# The Cloud, Part I: Python Web Apps

## Front Matter
### October 18th 2021 - Version 2.1.0

### Contact Details
<div class="alert alert-warning">

 - Dr. James Percival
 - Room 4.85 RSM building (ask first)
 - email: j.percival@imperial.ac.uk
 - Teams: <code>@Percival, James R</code> in module Team, or DM me.
</div>

### Learning Objectives

### By the end of this lecture you should:
 - Understand public and private cloud and why people use them.
 - Understand the different types of cloud service.
 - Understand the basic concepts of HTTP communication and RESTful APIs.
 - Be able to code a simple web app in Flask.


## Introducing the Cloud

### What is the cloud?

![Azure.png](attachment:Azure.png)

Multiple related definitions, e.g. Wikipedia:

> Cloud computing is the on-demand availability of computer system resources, especially data storage (cloud storage) and computing power, without direct active management by the user. The term is generally used to describe data centers available to many users over the Internet. Large clouds, predominant today, often have functions distributed over multiple locations from central servers. If the connection to the user is relatively close, it may be designated an edge server. 
>
> _from the cloud computing article_

or from Microsoft:

> Simply put, cloud computing is the delivery of computing services – including servers, storage, databases, networking, software, analytics and intelligence – over the Internet (“the cloud”) to offer faster innovation, flexible resources and economies of scale. Typically, you only pay for cloud services you use, helping you lower your operating costs, run your infrastructure more efficiently and scale as your business needs change.

In general, "the Cloud" is a set of networked computer resources accessed remotely over a wide area network such as the internet.

### Public Cloud vs. Private Cloud

#### Public Cloud

For the Public Cloud, _services_ are bought (often Pay As You Go) on a need basis, with infrastructure shared with other users (often on a per machine basis)

- Multiple providers:
    - Microsoft Azure
    - Amazon AWS
    - Google Cloud Services
    - Alibaba Cloud

#### Private Cloud

For a Private Cloud system, the full _infrastructure_ (i.e. computer equipment at the data centre level) is purchased, and then run (or subcontracted) by the company or organization in question, and then accessed over a network (the network itself may be public, so via the internet, or private). This gives full control over hardware, policy and configuration.

An example, the college [HPC clusters](https://www.imperial.ac.uk/admin-services/ict/self-service/research-support/rcs/support/getting-started/) (aka CX1 &CX2) provide multi-machine compute systems to Imperial researchers, based out of a data centre in Slough, to the west of London.

#### Hybrid Cloud

In a hybrid cloud situation an organization run a private cloud on their own data centre, but purchases additional public cloud services as needed. In principle, this allows the organization to combine the control and intellectual property advantages of private cloud with the availability and scalability advantages of the public cloud. In practice this can sometimes lead to duplication of effort, or attempts to replicate unsuitable policies from the private cloud service into the public cloud part.

#### Why use the cloud?

- Availability - systems tend to be online and supported 24/7 (and not by you)
- Scalability - Increasing/decreasing your allocation tends to happen instantly (or as soon as your credit card bill allows)
- Reach - Systems are accessible from most of the world via the Internet
- Agility - rapidly develop, test & deploy software
- Disaster Mitigation - Usually offer backups/rollbacks, sometimes at extra cost. Note that this doesn't prevent users needing to check that what's backed up is what was intended.
- Fault Tolerance - Cloud systems usually fallback to alternatives in case of physical failures.
- Elasticity - Systems can react dynamically to increasing or decreasing demand.

#### Why not to use the cloud?

- Latency issues - Keep large bandwidth data transfers local to each other.
- Costs (Data transfer, machine hire, etc.)
- Security - You are handing your data to someone else.
- Control - If you need personal oversight.
- Intellectual property concerns - some data may have legal or contractual constraints.

## Infrastructure, Platform and Software as a Service

"As a service" can be treated the same as "available to rent". Just as the difference between renting a hire car versus hailing a taxi, the different levels of service imply different levels of responsibility and control. We can list the three most typical types here. Note that precisely where in this hierarchy a specific service can be difficult, particularly when services are parcelled up and resold.

