Comments (1)
blankdots
commented on August 15, 2024
Due to sftp issues/restrictions connecting to the testing environment and also from one pod to another we chose to an alternative sshv2 protocol implementation http://www.paramiko.org/.
As a basis for the pod we used an image docker pull blankdots/docker-browsepy:ftp
The testing script is below.
import paramiko
import os
import pika
import secrets
from hashlib import md5
import json
import string
import uuid
import logging
from legacryptor.crypt4gh import encrypt
import pgpy
import argparse
FORMAT = '[%(asctime)s][%(name)s][%(process)d %(processName)s][%(levelname)-8s] (L:%(lineno)s) %(funcName)s: %(message)s'
logging.basicConfig(format=FORMAT, datefmt='%Y-%m-%d %H:%M:%S')
LOG = logging.getLogger(__name__)
LOG.setLevel(logging.INFO)
def sftp_upload(hostname, user, file_path, key_path, key_pass='password', port=2222):
"""SFTP Client file upload."""
try:
k = paramiko.RSAKey.from_private_key_file(key_path, password=key_pass)
transport = paramiko.Transport((hostname, port))
transport.connect(username=user, pkey=k)
LOG.info(f'sftp connected to {hostname}:{port} with {user}')
sftp = paramiko.SFTPClient.from_transport(transport)
filename, _ = os.path.splitext(file_path)
sftp.put(file_path, f'{filename}.c4ga')
LOG.info(f'file uploaded {filename}.c4ga')
except Exception as e:
LOG.error(f'Something went wrong {e}')
raise e
finally:
LOG.debug('sftp done')
transport.close()
def submit_cega(connection, user, file_path, c4ga_md5, file_md5=None):
"""Submit message to CEGA along with."""
stableID = ''.join(secrets.choice(string.digits) for i in range(16))
message = {'user': user, 'filepath': file_path, 'stable_id': f'EGA_{stableID}'}
if c4ga_md5:
message['encrypted_integrity'] = {'checksum': c4ga_md5, 'algorithm': 'md5'}
if file_md5:
message['unencrypted_integrity'] = {'checksum': file_md5, 'algorithm': 'md5'}
try:
parameters = pika.URLParameters(connection)
connection = pika.BlockingConnection(parameters)
channel = connection.channel()
channel.basic_publish(exchange='localega.v1', routing_key='files',
body=json.dumps(message),
properties=pika.BasicProperties(correlation_id=str(uuid.uuid4()),
content_type='application/json',
delivery_mode=2))
connection.close()
LOG.info('Message published to CentralEGA')
except Exception as e:
LOG.error(f'Something went wrong {e}')
raise e
def encrypt_file(file_path, pubkey):
"""Encrypt file and extract its md5."""
file_size = os.path.getsize(file_path)
filename, _ = os.path.splitext(file_path)
output_base = os.path.basename(filename)
c4ga_md5 = None
output_file = os.path.expanduser(f'{output_base}.c4ga')
try:
encrypt(pubkey, open(file_path, 'rb'), file_size, open(f'{output_base}.c4ga', 'wb'))
with open(output_file, 'rb') as read_file:
c4ga_md5 = md5(read_file.read()).hexdigest()
LOG.info(f'File {output_base}.c4ga is the encrypted file with md5: {c4ga_md5}.')
except Exception as e:
LOG.error(f'Something went wrong {e}')
raise e
return (output_file, c4ga_md5)
def main():
"""Do the sparkles and fireworks."""
parser = argparse.ArgumentParser(description="Encrypting, uploading to inbo and sending message to CEGA.")
parser.add_argument('input', help='Input file to be encrypted.')
parser.add_argument('--u', help='Username to identify the elixir.', default='ega-box-999')
parser.add_argument('--uk', help='User secret private RSA key.', default='/files/user.key')
parser.add_argument('--pk', help='Public key file to encrypt file.', default='/files/key.1.pub')
parser.add_argument('--inbox', help='Inbox address, or service name', default='inbox.lega.svc')
parser.add_argument('--cm', help='CEGA MQ broker address')
args = parser.parse_args()
used_file = os.path.expanduser(args.input)
key_pk = os.path.expanduser(args.uk)
pub_key, _ = pgpy.PGPKey.from_file(os.path.expanduser(args.pk))
inbox_host = args.inbox
test_user = args.u
connection = args.cm if args.cm else os.environ.get('CEGA_MQ', None)
test_file, c4ga_md5 = encrypt_file(used_file, pub_key)
if c4ga_md5:
sftp_upload(inbox_host, test_user, test_file, key_pk)
submit_cega(connection, test_user, test_file, c4ga_md5)
LOG.info('Should be all!')
if __name__ == '__main__':
main()The script looks like the makefile we use for testing?
It was inspired by that, but it does not duplicate the work as that script does not work in this specific environment.
It can be extended for other scenarios, doing a web interface for submission, adding a download option and connecting it to the data out part, will let one's imagination run loose on this one.
Can we see a demo?
Here you go: https://www.youtube.com/watch?v=-RPF9AigP6Y
from localega.
Related Issues (20)
- Integrate ELK stack for Data API HOT 1
- Create aggregated Docker Compose file for Data In and Data Out HOT 3
- Update the LocalEGA database schema HOT 7
- Provide Data Ingestion and Data API Deployment-Ready LocalEGA
- Clean up comments and documentation
- Re-Encrypt AES part if session key already used HOT 2
- Sharing microservice among EGA-DATA-API and LocalEGA
- Make it possible to deploy both ingestion and Data API using Helm charts HOT 2
- Test the designed deployment solution production-like test environment HOT 4
- Add missing Data API services to docker-compose.yml HOT 1
- Log with `correlation_id` throughout the ingestion process
- Update documentation
- nbis -> ega-archive
- Renaming components HOT 1
- DB & MQ retry logic HOT 1
- Network separation HOT 1
- Update the configuration module HOT 1
- Implement support S3 storage backend for ingestion
- Update Crypt4GH to the latest version HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from localega.