Merge branch 'dev' into master

Author: harindra-a

deploy/docker/with_data_in_container/Dockerfile

@@ -0,0 +1,163 @@
+FROM openjdk:8-jdk
+
+RUN apt-get update \
+ && apt-get install -y wget \
+ && apt-get install -y git \
+ && apt-get install -y maven \
+ && apt-get install -y python \
+ && apt-get install -y gcc  \
+ && apt-get install -y python-dev \
+ && apt-get install -y python-setuptools \
+ && /usr/bin/easy_install -U pip \
+ && /usr/local/bin/pip install crcmod 
+
+MAINTAINER MacArthur Lab
+
+ADD settings.xml /root/.m2/settings.xml
+ADD entrypoint.sh  /root/bin/entrypoint.sh
+
+env MVN=mvn
+
+#first get Exomiser built in the local maven for matchbox to import in
+#---------------------------------------------------------------------------
+# _n.b._ check that the tag here is the same as the exomiser.version declared in the pom
+
+RUN git clone https://github.com/exomiser/Exomiser
+WORKDIR Exomiser
+RUN $MVN -DskipTests=true clean install
+
+#now matchbox (and it will see Exomiser in local maven repo)
+#---------------------------------------------------------------------------
+
+RUN git clone https://github.com/macarthur-lab/matchbox
+WORKDIR matchbox
+RUN $MVN -Dmaven.test.skip=true clean install package
+
+env MATCHBOX_JAR=/Exomiser/matchbox/target/matchbox-0.1.0.jar
+env MATCHBOX_CONFIG_DIR=/Exomiser/matchbox/config
+env MATCHBOX_DEPLOYMENT_CONFIG_DIR=/matchbox_deployment/config
+
+
+#Now get support data for Exomiser models (for now, cpying, switch with wget)
+#-----------------------------------------------------
+
+#----first get gsutils to interface with google
+RUN wget https://storage.googleapis.com/pub/gsutil.tar.gz \
+ && mkdir /root/gsutils_dir \
+ && tar xfz gsutil.tar.gz -C /root/gsutils_dir \
+ && rm gsutil.tar.gz \
+ && export PATH=${PATH}:/root/gsutils_dir/gsutil
+
+
+#----now get the data and untar it
+
+WORKDIR data
+RUN /root/gsutils_dir/gsutil/gsutil -m -o GSUtil:parallel_composite_upload_threshold=150M cp gs://seqr-reference-data/1711_phenotype.tar.gz data.local.tar.gz \
+ && tar -xzf data.local.tar.gz \
+ && rm data.local.tar.gz \
+ && pwd \
+ && ls -l
+
+
+#Now set matchbox up for deployment and copy over jar and config files
+#---------------------------------------------------------------------------
+WORKDIR /matchbox_deployment
+RUN cp -rf $MATCHBOX_CONFIG_DIR . \
+ && cp $MATCHBOX_JAR .
+
+
+
+#############################################
+#                                           #
+# Please note the EXOMISER_DATA_DIR         #
+# value. The file system path with ref      #
+# data (viewable by docker daemon) must     #  
+# be mounted to this location in            #
+# container at the docker run step          #
+#                                           #
+#############################################
+env EXOMISER_DATA_DIR=/Exomiser/matchbox/data
+env EXOMISER_PHENOTYPE_DATA_VERSION=1711
+
+
+#############################################
+#                                           #
+# This defines if matches that have no      #
+# genotypes in common, BUT have a high      #
+# phenotype score should be returned as     #
+# results                                   #
+#                                           #
+#############################################
+env ALLOW_NO_GENE_IN_COMMON_MATCHES=false
+
+#############################################
+#                                           #
+# Environment variables for Mongo           #
+# connection. Please populate before        #
+# doing docker build command                #
+#                                           #
+#############################################
+env MONGODB_HOSTNAME=
+env MONGODB_PORT=27017
+env MONGODB_USERNAME=
+env MONGODB_PASSWORD=
+env MONGODB_DATABASE=
+
+
+#############################################
+#                                           #
+# Default server port is 9020, this will    #
+# be overwritten if you chose HTTPS below   #
+#                                           #
+#############################################
+env USE_HTTPS=false
+env SERVER_PORT=9020
+
+
+#########################################################################
+#                                                                       #
+# MME REQUIRES HTTPS IF YOUR SERVER IS NOT PROXIED BEHIND HTTPS.        #
+# You can activate HTTPS by,                                            #
+#                                                                       #
+# 1. UNCOMMENT ALL the following                                        #
+# 2. SET variable USE_HTTPS	to be true                              #
+#                                                                       #
+# You can override sever port here                                      #
+#                                                                       #
+#########################################################################
+#env USE_HTTPS=true
+#env SERVER_PORT=8443
+#env HTTPS_SSL_KEY_STORE=matchbox_keystore
+#env HTTPS_SSL_KEY_STORE_PASSWORD=changeit
+#env HTTPS_SSL_KEY_PASSWORD=temp_ks_pwd__change_me!
+
+#RUN keytool -genkey -noprompt \
+#					-alias matchbox \
+#					-dname "CN=, OU=, O=, L=, S=, C=" \
+#					-keystore $HTTPS_SSL_KEY_STORE \
+#					-storepass $HTTPS_SSL_KEY_STORE_PASSWORD \
+#					-keypass $HTTPS_SSL_KEY_PASSWORD
+					
+
+#############################################
+#                                           #
+# This port is exposed by container         #
+#                                           #
+#############################################
+EXPOSE $SERVER_PORT
+
+
+###########################################################################
+# IN PRODUCTION, PLEASE MANAGE THESE FILES EXTREMELY CAREFULLY AS THEY	  #
+# WILL CONTAIN SENSITIVE ACCESS TO YOUR, AND OTHER NODES!                 #
+#                                           				  #
+# These files govern/contain,						  #
+#	1. Tokens that gives OTHER NODES, access to matchbox (config.xml) #
+#	2. Tokens that gives MATCHBOX, access to other nodes (nodes.json) #
+#                                           				  #
+###########################################################################
+ADD config.xml $MATCHBOX_DEPLOYMENT_CONFIG_DIR
+ADD nodes.json $MATCHBOX_DEPLOYMENT_CONFIG_DIR
+
+
+CMD ["/root/bin/entrypoint.sh"]

