samply/bridgehead
1
0
Fork 0
mirror of https://github.com/samply/bridgehead.git synced 2025-06-16 20:40:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

merge into: samply:feature/cBioPortal
Branches Tags
samply:main samply:transfair-cli samply:develop samply:feature/exporter-docu samply:test/teiler-dashboard samply:feature/add-pscc samply:feature/authentik samply:feature/teiler-for-ccp-and-bbmri samply:qr-bbmri-v2 samply:prototype/beamFile samply:test/exporter-no-python samply:cherry-pick-tmp-pr samply:test/obds2fhir-batch-import samply:ovis samply:test/airgapped-blaze samply:pr-secret-sync-gitlab-bbmri samply:feature/add-qb-to-cce samply:Threated-patch-1 samply:torbrenner-patch-1 samply:feat/routine-connector-minor-fixes samply:metadata_fb samply:feat/dnpm-dip samply:bugfix/test-old-blaze samply:dnpm-etl-rewrite samply:feature/qr-basic-auth samply:refactor/logging samply:feature/opal-client-for-new-token-manager samply:test/onkofdz samply:feature/addExporterAndTeilerToEric samply:set_env_variables_needed_for_fhir2sql samply:feature/externalize-versions samply:fix/kr-deactivate-landingpage samply:refactor/datashield-auth-config samply:refactor/independent-modules samply:feature/dnpm-extra-broker samply:revert-223-feat/add-dkfz-hector-ki-project samply:ehds2_develop samply:ehds2 samply:feature/auto-pr samply:qr_bbmri samply:feature/cBioPortal samply:feat/blaze-frontend samply:feat/central-rstudio samply:pro/lemedart samply:feature/feedback-agent samply:feature/component-moniotring samply:feature/cbioportal-datashield samply:documentation/blaze_resources samply:feat/cBioPortal samply:test-switch-branch samply:feature/nngm-rest samply:feature/opal samply:feature/snap samply:feature/accessTokenFromConfiguration
...
pull from: samply:feat/blaze-frontend
Branches Tags
samply:transfair-cli samply:develop samply:feature/exporter-docu samply:main samply:test/teiler-dashboard samply:feature/add-pscc samply:feature/authentik samply:feature/teiler-for-ccp-and-bbmri samply:qr-bbmri-v2 samply:prototype/beamFile samply:test/exporter-no-python samply:cherry-pick-tmp-pr samply:test/obds2fhir-batch-import samply:ovis samply:test/airgapped-blaze samply:pr-secret-sync-gitlab-bbmri samply:feature/add-qb-to-cce samply:Threated-patch-1 samply:torbrenner-patch-1 samply:feat/routine-connector-minor-fixes samply:metadata_fb samply:feat/dnpm-dip samply:bugfix/test-old-blaze samply:dnpm-etl-rewrite samply:feature/qr-basic-auth samply:refactor/logging samply:feature/opal-client-for-new-token-manager samply:test/onkofdz samply:feature/addExporterAndTeilerToEric samply:set_env_variables_needed_for_fhir2sql samply:feature/externalize-versions samply:fix/kr-deactivate-landingpage samply:refactor/datashield-auth-config samply:refactor/independent-modules samply:feature/dnpm-extra-broker samply:revert-223-feat/add-dkfz-hector-ki-project samply:ehds2_develop samply:ehds2 samply:feature/auto-pr samply:qr_bbmri samply:feature/cBioPortal samply:feat/blaze-frontend samply:feat/central-rstudio samply:pro/lemedart samply:feature/feedback-agent samply:feature/component-moniotring samply:feature/cbioportal-datashield samply:documentation/blaze_resources samply:feat/cBioPortal samply:test-switch-branch samply:feature/nngm-rest samply:feature/opal samply:feature/snap samply:feature/accessTokenFromConfiguration

