iPython Shell
Similar to the command vserver start an administrator can start an iPython shell to manage all entities at the server. The preferred method of managing entities is using the API, instead of the Shell interface. This is because the API will perform check, whereas in the case of the Shell all inputs are accepted.
Start the Shell interface using:
vserver shell [options]
You should see something resembling the following:
To create an organization you can use the db.Organization model:
# create new organiztionorganization = db.Organization(name="IKNL",domain="iknl.nl",address1="Zernikestraat 29",address2="Eindhoven",zipcode="5612HZ",country="Netherlands")# Note: organizations have a public key that is used for end-to-end# encryption. This key is automatically created by the Node the# first time it's run.# TODO: key generation will change in an upcoming release.# store organization in the databaseorganization.save()
Retrieving organizations from the database:
# get all organizations in the databaseorganizations = db.Organization.get()# get organization by its unique idorganization = db.Organization.get(1)# get organization by its nameorganization = db.Organization.get_by_name("IKNL")
A lot of entities at the server are connected to an organization. For example you can see which (computation) tasks are issued by the organization or see which collaborations it is participating within.
# retrieve organization from which we want to know moreorganization = db.Organization.get_by_name("IKNL")# get all collaborations in which the organization participatescollaborations = organization.collaborations# get all users from the organizationusers = organization.users# get all created tasks (from all users)tasks = organization.created_tasks# get the results of all these tasksresults = organization.results# get all nodes of this organization (for each collaboration# an organization participates in, it needs a node)nodes = organization.nodes
Users (always) belong to an organization. So if you have not created an organization as of yet, then this should be your first step. To create a user you can use the db.User model:
# first otain the organization to which the new user belongsorg = db.Organization.get_by_name("IKNL")# create the new users, see section Roles and Rules on how to# deal with permissionsnew_user = db.User(username="root",password="super-secret",firstname="John",lastname="Doe",roles=[],rules=[],organization=org)# store the user in the databasenew_user.save()
You can retrieve users in the following ways:
# get all usersdb.User.get()# get user by its unique iddb.User.get(1)# get user by usernamedb.User.getByUsername("root")# get all users from the organization IKNLdb.Organization.get_by_name("IKNL").users
To modify a user, simply adjust the properties and save the object.
user = db.User.getByUsername("some-existing-username")# update the firstnameuser.firstname = "Brandnew"# update the password; it is automatically hashed.user.password = "something-new"# store the updated user in the databaseuser.save()
A user can have multiple roles and rules assigned to them. These are used to determine if the user has permission to view, edit, create or delete certain resources. A role is a collection of rules.
# display all available rulesdb.Rule.get()# display all available rolesdb.Role.get()# retrieve a certain rule from the DBrule = db.Rule.get_by_("node", Scope, Operation)# create a new rolerole = db.Role(name="role-name", rules=[rule])rol.save()# or assign the rule directly to the useruser = db.User.get_by_username("some-existing-username")user.rules.append(rule)user.save()
A collaboration consists of one or more organizations.
To create a collaboration you need at least one organization in your database (look here how to add an organization). To create a collaboration you can use the db.Collaboration model:
# create a second organization to collaborate withother_organization = db.Organization(name="IKNL",domain="iknl.nl",address1="Zernikestraat 29",address2="Eindhoven",zipcode="5612HZ",country="Netherlands")other_organization.save()# get organization we have created earlieriknl = db.Organization.get_by_name("IKNL")# create the collaborationcollaboration = db.Collaboration(name="collaboration-name",encrypted=False,organizations=[iknl, other_organization])# store the collaboration in the databasecollaboration.save()
Tasks, nodes and organizations are directly related to collaborations. We can obtain these:
# obtain a collaboration which we like to inspectcollaboration = db.Collaboration.get(1)# get all nodescollaboration.nodes# get all tasks issued for this collaborationcollaboration.tasks# get all organizationscollaboration.organizations
Setting the encryption to false at the server does not mean that the nodes will send encrypted results. This is only the case if the nodes also agree on this setting.
Before nodes can login, they need to exist in the server's database. A new node can be created as follows:
# We'll use a uuid as the API-keyfrom uuid import uuid1# Nodes always belong to an organization *and* a collaborationiknl = db.Organization.get_by_name("IKNL")collab = iknl.collaborations[0]node = db.Node(name = f"IKNL Node - Collaboration {collab.name}",organization = iknl,collaboration = collab,api_key = str(uuid1()))# Save the new node to the databasenode.save()# Print / save the API-key, so it can be put in the node's# config file. Keep this key secret!print(node.api_key)
All computation requests are stored as tasks at the server. A task can be intended for multiple organizations (and thereby also for multiple nodes). In case you want to create a task from the shell you can use the db.Task model. Note that the task will not be picked up by nodes. Only tasks posted to the API will be picked up by nodes, as then they receive a message through the web-socket interface and corresponding db.Result records are created.
# obtain organization from which this task is postediknl = db.Organization.get_by_name("IKNL")# obtain collaboration for which we want to create a taskcollaboration = db.Collaboration.get(1)# obtain the next run_id. Tasks sharing the same run_id# can share the temporary volumes at the nodes. Usually this# run_id is assigned through the API (as the user is not allowed# to do so). All tasks from a master-container share the# same run_idrun_id = db.Task.next_run_id()task = db.Task(name="some-name",description="some human readable description",image="some-docker-registry.domain.org/image-name",collaboration=collaboration,run_id=run_id,database="default",initiator=iknl,)task.save()
Obtaining results:
# get all tasksdb.Task.get()# get task by its unique iddb.Task.get(1)# get tasks which are complete. A task is complete# if all nodes have returned a result[task for task in db.Task.get() if task.complete]
Tasks can have a child/parent relationship. In case a master container posts a task, the parent task would be the task that created the master container itself. Also the run_id is for parent and child tasks the same.
# get a task to which we want to create some# child tasksparent_task = db.Task.get(1)child_task = db.Task(name="some-name",description="some human readable description",image="some-docker-registry.domain.org/image-name",collaboration=collaboration,run_id=parent_task.run_id,database="default",initiator=iknl,parent=parent_task)child_task.save()
A task has one or more results, depending on the number of organization for which the task is intended. For each organization a result record is made. The db.Result model also contains the input specifically encrypted for the organization that has to execute the task. To create a result you need a db.Task first.
task = db.Task.get(1)
Obtaining results:
# obtain all Resultsdb.Result.get()# obtain only completed results[result for result in db.Result.get() if result.complete]# obtain result by its unique iddb.Result.get(1)
