In [11]:
from argparse import Namespace
import requests
import time
import datetime as datetime
from datetime import timedelta
from cryptography.fernet import Fernet
import numpy as np
import json
import os
import glob
import shutil
import functools
import tarfile
from minio import Minio
from minio.error import (InvalidResponseError, S3Error)
import sys

sys.path.insert(0, 'appdata/dev')

from kaapana_federated.utils import get_auth_headers, get_minio_client, get_presigend_url

In [12]:
def get_init_conf():
    return {
        "federated": {
            "federated_operators": ['local-dev'], 
            "skip_operators": ["workflow-cleaner"],
            "host_network": {
                'username': 'kaapana',
                'password': 'admin',
                'protocol': 'https',
                'host': '10.133.28.53',
                'port': '443',
                'ssl_check': False,
                'client_id': 'kaapana',
                'client_secret': '1c4645f0-e654-45a1-a8b6-cf28790104ea'
            }
        }
    }

# Copied from dev
def update_conf(data, site, minioClient, federated_bucket):
    data['conf']['federated']['site'] = site
    minio_urls = {}
    minio_urls['conf'] = {'GET': get_presigend_url(minioClient, 'GET', federated_bucket, os.path.join(site,'conf.tar.gz')), 'PUT': get_presigend_url(minioClient, 'PUT', federated_bucket,  os.path.join(site,'conf.tar.gz'))}
    for federated_operator in data['conf']['federated']['federated_operators']:
        minio_urls[federated_operator] = {'GET': get_presigend_url(minioClient, 'GET', federated_bucket, os.path.join(site, f'{federated_operator}.tar.gz')), 'PUT': get_presigend_url(minioClient, 'PUT', federated_bucket,  os.path.join(site, f'{federated_operator}.tar.gz'))}
    data['conf']['federated']['minio_urls'] = minio_urls

FEDERATED_BUCKET = 'federated'   
minioClient = get_minio_client('kaapanaminio', 'Kaapana2020')
site = 'dkfz'
conf = get_init_conf()
meta_data = {'conf': conf}
update_conf(meta_data, site, minioClient, FEDERATED_BUCKET)

In [13]:
from_previous_dag_run = 'dev-federated-1'
meta_data['conf']['federated']['from_previous_dag_run'] = from_previous_dag_run
# meta_data['conf']['federated']['from_previous_dag_run'] = None
federated = meta_data['conf']['federated']
federated['rounds'] = [0]
run_id = 'dev-federated-2'
dag_run_dir = f'/appdata/dev/{run_id}'
federated

{'federated_operators': ['local-dev'],
 'skip_operators': ['workflow-cleaner'],
 'host_network': {'username': 'kaapana',
  'password': 'admin',
  'protocol': 'https',
  'host': '10.133.28.53',
  'port': '443',
  'ssl_check': False,
  'client_id': 'kaapana',
  'client_secret': '1c4645f0-e654-45a1-a8b6-cf28790104ea'},
 'site': 'dkfz',
 'minio_urls': {'conf': {'GET': {'method': 'GET',
    'path': '/federated/dkfz/conf.tar.gz?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=kaapanaminio%2F20220131%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20220131T111330Z&X-Amz-Expires=604800&X-Amz-SignedHeaders=host&X-Amz-Signature=594d07b729f3d1c09b1b2d9f2c73a152cf18fc52a63411091d62a92941948b53'},
   'PUT': {'method': 'PUT',
    'path': '/federated/dkfz/conf.tar.gz?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=kaapanaminio%2F20220131%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20220131T111330Z&X-Amz-Expires=604800&X-Amz-SignedHeaders=host&X-Amz-Signature=994891f7ae783a835680ab51fb1ccc7f194c709748c4e

In [6]:
# r = requests.get('http://federated-postgres-service.base.svc:5000/federated-backend/get-remote-network')


