Genomic data sharing support software ("let the data go")
Elsa Data is a software stack that provides data custodians and researchers with a collaborative space in which they can manage the sharing and access to genomic data sets.
Elsa Data can ingest approved applications from a variety of sources (REMS, RedCap, manual) and then creates a shared release - a specific web portal area documenting the details of exactly what data is being shared with exactly which users and under what circumstances. Elsa Data then enables point and click mechanics to actually release the genomic objects (object signing, copy out, access points). All of this sharing activity is strongly audited.
To get started with development see development start here.
Super admins must be listed in the Elsa Data configuration files - and cannot be changed dynamically (to add/remove super admin rights for a user - one of the configuration sources must be changed - and the system restarted).
NOTE the following permissions are the only permissions granted by being listed as a super admin. Super admins will not otherwise be able to do anything that an ordinary user cannot - until they grant themselves further user permissions.
| Permission | Description |
|---|---|
isAllowedChangeUserPermission |
Allows the user to change the "user permissions" (see below) of users (including themselves) |
Within the overall system context (i.e. outside any specific release) the following user permissions can be granted.
| Permission | Description |
|---|---|
isAllowedOverallAdministratorView |
This permissions grants an implicit Viewer role for releases where this user is not otherwise involved |
isAllowedCreateRelease |
Allow user to create a new release via any configured DAC mechanisms |
isAllowedRefreshDatasetIndex |
Allow the user to update the current dataset index by triggering the respective indexing task. This includes fetching data-egress records if configured. |
All of these permissions will be disabled on first log in for a user.
In the context of each release, users are assigned a Role which affects the permissions they are granted. When a user is granted a role in a release - we say they are involved in the release. This is the primary security boundary of the system - users must be involved in a release in order to see or interact with it in the UI/API (NOTE with the caveat of the Viewer role listed below).
| Roles | Description |
|---|---|
Administrator |
Given to the data custodians of the release |
Manager |
Given to the managers of this release from the perspective of the applicant (i.e. project manager / CI / PI) |
Member |
Given by the Manager/Administrator to access the data in the release. The use case for this is a person from the research group need to access the given data, but instead of using the Manager credentials to retrieve it, the manager could delegate this (Member) role to that person. |
Viewer |
An implicit role given to those with isAllowedOverallAdministratorView and who otherwise aren't involved in a release |
Permissions bound on each role are as follows.
Administrator |
Manager |
Member |
Viewer |
|
|---|---|---|---|---|
| Modify cases/patients to be included in the release | ✅ | ❌ | ❌ | ❌ |
| Modify files to be included in the release | ✅ | ❌ | ❌ | ❌ |
| Modify what type of method allowed for the data access (e.g. only allow htsget endpoint) |
✅ | ❌ | ❌ | ❌ |
| Enable/suspend data sharing in a release | ✅ | ❌ | ❌ | ❌ |
Invite/remove an Administrator in the release |
✅ | ❌ | ❌ | ❌ |
Invite/remove a Member or Manager in the release |
✅ | ✅ | ❌ | ❌ |
Promote/Demote Manager from/to a Member role |
✅ | ✅ | ❌ | ❌ |
| Edit your own role within the release | ❌ | ❌ | ❌ | ❌ |
| View all participants in the release | ✅ | ✅ | ✅ | ✅ |
| View details of the release (e.g. purpose of release, DAC details) |
✅ | ✅ | ✅ | ✅ |
| View all audit events occurred within the release | ✅ | ✅ | ✅ | ✅ |
| View password for encrypted manifest. (Manifest will be protected with password to prevent storing it randomly on local directory.) |
✅ | ✅ | ✅ | ❌ |
| Accessed the data-content available in the release. | ❌ | ✅ | ✅ | ❌ |
GCP credentials are provided using Google's Application Default Credentials. Unlike other configuration which Elsa uses, GCP sources configuration from the environment.
Unless running in a GCP environment, a service account must be used for authorization. This is important for signing URLs in particular. See here to learn how to create a service account.
When using a service account, you must create a key file as described
here.
You must set the GOOGLE_APPLICATION_CREDENTIALS environment variable to the
path/to/the/key.json.
A logo and brand name can be added to Elsa to indicate what organisation is running the instance. Branding is configured using the configuration subsystem described here. An example JSON5 snippet to add a logo and brand name is as follows:
"branding": {
"brandName": "UMCCR",
"logoPath": "/path/to/umccr-logo.png"
}If deploying Elsa as a Docker image, the JSON5 file which contains this configuration can be baked into the image as shown here. The logo would need to be included in the image similarly.
When an audit trail leave behind an IP address, we have include a mechanism to lookup the IP address to a real world location. This mechanism requires a MaxMind Database which will lookup to its corresponding city and country. If the Database is not included at the deployment the lookup field in the Elsa's database will return empty (-).
To get the MaxMind Geo-City location database, you are required to be authenticated to download the database (the lite version is free). There are 2 ways to download the MaxMind Db.
- Manually
- Click on
MY ACCOUNT(:bust_in_silhouette:) >MY ACCOUNT>DOWNLOAD DATABASES - Download the
.mmdbfor the Geo City version (e.g. when using the lite version it isGeoLite2 City).
- Click on
- License Keys
- Setup and retrieve the License Keys from the
MY_ACCOUNT(:bust_in_silhouette:). - Substitute the key into the following URL
https://download.maxmind.com/app/geoip_download?edition_id=GeoLite2-City&license_key={LICENSE_KEYS}&suffix=tar.gzand paste the URL to your browser address box (or you can do it viacurl) to download theGZIPfile.
- Setup and retrieve the License Keys from the
The downloaded file will be in GZIP file, you could verify the downloaded file with the SHA256 provided. This database will be updated regularly to provide the most accurate location, at the time of writing this, MaxMind will update this database twice a week.
Extract this data (to obtain the .mmdb file) and include this file as part of the deployment.
The MaxMind Database path is configured using the configuration subsystem described here. An example JSON5 snippet to add the MaxMind database path is as follows:
"ipLookup": {
"maxMindDbPath": "path/to/Geo-City.mmdb",
}If deploying Elsa as a Docker image, the JSON5 file which contains this configuration can be baked into the image as shown here. The .mmdb would need to be included in the image similarly.