22 Commits
feature/cB ... feat/blaze

Author SHA1 Message Date
janskiba
667048d49f WIP blaze frontend 2024-05-28 14:14:36 +02:00
patrickskowronekdkfz
68f06c0d9d Merge pull request #185 from samply/update/focus_main 
switch focus of ccp to tag
 2024-05-21 16:21:22 +02:00
Patrick Skowronek
033da484d1 switch focus of ccp to tag 2024-05-21 16:16:40 +02:00
patrickskowronekdkfz
714e46f082 Merge pull request #184 from samply/refactor/mainzelliste-return-ssl 
Ensure Mainzelliste returns SSL in Responses
 2024-04-29 08:33:00 +02:00
Torben Brenner
29c2b5ef69 refactor: Ensure Mainzelliste returns SSL in Responses 
Before, the Mainzelliste would always use http instead of https then
referring to it self in responses
 2024-04-26 11:29:38 +02:00
patrickskowronekdkfz
433edde75a Merge pull request #182 from samply/revert-177-maintenance/gbn 
Revert "GBN maintenance mode"
 2024-04-18 11:37:11 +02:00
patrickskowronekdkfz
fe3fc6204a Revert "GBN maintenance mode" 2024-04-18 11:01:04 +02:00
patrickskowronekdkfz
4b3b13b101 Merge pull request #177 from samply/maintenance/gbn 
GBN maintenance mode
 2024-04-17 20:47:35 +02:00
Patrick Skowronek
1afbf88a76 fix: use only bbmri broker 2024-04-16 09:23:42 +02:00
patrickskowronekdkfz
7d5f771181 Merge pull request #181 from samply/fix/secret-sync-args 
fix: Generate public oidc client when there is no private client
 2024-04-16 09:15:53 +02:00
janskiba
f9a9baf13d fix: Generate public oidc client when there is no private client 2024-04-15 15:53:27 +02:00
Torben Brenner
d4259406a9 Merge pull request #180 from samply/fix/secret-sync 
fix: Kill stale secret-sync instances
 2024-04-15 13:18:38 +02:00
janskiba
0745eab7b5 fix: Kill stale secret-sync instances 2024-04-15 13:14:46 +02:00
patrickskowronekdkfz
b404277083 Merge pull request #179 from samply/update/focus_0_4_4 
update: dktk focus to 0.4.4
 2024-04-15 11:02:31 +02:00
Patrick Skowronek
b767b3230f update: dktk focus to 0.4.4 2024-04-15 10:13:16 +02:00
Torben Brenner
dd653a7871 Merge pull request #178 from samply/PierreDelpy-patch-1 
fix typo functions.sh
 2024-04-15 09:09:47 +02:00
Pierre Delpy
7418861e8c fix typo functions.sh 2024-04-15 09:08:56 +02:00
Patrick Skowronek
94b2c29bc7 GBN maintenance mode 2024-04-15 08:31:57 +02:00
patrickskowronekdkfz
ac3ff314ff Merge pull request #176 from samply/fix/bash-math 
fix: Make math work on bash 4.2
 2024-04-03 12:59:52 +02:00
janskiba
2831fb9a22 fix: Make math work on bash 4.2 2024-04-02 14:36:23 +02:00
patrickskowronekdkfz
7934d912b8 Merge pull request #175 from samply/update/focus_0_4_2 
Update focus to 0.4.2
 2024-03-22 14:11:09 +01:00
Patrick Skowronek
70ad318b28 Update focus to 0.4.2 2024-03-22 13:59:42 +01:00
5 changed files with 31 additions and 6 deletions
Expand all files Collapse all files

2
bridgehead
View File

@ -96,6 +96,8 @@ case "$ACTION" in
;; ;;
stop) stop)
loadVars loadVars
# Kill stale secret-sync instances if present
docker kill $(docker ps -q --filter ancestor=docker.verbis.dkfz.de/cache/samply/secret-sync-local) 2>/dev/null || true
# HACK: This is temporarily to properly shut down false bridgehead instances (bridgehead-ccp instead ccp) # HACK: This is temporarily to properly shut down false bridgehead instances (bridgehead-ccp instead ccp)
$COMPOSE -p bridgehead-$PROJECT -f ./minimal/docker-compose.yml -f ./$PROJECT/docker-compose.yml $OVERRIDE down $COMPOSE -p bridgehead-$PROJECT -f ./minimal/docker-compose.yml -f ./$PROJECT/docker-compose.yml $OVERRIDE down
exec $COMPOSE -p $PROJECT -f ./minimal/docker-compose.yml -f ./$PROJECT/docker-compose.yml $OVERRIDE down exec $COMPOSE -p $PROJECT -f ./minimal/docker-compose.yml -f ./$PROJECT/docker-compose.yml $OVERRIDE down

23
ccp/docker-compose.yml
View File

@ -20,8 +20,29 @@ services:
- "traefik.http.routers.blaze_ccp.middlewares=ccp_b_strip,auth" - "traefik.http.routers.blaze_ccp.middlewares=ccp_b_strip,auth"
- "traefik.http.routers.blaze_ccp.tls=true" - "traefik.http.routers.blaze_ccp.tls=true"
frontend:
image: "samply/blaze-frontend:latest"
environment:
ORIGIN: "https://${HOST}/ccp-blaze-frontend"
BACKEND_BASE_URL: "https://${HOST}/ccp-localdatamanagement"
AUTH_CLIENT_ID: "${OIDC_PRIVATE_CLIENT_ID}"
AUTH_CLIENT_SECRET: "${OIDC_CLIENT_SECRET}"
AUTH_ISSUER: "${OIDC_URL}"
AUTH_SECRET: "666df42c74ce1f4728fe2ffe99b146e0f2e4b4f9810594fcf68c0330495bca0f" # TODO: Generate
PROTOCOL_HEADER: "x-forwarded-proto"
HOST_HEADER: "x-forwarded-host"
depends_on:
- blaze
labels:
- "traefik.enable=true"
- "traefik.http.routers.blaze_frontend.rule=PathPrefix(`/ccp-blaze-frontend`)"
- "traefik.http.middlewares.ccp_blaze_frontend_strip.stripprefix.prefixes=/ccp-blaze-frontend"
- "traefik.http.routers.blaze_ccp.middlewares=ccp_blaze_frontend_strip"
- "traefik.http.services.blaze_frontend.loadbalancer.server.port=3000"
- "traefik.http.routers.blaze_frontend.tls=true"
focus: focus:
image: docker.verbis.dkfz.de/cache/samply/focus:0.4.1 image: docker.verbis.dkfz.de/cache/samply/focus:${FOCUS_TAG}
container_name: bridgehead-focus container_name: bridgehead-focus
environment: environment:
API_KEY: ${FOCUS_BEAM_SECRET_SHORT} API_KEY: ${FOCUS_BEAM_SECRET_SHORT}