### Infrastructure As A Service (IaaS)

Infrastructure As A Service is the most basic model for using the Cloud. You purchase time on an entire computer (usually actually a virtual machine, i.e. a portion of a large server), then set up the entire system from scratch, just as you would with a computer under your desk.

IASS gives you maximum control of your environment (you can do virtually anything you like within the constraints of your cloud provider's security policies). However this also means you have considerable responsibilities (applying updates, scaling machine sizes, etc), and may be paying more than you would for other models, particularly if you have severely overestimated your system requirements *or leave machines running but unused*.

### Platform As A Service (PaaS)

Platform as a service further abstracts away the concepts of hardware and environment so that you can concentrate on writing the code which actually does the job that you want to do. The provider configures the core operating system and programming environment, with you just writing the actual application code. An example would be a service such as www.mybinder.org or Google Colab, which provides Jupyter instances to work in.

### Software As A Service (SaaS)

Software As A Service is the cloud model with the lowest barrier to entry. The provider supplies both the infrastructure and the application software, allowing you to concentrate purely on your data.

### The Coffee model 

We can illustrate the differences by considering an alternative industry, that of coffee:

#### Coffee as a service

Who is in charge of doing the following:

||On premises (caffetiere)|IaaS (Drip machine)|PaaS (Nespresso)|SaaS (cafe)|
|-|:---:|:--:|:--:|:--:|
|Water|You|You|You|Them|
|Beans|You|You|You|Them|
|Cups|You|You|You|Them|
|Grind|You|You|Them|Them|
|Pour|You|Them|Them|Them|


The same table for cloud computing looks somewhat like:

||Local on premises |IaaS |PaaS |SaaS |
|-|:---:|:--:|:--:|:--:|
|Applications|You|You|You|Them|
|Backend data|You|You|You|Them|
|Runtime libraries|You|Them|Them|Them|
|Operating system|You/Them|You|Them|Them|
|Computers|You|Them|Them|Them|
|Network|You|Them|Them|Them|

## Accessing Azure Cloud Services

### Getting an Azure account

Microsoft Azure provides a number of different kinds of accounts and subscription methods:

- Free accounts 
- Promotional subscriptions
- Pay-As-You-Go subscriptions
- Enterprise subscriptions

Most relevant for this course is the Azure Student subscription, which allows users from authorized educational institutions (such as Imperial College) to register each year for $100 of free credit and (slightly limited) access to all Azure services. Activation is via your college email address, to which your account will be linked.

The [Azure Portal](https://portal.azure.com) is the (desktop) point of interaction with Azure services on the web.

#### Logging into the Portal

You automatically have access to the Azure portal via your college login id (in the form `abc120@ic.ac.uk`) and password. In fact, Imperial College delegate their system authentication to Azure Active Directory, a Microsoft Azure Cloud service for authentication and authorization.

Once logged in you can sign up for your student subscription on this [page](https://portal.azure.com/#blade/Microsoft_Azure_Education/EducationMenuBlade/overview) using the "claim your Azure credit now" button. This will give you 100 US dollars  of (virtual) money to spend on Microsoft Cloud services. Watch out! While 100 dollars can last a very long time if used carefully, it can rapidly run out if you leave expensive services running. Always be sure to shut down virtual machines that you are no longer using, and to clean up after yourself.

## Web protocols



### TCP/IP 

Computers on a public network use numbers (called "IP addresses") to find each other. The most famous form, "ipv4" uses 32bit numbers, normally written divided into 4 bytes (i.e 4 numbers 0-255) separated by a period, eg. 146.179.40.148 (this is the IP address of an Imperial computer). These numbers divide into subnetworks. In general the leftmost numbers indicate the largest sub-networks, and the rightmost the smallest and usually most local. If this were a physical address, the leftmost part might be a country name, the middle part a city and street, and the right most a house or flat number.

In theory a 32 bit number allows for 4,294,967,296 different addresses, but these public addresses have been allocated in an uneven way and some are reserved for specific purposes (e.g. to be used to indicate a private network). As such the newer "ipv6" standard uses 128bit numbers, usually written as eight four character hexadecimal numbers, separated by ":" characters.