In [14]:
BATCH_NAME='batch'
WORKFLOW_DIR='/appdata/dev'


def get_auth_headers(username, password, protocol, host, port, ssl_check, client_id, client_secret):
    payload = {
        'username': username,
        'password': password,
        'client_id': client_id,
        'client_secret': client_secret,
        'grant_type': 'password'
    }
    url = f'{protocol}://{host}:{port}/auth/realms/kaapana/protocol/openid-connect/token'
    r = requests.post(url, verify=ssl_check, data=payload)
    access_token = r.json()['access_token']
    return {'Authorization': f'Bearer {access_token}'}

##### To be copied
def fernet_encryptfile(filepath, key):
    if key == 'deactivated':
        return
    fernet = Fernet(key.encode())
    with open(filepath, 'rb') as file:
        original = file.read()
    encrypted = fernet.encrypt(original)
    with open(filepath, 'wb') as encrypted_file:
        encrypted_file.write(encrypted)
        
def fernet_decryptfile(filepath, key):
    if key == 'deactivated':
        return
    fernet = Fernet(key.encode())
    with open(filepath, 'rb') as enc_file:
        encrypted = enc_file.read()
    decrypted = fernet.decrypt(encrypted)
    with open(filepath, 'wb') as dec_file:
        dec_file.write(decrypted)
        
def apply_tar_action(dst_filename, src_dir):
    print(f'Tar {src_dir} to {dst_filename}')
    with tarfile.open(dst_filename, "w:gz") as tar:
        tar.add(src_dir, arcname=os.path.basename(src_dir))

def apply_untar_action(src_filename, dst_dir):
    print(f'Untar {src_filename} to {dst_dir}')
    with tarfile.open(src_filename, "r:gz")as tar:
        tar.extractall(dst_dir)

def raise_kaapana_connection_error(r):
    if r.history:
        raise ConnectionError('You were redirect to the auth page. Your token is not valid!')
    try:
        r.raise_for_status()
    except:
        raise ValueError(f'Something was not okay with your request code {r}: {r.text}!')

def apply_minio_presigned_url_action(action, federated, operator_out_dir, root_dir):
    data = federated['minio_urls'][operator_out_dir][action]
    print(data)
    r = requests.get('http://federated-backend-service.base.svc:5000/federated-backend/get-remote-network')
    remote_network = r.json()
    print('Remote network')
    for k, v in remote_network.items():
        print(k, v)
    r = requests.get('http://federated-backend-service.base.svc:5000/federated-backend/get-client-network')
    client_network = r.json()
    print('Client network')
    for k, v in client_network.items():
        print(k, v)
    minio_presigned_url = f'{remote_network["protocol"]}://{remote_network["host"]}:{remote_network["port"]}/federated-backend/remote/minio-presigned-url'
    ssl_check = remote_network["ssl_check"]
    filename = os.path.join(root_dir, os.path.basename(data['path'].split('?')[0]))
    if action == 'PUT':
        apply_tar_action(filename, os.path.join(root_dir, operator_out_dir))
        fernet_encryptfile(filename, client_network['fernet_key'])
        tar = open(filename, "rb")
        print(f'Putting {filename} to {remote_network}')
        r = requests.post(minio_presigned_url, verify=ssl_check, data=data,  files={'file': tar}, headers=remote_network['headers'])
        raise_kaapana_connection_error(r)

    if action == 'GET':
        print(f'Getting {filename} from {remote_network}')
        os.makedirs(os.path.dirname(filename), exist_ok=True)
        with requests.post(minio_presigned_url, verify=ssl_check, data=data, stream=True, headers=remote_network['headers']) as r:
            raise_kaapana_connection_error(r)
            print(r.text)
            with open(filename, 'wb') as f:
                for chunk in r.iter_content(chunk_size=8192): 
                    # If you have chunk encoded response uncomment if
                    # and set chunk_size parameter to None.
                    #if chunk: 
                    f.write(chunk)
        fernet_decryptfile(filename, remote_network['fernet_key'])
        apply_untar_action(filename, os.path.join(root_dir))