1
ccp/modules/id-management-compose.yml
View File

@ -29,6 +29,7 @@ services:
container_name: bridgehead-patientlist container_name: bridgehead-patientlist
environment: environment:
- TOMCAT_REVERSEPROXY_FQDN=${HOST} - TOMCAT_REVERSEPROXY_FQDN=${HOST}
- TOMCAT_REVERSEPROXY_SSL=true
- ML_SITE=${IDMANAGEMENT_FRIENDLY_ID} - ML_SITE=${IDMANAGEMENT_FRIENDLY_ID}
- ML_DB_PASS=${PATIENTLIST_POSTGRES_PASSWORD} - ML_DB_PASS=${PATIENTLIST_POSTGRES_PASSWORD}
- ML_API_KEY=${IDMANAGER_LOCAL_PATIENTLIST_APIKEY} - ML_API_KEY=${IDMANAGER_LOCAL_PATIENTLIST_APIKEY}

1
ccp/vars
View File

@ -17,6 +17,7 @@ OIDC_REALM="${OIDC_REALM:-master}"
OIDC_URL="https://login.verbis.dkfz.de" OIDC_URL="https://login.verbis.dkfz.de"
OIDC_ISSUER_URL="${OIDC_URL}/realms/${OIDC_REALM}" OIDC_ISSUER_URL="${OIDC_URL}/realms/${OIDC_REALM}"
OIDC_GROUP_CLAIM="groups" OIDC_GROUP_CLAIM="groups"
add_private_oidc_redirect_url "/ccp-localdatamanagement"
POSTGRES_TAG=15.6-alpine POSTGRES_TAG=15.6-alpine

10
lib/functions.sh
View File

@ -164,15 +164,15 @@ setHostname() {
optimizeBlazeMemoryUsage() { optimizeBlazeMemoryUsage() {
if [ -z "$BLAZE_MEMORY_CAP" ]; then if [ -z "$BLAZE_MEMORY_CAP" ]; then
system_memory_in_mb=$(LC_ALL=C free -m | grep 'Mem:' | awk '{print $2}'); system_memory_in_mb=$(LC_ALL=C free -m | grep 'Mem:' | awk '{print $2}');
export BLAZE_MEMORY_CAP=$(("$system_memory_in_mb"/4)); export BLAZE_MEMORY_CAP=$(($system_memory_in_mb/4));
fi fi
if [ -z "$BLAZE_RESOURCE_CACHE_CAP" ]; then if [ -z "$BLAZE_RESOURCE_CACHE_CAP" ]; then
available_system_memory_chuncks=$((BLAZE_MEMORY_CAP / 1000)) available_system_memory_chunks=$((BLAZE_MEMORY_CAP / 1000))
if [ $available_system_memory_chuncks -eq 0 ]; then if [ $available_system_memory_chunks -eq 0 ]; then
log WARN "Only ${BLAZE_MEMORY_CAP} system memory available for Blaze. If your Blaze stores more than 128000 fhir ressources it will run significally slower." log WARN "Only ${BLAZE_MEMORY_CAP} system memory available for Blaze. If your Blaze stores more than 128000 fhir ressources it will run significally slower."
export BLAZE_RESOURCE_CACHE_CAP=128000; export BLAZE_RESOURCE_CACHE_CAP=128000;
else else
export BLAZE_RESOURCE_CACHE_CAP=$((available_system_memory_chuncks * 312500)) export BLAZE_RESOURCE_CACHE_CAP=$((available_system_memory_chunks * 312500))
fi fi
fi fi
} }
@ -289,7 +289,7 @@ function sync_secrets() {
if [[ $OIDC_PRIVATE_REDIRECT_URLS != "" ]]; then if [[ $OIDC_PRIVATE_REDIRECT_URLS != "" ]]; then
secret_sync_args="OIDC:OIDC_CLIENT_SECRET:private;$OIDC_PRIVATE_REDIRECT_URLS" secret_sync_args="OIDC:OIDC_CLIENT_SECRET:private;$OIDC_PRIVATE_REDIRECT_URLS"
fi fi
if [[ $OIDC_PRIVATE_REDIRECT_URLS != "" ]]; then if [[ $OIDC_PUBLIC_REDIRECT_URLS != "" ]]; then
if [[ $secret_sync_args == "" ]]; then if [[ $secret_sync_args == "" ]]; then
secret_sync_args="OIDC:OIDC_PUBLIC:public;$OIDC_PUBLIC_REDIRECT_URLS" secret_sync_args="OIDC:OIDC_PUBLIC:public;$OIDC_PUBLIC_REDIRECT_URLS"
else else