### HTTP/HTML

Once computers can identify each other, they need to communicate. On the web the most visible protocol for this is probably the hyptertext transfer protocol, or HTTP.

HTTP & HTTPS (i.e HTTP served via a secure TLS layer) addresses will be familiar to you from your experience on the web. They are an example of a uniform resource locator (URL) or uniform resource indicator (URI), which in this case takes the form

```
https://user:password@www.imperial.ac.uk:8000/example/example/example.html?val1=abc&val2=123.4
```

This web address can be broken down into several sections

#### Protocol


The leftmost part defines the protocol (think of it as an agreed language) being used. 

<div class="alert alert-warning">
    
When using HTTPS an encryption method must be agreed between the user agent (e.g. the browser) and the server. The standard pattern is that the server will hand over a "certificate", i.e. a message containing a cryptographic key to be used to encrypt a message to it. This cerificate will be "signed" by a trusted third party, where the signature is another message which (via encryption) can only have been generated by that third party. Using the key from the certificate the browser generates a new temporary key which both sides will use for this communication session and sends it back to the server. Once the process is complete all a snooper in the middle should be able to see is that a conversation is happening between the two IPs.
   
</div>

#### authentication

It is not frequently used with HTTP (due to relative lack of security in the service) but usernames (and even passwords) can be provided inside the URL. Some of you will have seen this given as an instruction when using HTTPS with GitHub.

#### Server

The server provides a human readable mnemonic for the IP address of the remote server being connected to. This is looked up, working from right to left by contacting helper "name servers" (aka DNS servers) to find the machine you request. So in this case, a global server will be contacted to find a `.uk` DNS server, which points us at the `.imperial` server, which points us at the internal Imperial webserver (or at least a gateway computer) dealing with requests to `www`, which could be the 146.179.40.148 address given above.

#### Port number

Ports can be thought of as individual communication addresses on a single machine. Only one type of communication can happen on one port at a one time, although multiple users can be served. Some protocols have standard ports which they default to if no specific port number is given, e.g. port 80 for plain HTTP, port 443 for HTTPS, port 22 for ssh, and so on. See e.g. [this list](https://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers) on Wikipedia for more examples.

#### path (sometimes called "endpoint")

The portion from the end of the server name to the beginning of the parameters is passed to the remote application connected to the port to decide what response to give. For a simple static http server this might be a directory path to a specific file. For a dynamic server, this might be a more complicated incantation.

<div class="alert alert-warn">
    
The word endpoint is used repeatedly with reference to web APIs, and not always consistently.
    
</div>

#### Parameters

The text beyond the `?` consists of a set of parameters, encoded in a `key=value` format, which is again passed on to the server application to use when generating its output.
    
    
### HTTP Requests

When connected, the client user agent will send messages (called "requests") to the server, which will reply with messages of its own (called "responses"). The actual content of a basic HTTP request is something like the following


```
GET /test?message HTTP/1.1 request body
```

Here we specify the HTTP method (a verb telling the server what we want to do), the path and query parameters (together) the protocol version, and any additional data the request is passing (this might be text, (e.g. JSON data, or the results of a form, or it might be binary data, such as a file we want to upload.

#### HTTP Methods

Here is a table listing the major standard HTTP methods and their normal usage

|Method|Usage|
|:----:|:---:|
|  GET  | Server returns data in response body |
| HEAD  | Server returns just response headers |
| PATCH | Server makes incremental update based on request body |
| PUT   | Server updates based on data in request body |
| POST  | Server receives data in request body |
| DELETE | Requests server deletes information based on data supplied |
| OPTIONS | Server lists subset of methods it supports|
| CONNECT | Requests server connects to specified target|
| TRACE   | Requests server sends back attached data|

Not all servers will accept or respond to all methods. Other methods can exist, but these are outside the HTTP standard.


#### HTTP & Python


Python contains modules in its standard library which are useful both for _serving_ HTTP and for making requests to servers. There is also a popular 3rd party package, [requests](https://docs.python-requests.org/en/latest/) which simplifies doing the latter for many basic operations.

