arrangement. The first metadata arrangement includes any data to be used when the entity is tested, and the second metadata arrangement includes any expected outputs associated with testing the entity.

Abstract: Systems and methods in accordance with various embodiments of the present invention provide for a computer based method for crawling application data from an application data store. The applications data store has business objects of an application stored thereon. The method may include identifying a first request for application data received from a search engine as a seed universal resource locator (URL). A crawlable definition for the identified business object is accessed, the crawlable definition including a query selecting one or more attributes of the business object. Moreover, the method can include sending the query to the application data store and receiving query results in response thereto. Additionally, the method can include forming a crawlable document which includes the retrieved results of the business object.

Abstract: Methods and apparatus for efficiently scheduling downtimes associated with installing updates to software applications are described. According to one aspect of the present invention, a method for accessing an impact of a portion of code, e.g., and update, on an application, includes obtaining metadata associated with the portion of code and comparing the metadata against a plurality of data structures associated with the application. Comparing the metadata against the data structures includes determining whether a first data structure is identified in the metadata. The method also includes creating a first list when the first data structure is identified in the metadata. The first list identifies the first data structure as being arranged to be substantially directly affected by the portion of code.

Abstract: Methods and apparatus for enabling efficient testing of application programming interface (API) frameworks and application code are disclosed. According to one aspect of the present invention, a framework suitable for use to test an API includes a metadata provider arrangement that stores declarative metadata and a metadata provider interface that obtains the declarative metadata associated with a test from the declarative metadata provider. A first test adapter includes logic used to process the declarative metadata, and a diagnostic test interface cooperates with the first test adapter to execute the test. The first test adapter is effectively interfaced with the diagnostic test interface. Finally, a diagnostics execution engine is arranged to communicate with the diagnostic test interface to cause the test to be executed.

Abstract: Methods and apparatus for enabling the framework and the application code associated with an application programming interface (API) to be efficiently and comprehensively tested are disclosed. According to one aspect of the present invention, a structure that defines an API test in declarative metadata includes an entity to be tested, a first metadata arrangement, and a second metadata arrangement. The first metadata arrangement includes any data to be used when the entity is tested, and the second metadata arrangement includes any expected outputs associated with testing the entity.

Abstract: Methods and apparatus for enabling efficient testing of application programming interface (API) frameworks and application code are disclosed. According to one aspect of the present invention, a method for capturing a call to an API using a framework including an execution engine that communicate with an adapter to cause the API call to be executed involves making the API call and constructing an object using metadata associated with the API call. The constructed object is converted into a node that is of a declarative metadata format, and the node is stored.

Abstract: The present invention provides a framework for enabling an object oriented paradigm to be implemented in a networked environment. The framework comprises a client dispatcher object for managing the network communications of objects on the client's side, and a server dispatcher object for managing the network communications of objects on the server's side. The dispatcher objects cooperate with each other to send messages from the associated objects across the network in batches. By collecting and sending messages in batches, the dispatchers minimize the number of network round trips that need to be incurred, thereby minimizing network traffic. The framework further comprises a proxy interface for enabling the dispatcher objects to communicate with their associated objects. The proxy interface sets forth a set of methods that each of the associated objects needs to implement in order to participate in the communication scheme of the present invention.