REST API cofiguration

The appsettings.json file is the main configuration file for the HEAppE Middleware. It contains the configuration for the database, logging, and other services. The file is located in the app directory of the HEAppE Middleware.

The file is in JSON format and contains the following configuration blocks:

ConnectionStrings

This configuration block contains the connection strings for the database and logging services. The connection strings are used to connect to the database and logging services. The connection strings are stored in the appsettings.json file and are used by the HEAppE Middleware to connect to the database and logging services.

Following connection string can be used, but <mssql_password> needs to be replaced the with the password. Password must meet the password policy of the Microsoft SQL Server.

"ConnectionStrings": {
    "MiddlewareContext": "Server=mssql;Database=heappe;User=SA;Password=<mssql_password>;TrustServerCertificate=true;",
    "Logging": ""
}

DatabaseMigrationSettings

This configuration block allows the setup of database migration settings.
  • AutoMigrateDatabase - Automatically migrate the database when the HEAppE Middleware starts

"DatabaseMigrationSettings": {
  "AutoMigrateDatabase": true
}

BackGroundThreadSettings

This configuration block allows time-interval definition (in seconds), where each background thread is activated.
  • GetAllJobsInformationCheck - Update job status from batch schedulers

  • CloseConnectionToFinishedJobsCheck - Close tunnel connection for finished jobs

  • ClusterAccountRotationJobCheck - Check if Middleware is able to submit job (ClusterAccountRotation = true)

  • FileTransferKeyRemovalCheck - Removal FileTransfer temporary added keys

"BackGroundThreadSettings": {
    "GetAllJobsInformationCheck": 30,
    "CloseConnectionToFinishedJobsCheck": 30,
    "ClusterAccountRotationJobCheck": 30,
    "FileTransferKeyRemovalCheck": 10800
}

BusinessLogicSettings

This setting block allows the HEAppE business logic configurations.
  • ClusterAccountRotation - Rotation of cluster service accounts

  • GeneratedFileTransferKeyLimitPerJob - Maximal active FileTransfer temporary keys per job

  • ValidityOfTemporaryTransferKeysInHours - Validity of FileTransfer temporary keys

  • SessionExpirationInSeconds - User session expiration

  • HTTPRequestConnectionTimeoutInSeconds - HTTP requests timeout

"BusinessLogicSettings": {
    "ClusterAccountRotation": false,
    "GeneratedFileTransferKeyLimitPerJob": 5,
    "ValidityOfTemporaryTransferKeysInHours": 24,
    "SessionExpirationInSeconds": 900,
    "HTTPRequestConnectionTimeoutInSeconds": 10
}

CertificateGeneratorSettings

These configurations allow the setup of encryption ciphers (file transfer temporary key). You can define path, in which keys will be generated and stored, keys prefix and type. You can choose type from several options:

  • RSA 3072

  • RSA 4096

  • ECDSA 256

  • ECDSA 521

"CertificateGeneratorSettings": {
    "GeneratedKeysDirectory": "/opt/heappe/keys/",
    "GeneratedKeyPrefix": "key",
    "CipherSettings": {
        "TypeName": "RSA",
        "Size": 4096
    }
}

HPCConnectionFrameworkSettings

The following two blocks present the configuration of the HEAppE HPC connection framework (for HPC as well as Local Cluster).

"HPCConnectionFrameworkSettings": {
    "GenericCommandKeyParameter": "#HEAPPE_PARAM",
    "JobArrayDbDelimiter": "<JOB_ARRAY_ITERATION>",
    "TunnelSettings": {
        "LocalhostName": "127.0.0.1",
        "MinLocalPort": 4000,
        "MaxLocalPort": 4500
    },
    "CommandScriptsPathSettings": {
        "AddFiletransferKeyCmdPath": "~/.key_scripts/add_key.sh",
        "RemoveFiletransferKeyCmdPath": "~/.key_scripts/remove_key.sh",
        "CreateJobDirectoryCmdPath": "~/.key_scripts/create_job_directory.sh",
        "ExecuteCmdPath": "~/.key_scripts/run_command.sh",
        "ExecuteBackgroundCmdPath": "~/.key_scripts/run_background_command.sh",
        "CopyDataFromTempCmdPath": "~/.key_scripts/copy_data_from_temp.sh",
        "CopyDataToTempCmdPath": "~/.key_scripts/copy_data_to_temp.sh"
    },
    "ClustersConnectionPoolSettings":{
        "ConnectionPoolCleaningInterval": 60,
        "ConnectionPoolMaxUnusedInterval": 1800
    },
    "ScriptsSettings": {
        "ClusterScriptsRepository": "https://github.com/It4innovations/HEAppE-scripts.git",
        "KeyScriptsDirectoryInRepository": "HEAppE-scripts/HPC/.key_scripts/",
        "SubExecutionsPath": "HEAppE/Executions",
        "SubScriptsPath": "HEAppE/Scripts",
        "ScriptsBasePath": "~/.key_scripts",
        "CommandScriptsPathSettings": {
            "AddFiletransferKeyCmdScriptName": "add_key.sh",
            "RemoveFiletransferKeyCmdScriptName": "remove_key.sh",
            "CreateJobDirectoryCmdScriptName": "create_job_directory.sh",
            "ExecuteCmdScriptName": "run_command.sh",
            "CopyDataFromTempCmdScriptName": "copy_data_from_temp.sh",
            "CopyDataToTempCmdScriptName": "copy_data_to_temp.sh"
        },
        "LinuxLocalCommandScriptPathSettings": {
            "ScriptsBasePath": "~/.local_hpc_scripts",
            "PrepareJobDirCmdScriptName": "prepare_job_dir.sh",
            "RunLocalCmdScriptName": "run_local.sh",
            "GetJobInfoCmdScriptName": "get_job_info.sh",
            "CountJobsCmdScriptName": "count_jobs.sh",
            "CancelJobCmdScriptName": "cancel_job.sh"
        }
    }
}

ExternalAuthenticationSettings

This configuration block allows the setup of external authentication services. You can define the URL of the external authentication service, the URL of the external authentication service’s token endpoint, and the client ID and client secret of the external authentication service.

  "ExternalAuthenticationSettings": {
  "BaseUrl": "",
  "Protocol": "openid-connect",
  "RealmName": "",
  "ClientId": "",
  "SecretId": "",
  "ConnectionTimeout": 15,
  "AllowedClientIds": [],
  "RoleMapping": {
    "prj_list": "Maintainer",
    "prj_read": "Reporter",
    "prj_write": "Submitter"
  },
  "Projects":
  [
    {
      "UUID": "",
      "Name": "",
      "HEAppEGroupName": "OpenIDGroup"
    }
  ],
  "HEAppEUserPrefix": "Open-Id_",
  "LexisAuthenticationConfiguration":
  {
    "BaseAddress": "",
    "EndpointPrefix": "userorg",
    "ExtendedUserInfoEndpoint": "/api/UserInfo/Extended",
    "HEAppEGroupNamePrefix": "Lexis_",
    "HEAppEUserPrefix": "Lexis_<USERNAME>",
    "RoleMapping":
    {
      "Submitter": "heappe_exec"
    }
  }
},
"OpenStackSettings": {
  "IdentityPort": 5000,
  "ConnectionTimeout": 15,
  "OpenStackVersion": 3,
  "OpenStackSessionExpiration": 1800
}