    os.remove(filename)
    
                
def federated_action(operator_out_dir, action, dag_run_dir, federated):

    if federated['minio_urls'] is not None and operator_out_dir in federated['minio_urls']:
        apply_minio_presigned_url_action(action, federated, operator_out_dir, dag_run_dir)
#         HelperMinio.apply_action_to_object_dirs(minioClient, action, bucket_name=f'{federated["site"]}',
#                                 local_root_dir=dag_run_dir,
#                                 object_dirs=[operator_out_dir])

#######################
def dev():
    
    def _run(cache_operator_dirs, self):
        ##### To be copied
        if federated is not None and 'from_previous_dag_run' in federated and federated['from_previous_dag_run'] is not None:
            if 'federated_operators' in federated and self.name in federated['federated_operators']:
                print('Downloading data from Minio')
                federated_action(self.operator_out_dir, 'GET', dag_run_dir, federated)


#         x = func(self, *args, **kwargs)
        if federated is not None and 'federated_operators' in federated and self.name in federated['federated_operators']:
            print('Putting data')
            federated_action(self.operator_out_dir, 'PUT', dag_run_dir, federated)

            if federated['federated_operators'].index(self.name) == 0:
                print('Updating the conf')
                conf['federated']['rounds'].append(conf['federated']['rounds'][-1] + 1) 
                conf['federated']['from_previous_dag_run'] = run_id
                os.makedirs(os.path.join(dag_run_dir, 'conf'), exist_ok=True)
                config_path = os.path.join(dag_run_dir, 'conf', 'conf.json')
                with open(config_path, "w", encoding='utf-8') as jsonData:
                    json.dump(conf, jsonData, indent=4, sort_keys=True, ensure_ascii=True)
                federated_action('conf', 'PUT', dag_run_dir, federated)

#                 HelperMinio.apply_action_to_file(minioClient, 'put', 
#                     bucket_name=f'{federated["site"]}', object_name='conf.json', file_path=config_path)
                # Implement removal of file?
#         #######################

    for cache_operator_dirs, self in [
        (['get-input-data'], Namespace(**{'name': 'get-input-data', 'operator_out_dir': 'get-input-data'})),
        (['local-dev'], Namespace(**{'name': 'local-dev', 'operator_out_dir': 'local-dev'})),
        (['workflow-cleaner'], Namespace(**{'name': 'workflow-cleaner', 'operator_out_dir': 'workflow-cleaner'}))
        ]:
        
        print(cache_operator_dirs, self)
        _run(cache_operator_dirs, self)

dev()

['get-input-data'] Namespace(name='get-input-data', operator_out_dir='get-input-data')
['local-dev'] Namespace(name='local-dev', operator_out_dir='local-dev')
Downloading data from Minio
{'method': 'GET', 'path': '/federated/dkfz/local-dev.tar.gz?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=kaapanaminio%2F20220131%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20220131T111330Z&X-Amz-Expires=604800&X-Amz-SignedHeaders=host&X-Amz-Signature=d90a31aef907352894bfb8bbd2d130ced7091bf6f616dc234b528d72c99f0883'}
Remote network
fernet_key deactivated
headers {'FederatedAuthorization': '4f05fad1-aa23-4d8b-91a1-f28a187b08f9'}
host 10.133.28.53
port 443
protocol https
ssl_check False
Client network
fernet_key deactivated
header {'FederatedAuthorization': '4f05fad1-aa23-4d8b-91a1-f28a187b08f9'}
host 10.133.28.53
port 443
protocol https
ssl_check False
Getting /appdata/dev/dev-federated-2/local-dev.tar.gz from {'fernet_key': 'deactivated', 'headers': {'FederatedAuthorization': '4f05fad1-aa23-4d8b-91