deploy/docker/with_data_in_container/README.md

@@ -0,0 +1,91 @@
+# <i>matchbox Docker build process (beta)</i>
+
+We are still in the process of designing a best practices build and deployment process using Docker and Kubernetes, so please consider this a work in progress. 
+
+Please be careful to not check in Docker files with private secure
+usernames, passwords, and tokens etc. 
+
+Please also remember to change any default passwords built into system before production!
+
+## To use this docker build, you will need:
+
+1. Docker (https://www.docker.com/)
+	
+
+## Build process:
+
+1. First update the Dockerfile empty fields at the bottom,
+	
+	For example:
+	
+	```
+		env MONGODB_HOSTNAME=192.168.1.4
+		env MONGODB_PORT=27017
+		env MONGODB_USERNAME=username
+		env MONGODB_PASSWORD=pwd
+		env MONGODB_DATABASE=mme_primary
+	```
+	
+	If you want to serve as HTTPS, please uncomment following by removing "#" and populate as needed. You can ignore otherwise
+	
+	```
+	env USE_HTTPS=true
+	env SERVER_PORT=8443
+	env HTTPS_SSL_KEY_STORE=matchbox_keystore
+	env HTTPS_SSL_KEY_STORE_PASSWORD=changeit
+	env HTTPS_SSL_KEY_PASSWORD=<temp_ks_pwd__change_me!>
+	
+	RUN keytool -genkey -noprompt \
+						-alias matchbox \
+						-dname "CN=, OU=, O=, L=, S=, C=" \
+						-keystore $HTTPS_SSL_KEY_STORE \
+						-storepass $HTTPS_SSL_KEY_STORE_PASSWORD \
+						-keypass $HTTPS_SSL_KEY_PASSWORD
+	```
+
+	
+2. In the deploy/docker directory there are two files that should be handled extra carefully in production given that they will contain tokens and access information for your instance and other nodes.
+	```
+	config.xml : this XML file is used to configure the token to give access to your matchbox instance. 
+	nodes,json : this JSON file contains tokens that give your matchbox instance access to other MME nodes
+	``` 
+	
+	Using guidance from the example data inside them, populate as needed. 
+	
+	Please remember to remove default values before production!
+	
+	Possibly use a secrets-file management system to keep fully populate files that can inserted in at deployment.
+	
+	
+3. Then, from the matchbox docker directory, do a build (should take 6-10mins max)
+	```
+		docker build -t matchbox-docimg .
+	```
+	
+4. Assuming,
+	
+	* And you have a MongoDB instance running and you have added its credentials and details to the Dockerfile before the build step, 
+
+
+	For example, if you are using the default HTTP settings and didn't change any port numbers:
+	```
+		docker run -ti -p 9020:9020 matchbox-docimg 
+	``` 
+	
+	OR
+	
+	For example, if you uncommented the HTTPS settings and didn't change any HTTPS port numbers:
+	```
+		docker run -ti -p 8443:8443 matchbox-docimg 
+	``` 
+
+
+6. You can test your instance with (make sure to adjust the URL "http://localhost:9020/patient/view" with the port you used),
+	
+	```
+		curl -X GET -H "X-Auth-Token: abcd" -H "Accept: application/vnd.ga4gh.matchmaker.v1.0+json" -H "Content-Type: application/x-www-form-urlencoded" http://localhost:9020/patient/view
+	```
+
+
+
+ 

