Open markwhiting opened 3 months ago
@amirrr — you might have thoughts on the setup for this, feel free to add notes, but I think perhaps the students can help with executing if that works. Further, just wondering, can we adhere to this by adding an IP whitelist on the DB that includes the observable IP? That might simplify things instead of implementing the API
@amirrr you had a few thoughts last time we talked about this. I think we were saying we could shift everything to a common API so that the internal processes and external data access were relatively uniform.
Can you jot down more about your thoughts on that? Is there anything else to decide about it or can we start implementing it?
@amirrr you had a few thoughts last time we talked about this. I think we were saying we could shift everything to a common API so that the internal processes and external data access were relatively uniform.
Can you jot down more about your thoughts on that? Is there anything else to decide about it or can we start implementing it?
Certainly doable. The easiest way would be to leverage our current implementation of our api service for the statements and survey to expose some of the data to secure endpoint for example commonsense.seas.penn.edu/api/data/{whatever}
We just have to configure our database with user roles and the rest could work out of the box.
OK, and then would observable just get a token or something, so it can access the API?
Yeah we currently support json web tokens so we can have a token for observable that doesn't expire.
Current barriers to entry:
Tasks:
Done a lot of the learning, implementing a potential solution in the next week or two for evaluation.
One desire is to try and complete all the setup using terraform, whenever possible.
Getting access permissions is a blocker, this may be resolved now by @amirrr adding permissions for @acao22. Works on @acao22's personal AWS account.
@markwhiting can also give access to stuff. Also can give permission to adjust permissions.
@markwhiting may need to give @acao22 more direct access to the DB?
Message from CETs is something like:
There's more information in the email that includes ARNs and IPs, which we don't need here. As far as I know, this impacts all collections on the main DB for this platform.
This is done when: