# The Cloud & Microsoft Azure, Part II

### ACSE 1 Lecture Six 
### 20th October 2020 
### Version 1.0.5

#### Yesterday

- The types of cloud service
- Azure VMs
- Introduction to Docker

### By the end of this lecture you should:
 - Understand the basic concepts of HTTP communication and RESTful APIs.
 - Be able to code a simple app in Flask.
 - Be able to serve that app from Azure.

 ### Remote communication

 - Remote Desktop Protocol (RDP), to access Windows (and some linux) virtual machines and to use them in the same manner as a desktop via a GUI.
 - Macs actually support the similar VNC protocol
- Secure Shell (SSH), to access a terminal on VMs (or apps on linux through X forwarding) (Windows/Mac/Linux)
- Hypertext Transfer Protocol (HTTP/HTTPS) to access services via the web, whether through a browser, or another application.

 #### RDP/VNC

- RDP familar from Azure Labs/exercises.
- Need client on local machine, server on remote
- Connect via file or address
- Authenticate in GUI

 #### SSH

- SSH familiar from yesterday.
- Need client on local machine, server on remote
- Connect via address
- Authenticate via password, or uploading keys

### HTTP/HTML

HTTP & HTTPS will be familiar to you from the web. Example of a uniform resource locator (URL), which take the form

```
https://user:password@www.imperial.ac.uk:8000/example/example/example.html?val1=abc&val2=123.4
```

Can be split into individual parts

#### The Protocol

The leftmost part

```
https://
```
Many alternative protocols, `ssh`, `ftp`, `sftp`, etc. etc. etc.

#### Authentication

More common in other protocols (HTTP/HTTPS is not very secure for authentication) 

```
https://username:password@
```

Often used in (e.g.) ssh. Often without protocol section

#### Server

Can be given as a name (`www.imperial.ac.uk`) or an IP address.

DNS servers used (from right to left) to convert first into second.

#### Port number

This is the (optional) number to the right of the server name/address. This is an address for communication on the remote system.

Only one service can use a specific port at a time.

Protocols have default port numbers
- SSH:22
- HTTP:80
- HTTPS:443
- RDP:3389

#### Path/Endpoint

A path (or similar information) passed to the remote application

```
/example/example/example.html
```

Simple static servers map this to a file system. Dynamic servers can use this in other ways.

#### Query/Parameters

The text to right of`?` 

```
val1=abc&val2=123.4
```

Set of parameters, encoded in a `key=value` format.

Again passed to server application.

#### HTTP Methods

List of verbs attached to HTTP requests

- GET - request data
- POST - send data
- PUT - replace data
- PATCH - update data
- DELETE - delete data

#### RESTful APIs

You may remember our script to look up TFL train line statuses

Example of a RESTful (Representational state transfer) API

interactions with a remote server encoded into a URL

Try sending a GET request  to <https://api.tfl.gov.uk/Occupancy/BikePoints/BikePoints_187> 

e.g. open it in your browser)

Interactive documentation <https://api.tfl.gov.uk/swagger/ui/index.html#!/Occupancy/Occupancy_Get>

#### JSON

Response is in JSON, data format from javascript.

Very similar to Python with minor differences (e.g. true VS True).

Somewhat human readable, somewhat self-documenting.

Most common modern api format.

Alternatives include:
- YAML
- XML
- CSV

#### Flask - easy Python web apps

Web framework allows one file app development.

Lightweight counterpart to Django.

```
pip install flask
```

Has a small universe of supporting packages.

_app.py_
```python
from flask import Flask

app = Flask(__name__)

@app.route("/hello")
def root():
    return "<b>Hello</b> World!"
```

### Web Forms

Additional packages `wtforms`, `flask-wtf`

Let's look at some code.

### Local Python GUIs

As well as web apps can write local code for GUIs.

Let's look at an example using the Qt toolkit which comes installed with Anaconda

### Security excursion: Single sign on

Best practice for passwords:

- Get password
- Add "salt (user specific information)
- Apply hash algorithm
- Save salt and hash

Complicated. Better to hand problem on to someone else.

Single sign on (SSO).

Three handed handshake between user, webserver and 3rd party.

- webserver directs user to 3rd party with message to come back
- third party does login in and gives user a code message
- user redirected back to server with code.
- server confirms code with third party using own secret.

# Multifactor authentication
 
User needs to present at least 2 responses from two different categories out of:

1. Something you know (e.g. a password)
2. Something you have (e.g. your phone)
3. Something you are (e.g. your fingerprint).

#### The GDPR and friends

- Need to be careful when identifiable person data involved.
- Not common in hardcore science & engineering
- Watch out if you work with medics (or teach)
- Mostly safe if you're sensible.

### Azure Web Services

Serve a Flask web app from Github in minutes.

Let's go over to the portal

### Blob Storage

[blob storage](https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blobs-introduction) is designed to hold:

> - Serving images or documents directly to a browser.
  - Storing files for distributed access.
  - Streaming video and audio.
  - Writing to log files.
  - Storing data for backup and restore, disaster recovery, and archiving.
  - Storing data for analysis by an on-premises or Azure-hosted service.

The data is accessed via a network interface (e.g. URL), 

Charges depending on acess frequency and volume of data transferred. 

Can be used in multiple ways.

### SQL

Azure provides several forms of database. 

Most are built around [SQL](https://www.codecademy.com/articles/sql-commands).

Venerable database language dating back to 1974

Multiple different versions.

 SQL follows hierarchical approach for structured data:
  - DB server holding databases
  - Databases hold tables
  - Tables hold records
  - Records have multiple values in multiple columns.

  
  A useful mental reference to spreadsheets
  
  - multiple spreadsheet files (e.g. Excel)
  - each containing multiple sheets
  - each containing multiple rows with
  - data in multiple columns. 
  
  Scriptable text interface, with transactions (i.e. multiple read & commit model
  
  access is more powerful, but difficult for newcomers.

Python comes with inbuilt support for SQL (`sqlite3`).

Uses local files rather than server.

To use a full fat SQL server [additional packages needed](https://docs.microsoft.com/en-us/azure/mysql/connect-python). 
 
Basic syntax to connect to, read & update individual databases remains similar.

For complex interactions, can be better to use a more Pythonic abstraction.

SQlalchemy, Pandas. etc.

Let's go look at a file.

## Summary

You should now:
 - Understand the basic concepts of HTTP communication and RESTful APIs.
 - Be able to code a simple app in Flask.
 - Be able to serve that app from Azure.