3 14 2022 Tech Team Report - QualitativeDataRepository/TechnicalTeam GitHub Wiki

3-14-2022

Logged Tasks

                            Date             Task Hours (Main) Hours (EOLS) Hours (PII) Hours (QDAS)
7-Mar-2022 Reporting, meeting, investigate/fix Anno-rep front end config issue on stage/prod 1 1
8-Mar-2022 Check slack errors on stage, test poi/tika sec updates on dev 1
9-Mar-2022 Investigated stage log after slack critical timeout, restarted payara 1
10-Mar-2022 Create 2nd acc. PR, investigate/document use of excluded subjects on prod, update schema_metatag, sitemap modules, exclude ssologout route from check_logged_in 4
11-Mar-2022 Annorep - investigate issues, add imagio libs, try default options, explore bold, italics, hyperlinks in notes 4

Drupal

  • Updated schema_metatag (removed manual application of now-merged patch)and sitemap modules
  • Updated the check_logged_in handling to allow the QDR SSO logout endpoint to not be checked - hopefully addresses occasional message about cookies and login problems on dev.

AnnoRep

  • Investigated/fixed config issues on stage/dev
  • Started investigating github issues re: fonts, images, rich-text in notes. Verified that including fonts in docs is a work-around for getting the right fonts, found how to retrieve bold/italic/hyperlink info in notes

Operations

  • Investigated outages on stage - looks like it is getting scanned now that it is open - could change robots.txt at least. There are also log messages that S3 calls are failing - have not yet figured out whether these are from old datasets or the copied prod datasets (where attempts to write new thumbnails etc. would fail) or some failure on new/test datasets. Restarted payara on stage.
  • Investigated use of excluded subject on prod - posted questions on slack re: whether to keep existing uses or not

Dataverse

  • Created second PR with accessibility issues (mostly from Wave) - when that is merged, the community version will have all the applicable fixes from QDR.
  • Updated tika and poi on dev to get security fixes. (FWIW: The latest now include log4jv2 (fully patched version) rather than log4jv1, which may cause concern/discussion at IQSS before these are merged there.)

Discussion

  • Choices for handling excluded subjects (see slack)
  • Change robots.txt on stage to stop friendly scanning?

Plans

  • AnnoRep - continue to explore/fix docx/pdf github issues
  • Ops
    • Fix Subject choices
  • Dataverse
    • Deploy multi-license ~v5.10 for testing on stage if/when it looks OK on dev (i.e. is something OK for AnnoRep testers working on stage)
    • Popup info accessibility - IQSS likes the recommendations from the source I linked to, so this can be implemented along those lines.
    • QDAS planning/design/prototyping
      • Switch previewer to zipped mimetype
      • Add error handling for format variations
      • Assess whether zip access is enough/project/other files need to be cached as aux files, etc.
    • Still want to investigate the guestbook responses re version info not being included.
  • TBD: FRDR Security
  • Other tasks as discussed in strategic planning