1 30 2023 Tech Team Report - QualitativeDataRepository/TechnicalTeam GitHub Wiki

1-30-2023

Logged Tasks

                            Date             Task Hours (Main) Hours (EOLS) Hours (PII) Hours (QDAS)
23-Jan-2023 Reporting, meeting 1
24-Jan-2023 Check annorep on prod, provide AR server deploy instructions, investigate OIDC/write doc to share with HEAL 3
25-Jan-2023 Investigate docker on dev, reinstall python 3.9, docker, install Keycloak via docker, initial test for login; AnnoRep - investigate/fix null pointer errors on new sample docs, HEAL - accept changes/answer comments in doc. 3 2
26-Jan-2023 AnnoRep #12 add para break in comments, deploy to dev/stage, investigate/fix Keycloak oidc json, test login, investigate Google OIDC and Keycloak federation, create google project/Oauth consent screen. 3 2
27-Jan-2023 Keycloak - investigate/figure out reverse proxy config, setup google Oauth creds, login for test users via Keycloak, test. 6

Operations

  • Added AnnoRep server install instructions to the How to Restart Services doc
  • Verified prod has AnnoRep v0.0.2 (testing is being done on v0.0.4)

AnnoRep

  • Fixed null pointer exceptions found on new sample docs
  • Fixed #12/missing paragraph breaks in comments
  • Deployed latest on dev/stage

SSO/HEAL

  • Drafted/edited short SSO with OIDC doc for use with HEAL
  • Worked through problems installing the latest docker on dev - reinstalled python 3.9, docker
  • Installed Keycloak v16 on dev, worked through config issues
  • Configured Dataverse to use OIDC/Keycloak (via the /loginpage.xhtml page, no attempt to implement SSO yet)
  • Verified login via Test user in Keycloak. (Other users can be added in Keycloak UI)
  • Investigated/configured Google OIDC as a provider in Keycloak (in test mode - only people in our list of <100 users can login)
  • Worked through reverse proxy configuration of apache2/Keycloak to allow Google use in test mode.

Discussion

  • SSO update work goes on NSF grant?

Plans

  • SSO - continue to explore/build OIDC options
    • Investigate OIDC with API work
    • Try OIDC with Drupal
    • Investigate Keycloak to LDAP connection for current users
    • Investigate SSO options
    • Investigate ways to simplify user interface (multiple clicks to get through Keycloak)
  • Matomo - help with transition from Google
  • AnnoRep - explore round-trip
  • Dataverse
    • Make PR for guestbook adding datasetversion fix, deploy to stage
    • Continue towards guestbook at request based on ADA's original work
    • Popup info accessibility - IQSS likes the recommendations from the source I linked to, so this can be implemented along those lines.
  • Drupal - v10 - review compatibility and start updates.
  • QDAS Previewer
    • Updates per request
    • Investigate writing aux file/previewing lower-sensitivity version and/or other write options
  • TBD: FRDR Security