To create a simple web/file server just on your local machine, run (in Python3)
```bash
python -m http.server
```
then point your browser at [http://localhost:8000](http://localhost:8000).

To make a webpage request in the inbuilt libraries we can do something like the following

In [1]:
from urllib.request import Request, urlopen
req = Request("https://api.tfl.gov.uk/Occupancy/BikePoints/BikePoints_187", method="GET")
response = urlopen(req) # we could just use urlopen("https://api.tfl.gov.uk/Occupancy/BikePoints/BikePoints_187")
print(response.read())

b'[{"$type":"Tfl.Api.Presentation.Entities.BikePointOccupancy, Tfl.Api.Presentation.Entities","id":"BikePoints_187","name":"Queen\'s Gate (South), South Kensington","bikesCount":8,"emptyDocks":17,"totalDocks":25}]'


### RESTful APIs 

You may remember our script to look up TFL train line statuses on the tube from last week. Let's revisit the key parts

In [2]:
from urllib.request import urlopen
import json

url = "https://api.tfl.gov.uk/line/circle/status"
    
status = json.loads(str(urlopen(url).read(),'ascii'))

short_status = {s['name']:s['lineStatuses'][0]['statusSeverityDescription'] for s in status}

print(short_status)

{'Circle': 'Good Service'}




The information provided by the [Transport For London Unified API](https://api.tfl.gov.uk) is an example of a [RESTful API](https://en.wikipedia.og/wiki/Representational_state_transfer). In general, these work by providing a set of http-based URLs (i.e., web addresses) which respond to requests by returning relevant database information. In this example we connect to
```
https://api.tfl.gov.uk/line/circle/status
```
to get information about the _status_ of the _Circle Line_. This is one common pattern in which the path in the HTTP request encodes the question we want to ask. Fuller documentation on this API is available at the [TFL Swagger API page](https://api.tfl.gov.uk/swagger/ui/index.html#!/Line/Line_MetaModes) which lists the various valid paths you can follow and explains the information you get back. Another common pattern uses the path to specify the basic resource you are interested in and then query parameters to modify the response, e.g.
```
https:/api.github.com/users/jrper/repos?sort=created
```

Following `https://api.tfl.gov.uk/Occupancy/BikePoints/BikePoints_187` generates the response

```json
[{"$type":"Tfl.Api.Presentation.Entities.BikePointOccupancy, Tfl.Api.Presentation.Entities","id":"BikePoints_187","name":"Queen's Gate (South), South Kensington","bikesCount":3,"emptyDocks":21,"totalDocks":25}]
```

Is an example of [JSON](https://en.wikipedia.org/wiki/JSON), a data format derived from Javascript, which works similarly to the Python database definition. Other, slightly less common formats include [XML](https://en.wikipedia.org/wiki/XML), [YAML](https://en.wikipedia.org/wiki/YAML) and [CSV](https://en.wikipedia.org/wiki/Comma-separated_values).

The Python system module `urllib.request` can be used to handle transmitting and receiving the requests, although non-system packages with more features are also available, and usually recommended when accessible (the most famous is probably the `requests` package.). The `json`, `xml` and `csv` modules can also be used to provide basic data processing on responses although, for large data sets, a package such as `pandas` may be more appropriate.

#### A reminder on JSON

As a reminder, the JSON data format is very similar to Python datatype, with only a few key differences (e.g. JSON property keys must be strings), and  some minor variations in terminology (see the table below). The Python bulit-in `json` module can be used for automatic translation and many third-party packages (such as the data processing package Pandas you'll learn about later in the week).


|   |Python|JSON|
|:-:|:----:|:--:|
|key-value pair|dictionary(`dict`/`{}`)|object(`{}`)|
| dynamic array| `list`, `[a,b,c]` | array (`[a,b,c]`)|
| integer      | `int` (1, 1001)           | 1, 1001|
| floating point number | `float` (2.1, 1032.6) | 2.1, 1032.6 |
| Boolean      | `bool`,`True`/`False` | `true`/`false` |
| empty object | `None` | `null`       |

The biggest difference is that JSON data is actually a string which can be sent places or stored, while Python data is "living" inside the interpreter.

In [8]:
import json

my_data = '{"values" : [1, null, 3.4, false], "times": ["2021-10-21-T12:00"]}'  #this is a string
print(type(my_data), my_data)

data = json.loads(my_data) # convert JSON to Python
data["values"][0] += 5
data[1001] = None
print(type(my_data), my_data)

print(json.dumps(data))

<class 'str'> {"values" : [1, null, 3.4, false], "times": ["2021-10-21-T12:00"]}
<class 'str'> {"values" : [1, null, 3.4, false], "times": ["2021-10-21-T12:00"]}
{"values": [6, null, 3.4, false], "times": ["2021-10-21-T12:00"], "1001": null}


## Flask - Python Web Apps

```{index} Flask
```

The are now many frameworks for creating web services, ranging from the simple but lightweight to the complicated but powerful. We will introduce a Python framework called [Flask](https://flask.palletsprojects.com/en/2.0.x/), originally created as an April Fool's joke, which is on the lightweight end of the spectrum, but makes it very easy to create single file Web apps driven by form processing.

### A "Hello World" Flask program

As a Python package, we can install Flask using `pip` or `conda` using a command like:

```
pip install flask
```

With Flask installed, we can write a short example program and give it the "magic" name `app.py`.

_app.py_

```python
from flask import Flask

app = Flask(__name__)

@app.route("/hello")
def my_func():
    return "<b>Hello</b> World!"
```

In this program we create a Flask application, and write a short function `my_func`, which we assign using a Python decorator to be called whenever an HTTP request is made to the path `/hello`.

We can test run this on our local system with the command

`flask run` 

inside the directory with the `app.py` file, which starts a web server on the local host on port 5000. We can then point our browser at the full URL [http//localhost:5000/hello](http//localhost:5000/hello) to see the final result. 


<div class=alert-warning>
    
##### Decorators
    
A decorator is the name for the Python functions which take in an input function and return a replacement, and which we access with the syntax
    
```python
@decorator_name(an_argument)
def original_func():
    # do stuff
    x = 7
    return x
```
    
This syntax is the same as if we had written
    
 ```python
def original_func():
    # do stuff
    x = 7
    return x
    
original_func = decorator_name(original_func, an_argument)
```
    
As a concrete example see the code block below
    
</div>

In [3]:
def my_decorator(old_func, *args, **kwargs):
    ## This decorator makes functions print their inputs
    def new_func(*args, **kwargs):
        print(args, kwargs)
        return old_func(*args, **kwargs)
    return new_func
    
@my_decorator
def f(x, y=7):
    return x+y

z = f(1)
z = f(x=1, y=5)

(1,) {}
() {'x': 1, 'y': 5}


Flask-based applications can get more complicated, for example using variable expansion and type converters to serve more paths at once, or to modify the data

```python
@app.route("/name/<input_name>/age/<int:input_age>")
def my_func(input_name, input_age):
    return f"<b>Hello</b> {input_name}! Looking good for {input_age}!"
```

Similarly, information passed in in query parameters can be used via a dictionary lookup


```python

from flask import request
clients = ["Tom Cruise", "Halle Berry"]

@app.route("/client")
def my_func():
    client_name = request.args.get('name', default=None)
    if client_name in clients:
        return f"<b>Hello</b> {client_name}"
    else:
        return f"Are you in the right place"
```

Have a look in the examples in the `lecture04` folder, after which, it's time to start trying the exercises.


## Summary

At the end of the lecture you should now:

- Understand public and private cloud and why people use them.
- Understand the different levels of cloud services, and the differences between them.
- Understand the basics of HTTP with Python

## Further Reading

- The [Azure documentation pages](https://docs.microsoft.com/en-us/azure/?product=featured)
- the Python [urllib](https://docs.python.org/3/library/urllib.html) documentation
- The [Requests](https://docs.python-requests.org/en/latest/) documentation
- The [Flask](https://flask.palletsprojects.com/en/2.0.x/) documentation
- [Django](https://www.djangoproject.com/), a more heavy duty Python web development framework.
