A Java delegate for supporting IIIF Auth in Cantaloupe.
This is not ready for use. If you've found this already somehow, bookmark it and return again later. Thanks.
The git-lfs application must be installed and have been initialized locally before the Cantaloupe dependency will be able to be downloaded.
There is a two step build process. First, to install the cantaloupe jar in your local Maven repository, run:
mvn validate
After that is done, you can run the following to build the delegate (Docker credentials are required to pull the cantaloupe-ucla image for testing):
mvn verify -Ddocker.username=username -Ddocker.password=password
This will run tests of the delegate and provide a Jar file to use with your v5 Cantaloupe installation.
There are unit and integration tests. The integration tests spin up Docker containers for Hauth and Cantaloupe. In this process, the latest cantaloupe-auth-delegate build artifact is injected into the Cantaloupe container. If any tests fail, the build will fail.
An alternative to running the test containers as a part of the integration test suite is to run them directly. To do this, one would type:
mvn package docker:build docker:run -Dmaven.test.skip -Ddocker.username=username -Ddocker.password=password
To find out which host ports the containers are running on, look for output in the Maven console logs that looks like:
[INFO] --- build-helper-maven-plugin:3.0.0:reserve-network-port (reserve-port) @ cantaloupe-auth-delegate ---
[INFO] Reserved port 35221 for test.http.port
[INFO] Reserved port 43871 for test.db.port
[INFO] Reserved port 34665 for test.iiif.images.port
[INFO] Reserved port 34733 for test.db.cache.port
Those port numbers can be used, in conjunction with the localhost host name, to access each service's public interface. The port numbers will change with each run, according to which ports are free on the machine.
It's also possible to override one (or more) of these values from the command line (if you don't want to look the port number of a particular service each time you restart). To do this, you'd type:
mvn package docker:build docker:run -Dtest.iiif.images.port=8888 -Ddocker.username=username -Ddocker.password=password
Once all manual testing is completed, the containers can be stopped by typing: [ctrl]-C.
There are some environmental properties that are supplied automatically for the tests, but which need to be explicitly set on a production (test, dev, etc.) system. These include:
AUTH_ACCESS_SERVICE="https://example.com/access"
AUTH_COOKIE_SERVICE="https://example.com/cookie"
AUTH_COOKIE_SERVICE_LABEL="UCLA Library"
AUTH_TOKEN_SERVICE="https://example.com/token"
SINAI_AUTH_COOKIE_SERVICE_LABEL="Sinai Palimpsests at UCLA Library"
SINAI_AUTH_TOKEN_SERVICE="https://example.com/token/sinai"
TIERED_ACCESS_SCALE_CONSTRAINT="1:2"
To deploy a SNAPSHOT version of the delegate, run the following (with the proper credentials in your Maven settings.xml file):
mvn deploy -Drevision=0.0.1 -Ddocker.username=username -Ddocker.password=password
To use the deployed Jar file with a docker-cantaloupe container, supply the Maven repository location of the delegate via the DELEGATE_URL.
For instance, on a Linux machine:
docker run -p 8182:8182 -e "CANTALOUPE_ENDPOINT_ADMIN_SECRET=secret" -e "CANTALOUPE_ENDPOINT_ADMIN_ENABLED=true" \
-e "AUTH_ACCESS_SERVICE=https://example.com/access" \
-e "AUTH_COOKIE_SERVICE=https://example.com/cookie" \
-e "AUTH_TOKEN_SERVICE=https://example.com/token" \
-e "SINAI_AUTH_TOKEN_SERVICE=https://example.com/token/sinai" \
-e "TIERED_ACCESS_SCALE_CONSTRAINT=1:2" \
-e "DELEGATE_URL=https://repo1.maven.org/maven2/edu/ucla/library/cantaloupe-auth-delegate/0.0.1/cantaloupe-auth-delegate-0.0.1.jar" \
--name melon -v "$PWD/src/test/resources/images:/imageroot" uclalibrary/cantaloupe:5.0.4-0
Note that the SNAPSHOT version will change each time the deploy is run. That part of the example above will need to be updated after a new snapshot deployment. The path to the mounted image directory will also need to be changed to work with your local file system. Improved instructions will be provided once we publish a versioned release of the delegate.