deploy/docker/with_data_in_container/bashrc

@@ -0,0 +1,13 @@
+# shell
+export PS1="\h:\w]$ "
+
+export SHELL=/bin/bash
+
+export LS_OPTIONS='--color=auto'
+alias ll="ls -al"
+alias less='less -m -g -i--underline-special --SILENT'
+alias more='less'
+
+export TERM=xterm
+
+resize

deploy/docker/with_data_in_container/config.xml

@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<beans xmlns="http://www.springframework.org/schema/beans"
+       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+       xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
+
+   
+  <bean id="defaultAccessToken"
+      class="org.broadinstitute.macarthurlab.matchbox.entities.AuthorizedToken">
+      <constructor-arg type="java.lang.String" value="Default Access Token" />
+      <constructor-arg type="java.lang.String" value="abcd" />
+      <constructor-arg type="java.lang.String" value="Local Center name" />
+      <constructor-arg type="java.lang.String" value="[email protected]" />
+  </bean>
+   
+  <bean id="accessAuthorizedNode"
+      class="org.broadinstitute.macarthurlab.matchbox.authentication.AccessAuthorizedNode">
+      <property name="accessAuthorizedNodes">
+         <list>
+            <ref bean="defaultAccessToken"/>            
+         </list>
+      </property>
+  </bean>
+  
+
+</beans>

deploy/docker/with_data_in_container/entrypoint.sh

@@ -0,0 +1,39 @@
+#!/usr/bin/env bash
+
+set -x
+
+env
+
+cd /matchbox_deployment
+
+if $USE_HTTPS
+then
+	java -jar -Dallow.no-gene-in-common.matches=$ALLOW_NO_GENE_IN_COMMON_MATCHES \
+				-Dexomiser.data-directory=$EXOMISER_DATA_DIR  \
+				-Dspring.data.mongodb.host=$MONGODB_HOSTNAME  \
+				-Dspring.data.mongodb.port=$MONGODB_PORT \
+				-Dspring.data.mongodb.username=$MONGODB_USERNAME  \
+				-Dspring.data.mongodb.password=$MONGODB_PASSWORD  \
+				-Dspring.data.mongodb.database=$MONGODB_DATABASE \
+				-Dserver.port=$SERVER_PORT \
+				-Dserver.ssl.key-store=$HTTPS_SSL_KEY_STORE \
+				-Dserver.ssl.key-store-password=$HTTPS_SSL_KEY_STORE_PASSWORD \
+				-Dserver.ssl.key-password=$HTTPS_SSL_KEY_PASSWORD \
+				-Dexomiser.phenotype.data-version=$EXOMISER_PHENOTYPE_DATA_VERSION \
+				matchbox-0.1.0.jar &
+else
+	java -jar -Dallow.no-gene-in-common.matches=$ALLOW_NO_GENE_IN_COMMON_MATCHES \
+				-Dexomiser.data-directory=$EXOMISER_DATA_DIR  \
+				-Dspring.data.mongodb.host=$MONGODB_HOSTNAME  \
+				-Dspring.data.mongodb.port=$MONGODB_PORT \
+				-Dspring.data.mongodb.username=$MONGODB_USERNAME  \
+				-Dspring.data.mongodb.password=$MONGODB_PASSWORD  \
+				-Dspring.data.mongodb.database=$MONGODB_DATABASE \
+				-Dserver.port=$SERVER_PORT \
+				-Dexomiser.phenotype.data-version=$EXOMISER_PHENOTYPE_DATA_VERSION \
+				matchbox-0.1.0.jar &
+fi
+
+
+
+sleep 10000000000

deploy/docker/with_data_in_container/nodes.json

@@ -0,0 +1,17 @@
+{
+	"nodes":[{
+		"name": "test-ref-server",
+		"token" : "abcd",
+		"url" : "https://localhost:8443/match",
+		"contentTypeHeader" : "application/vnd.ga4gh.matchmaker.v1.0+json",
+		"contentLanguage" : "en-US",
+		"acceptHeader" : "application/vnd.ga4gh.matchmaker.v1.0+json",
+		"selfSignedCertificate": true
+		}]
+}
+
+
+
+
+
+

deploy/docker/with_data_in_container/settings.xml

@@ -0,0 +1,3 @@
+<settings>
+    <localRepository>${user.home}/.m3/repository</localRepository>
+</settings>