orcid-umd

Rails application for associating ORCID identifiers to university members.

Introduction

This application enables a UMD student/staff/faculty member to associate an ORCID id with a university-specific identifier.

This application uses information provided by a CAS login to retrieve the university-specific identifier, so a CAS login is immediately shown when accessing the application.

Since ORCID ids are supposed to be unique, each user is only allowed to associate one ORCID id with their university identifier. If a user's ORCID id is already known to the application, the user is immediately shown a page with their ORCID id and the date it was registered.

Users that are not registered are redirected to the ORCID website, which requires them to log in. After successfully logging in and allowing the application to access their ORCID id, the application associates the university identifier with the ORCID id. See the "ORCID API Workflow" section for additional details on how the ORCID API works.

ORCID API Workflow

This application follows the steps in the Basic tutorial: Get an authenticated ORCID iD:

Redirects the browser to the ORCID website to request an authorization code, providing a callback address.
At the ORCID website, the user logs in, and authorizes the application to access the ORCID id. ORCID then redirects the browser to the callback URL, with an authorization code.
When the callback URL is called, the authorization code is used to retrieve the ORCID id, which is then stored in the database.

Application Setup

ORCID Setup

This application requires an ORCID-provided "client id" and "client secret".

The application must also be registered with ORCID, and the specific URL that will be used for callback URL must be specified.

CAS Setup

For production use, the application also requires the following attributes to be released to it by CAS:

employeeNumber
firstName
lastName

These attributes are not released by default, so coordination with DIT is necessary to ensure that these attributes are available to the application.

Production Environment Configuration

The application uses the "dotenv" gem to configure the environment. The gem expects a ".env" file in the root directory to contain the environment variables that are provided to Rails. A sample "env_example" file has been provided to assist with this process. Simply copy the "env_example" file to ".env" and fill out the parameters as appropriate.

Environment Banner

In keeping with SSDR policy, an "environment banner" will be displayed at the top of each page when running on non-production servers, indicating whether the application is running on a "Local", "Development", or "Staging" server. This banner does not appear on production systems.

The environment banner will attempt to auto-detect the correct environment. To override this auto-detection functionality (or to modify it for testing), an "ENVIRONMENT_BANNER" environment variable can be used with any of the following values (which are case-insensitive):

"Local"
"Development"
"Staging"
"Production" - This is only needed to force the "production" setting (i.e., not show the banner) on a server that would otherwise show some other value. Production systems do not need to set this value.

Application Monitoring

The application can be monitored using the "/ping" URL path. This path does not require authentication.

Docker Image

This application provides Dockerfile for generating a Docker image for use in production. The Dockerfile provides a sample build command.

The "docker_config" directory contains files used by the Dockerfile.

In order to generate "clean" Docker images, the Docker images should be built from a fresh clone of the GitHub repository.

Development Setup

ORCID setup

For local development, the application can be configured to use the ORCID "sandbox" server https://sandbox.orcid.org/.

See the "ORCID Sandbox IDs" of the "Identities" document on the SSDR Team drive for information about existing ORCID accounts.

In order to be use the ORCID sandbox server:

Log in to ORCID using one of the sandbox ORCID accounts (or create a new ORCID account, if necessary).
In the account, select the "Developer Tools" tab. If an application has never been registered, click the "Register for the free ORCID public API" button. Fill out the resulting form. In the "Redirect URIs" section, use
```
http://localhost:3000
```
This will allow any URL starting with "http://localhost:3000" to be used as a callback URL.
After filling out the form, a "Client ID" and "Client Secret" will be displayed. These should be added to the ".env" file for use by the application.

CAS setup

Since the "employeeNumber" CAS attribute is not available without coordination with DIT, the "uid" attribute (which is the CAS Directory id, and is available by default) can be used instead. Simply set the "CAS_UID_ATTRIBUTE" in the ".env" to "uid".

The "firstName" and "lastName" attributes are also not available, but their absence should not cause any errors, other than the user's name not being displayed on the "Previously Captured" page (a hard-coded default of "John Smith" is displayed instead).

Type	Name	Latest commit message	Commit time
	Failed to load latest commit information.
	app
	bin
	config
	db
	docker_config/orcid-umd
	lib
	log
	public
	storage
	test
	tmp
	vendor
	.gitignore
	.rubocop.yml
	.ruby-gemset
	.ruby-version
	Dockerfile
	Gemfile
	Gemfile.lock
	Jenkinsfile
	LICENSE
	README.md
	Rakefile
	config.ru
	env_example
	package.json

umd-lib/orcid-umd

Join GitHub today

Clone with HTTPS

Downloading...

Launching GitHub Desktop...