Presentation is loading. Please wait.

Presentation is loading. Please wait.

FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases.

Published byShayla Markland Modified over 9 years ago

Similar presentations

Presentation on theme: "FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases."— Presentation transcript:

1 FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases Tony Calanducci INFN Catania 6th EELA Tutorial for Users and SysAdmin Madrid, 16-20th October 2006

2 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Contents Background and Motivation for AMGA Interface, Architecture and Implementation Metadata Replication on AMGA Deployment Examples GILDA Use cases

3 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Metadata on the GRID Metadata is data about data On the Grid: information about files –Describe files –Locate files based on their contents But also simplified DB access on the Grid –Many Grid applications need structured data –Many applications require only simple schemas  Can be modelled as metadata –Main advantage: better integration with the Grid environment  Metadata Service is a Grid component  Grid security  Hide DB heterogeneity

4 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 ARDA/gLite Metadata Interface 2004 - ARDA evaluated existing Metadata Services from HEP experiments –AMI (ATLAS), RefDB (CMS), Alien Metadata Catalogue (ALICE) –Similar goals, similar concepts –Each designed for a particular application domain  Reuse outside intended domain difficult –Several technical limitations: large answers, scalability, speed, lack of flexibility ARDA proposed an interface for Metadata access on the GRID –Based on requirements of LHC experiments –But generic - not bound to a particular application domain –Designed jointly with the gLite/EGEE team –Incorporates feedback from GridPP Adopted as the official EGEE Metadata Interface –Endorsed by PTF (Project Technical Forum of EGEE)

5 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 AMGA Implementation ARDA developed an implementation of PTF interface –AMGA – ARDA Metadata Grid Application Began as prototype to evaluate the Metadata Interface –Evaluated by community since the beginning:  LHCb and Ganga were early testers (more on this later) –Matured quickly thanks to users feedback Now part of gLite middleware –Official Metadata Service for EGEE –First release with gLite 1.5 –Planned for inclusion on gLite 3.1 (not present on gLite 3.0) –Also available as standalone component Expanding user community –HEP, Biomed, UNOSAT…

6 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Metadata Concepts Some Concepts –Metadata - List of attributes associated with entries –Attribute – key/value pair with type information  Type – The type (int, float, string,…)  Name/Key – The name of the attribute  Value - Value of an entry's attribute –Schema – A set of attributes –Collection – A set of entries associated with a schema –Think of schemas as tables, attributes as columns, entries as rows

7 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 AMGA DEMO with AMGA Web Interface

8 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 AMGA Features Dynamic Schemas –Schemas can be modified at runtime by client  Create, delete schemas  Add, remove attributes Metadata organised as an hierarchy –Collections can contain sub-collections –Analogy to file system:  Collection  Directory; Entry  File Flexible Queries –SQL-like query language –Joins between schemas –Example selectattr /gLibrary:FileName /gLAudio:Author /gLAudio:Album '/gLibrary:FILE=/gLAudio:FILE and like(/gLibrary:FileName, “%.mp3")‘

9 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Security Unix style permissions ACLs – Per-collection or per-entry. Secure connections – SSL Client Authentication based on –Username/password –General X509 certificates –Grid-proxy certificates Access control via a Virtual Organization Management System (VOMS):

10 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 AMGA Implementation C++ multiprocess server –Runs on any Linux flavour Backends –Oracle, MySQL, PostgreSQL, SQLite Two frontends –TCP Streaming  High performance  Client API for C++, Java, Python, Perl, Ruby –SOAP  Interoperability Also implemented as standalone Python library –Data stored on filesystem

11 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Architecture TCP-Streaming frontend Designed for scalability –Asynchronous operation  Reading from DB and sending data to client –Response sent to client in chunks  No limit on the maximum response size Example: TCP Streaming –Text based protocol (like SMTP, POP3,…) –Response streamed to client Client: listattr entry Server: 0 entry value1 value2 …

12 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Accessing AMGA TCP Streaming Front-end –mdcli & mdclient and C++ API (md_cli.h, MD_Client.h) –Java Client API and command line mdjavaclient.sh & mdjavacli.sh (also under Windows !!) –Python Client API –AMGA Web Interface ---NEW  Developed totally by the GILDA team – INFN CT  Based on JAVA AMGA Standard APIs  Web Application using standard as JSP Custom Tags, Servlet SOAP Frontend (WSDL) –C++ gSOAP –AXIS (Java) –ZSI (Python)

13 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 AMGA Web Interface

14 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Metadata Schema Management

15 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Entry Management

16 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 ACL Management

17 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 QBE like Query Engine

18 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Query Result

19 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 AMGA WI Deployment Scenario AMGA WI could be deployed on a dedicated server. This can be located inside the GRID network or outside. Currently the GILDA AMGA Server machine also hosts the web interface. Users access to the catalog towards the functionalities provided by the web interface. User uses a common Web Browser.

20 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Metadata Replication Motivation –Scalability – Support hundreds/thousands of concurrent users –Geographical distribution – Hide network latency –Reliability – No single point of failure –DB Independent replication – Heterogeneous DB systems –Disconnected computing – Off-line access (laptops) Architecture –Asynchronous replication –Master-slave – Writes only allowed on the master –Replication at the application level  Replicate Metadata commands, not SQL → DB independence –Partial replication – supports replication of only sub-trees of the metadata hierarchy

21 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Metadata Replication Full replication Partial replication FederationProxy Some use cases

22 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Early adopters of AMGA LHCb-bookkeeping –Migrated bookkeeping metadata to ARDA prototype  20M entries, 15 GB  Large amount of static metadata –Feedback valuable in improving interface and fixing bugs –AMGA showing good scalability Ganga –Job management system  Developed jointly by Atlas and LHCb –Uses AMGA for storing information about job status  Small amount of highly dynamic metadata

23 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Biomed Medical Data Manager – MDM –Store and access medical images and associated metadata on the Grid –Built on top of gLite 1.5 data management system –Demonstrated at last EGEE conference (October 05, Pisa) Strong security requirements –Patient data is sensitive –Data must be encrypted –Metadata access must be restricted to authorized users AMGA used as metadata server –Demonstrates authentication and encrypted access –Used as a simplified DB More details at –https://uimon.cern.ch/twiki/bin/view/EGEE/DMEncryptedStorage

24 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Conclusion AMGA – Metadata Service of gLite –Part of gLite (but still not certificed in gLite 3.0. it will be done with 3.1 release) –Useful for simplified DB access –Integrated on the Grid environment (Security) Replication/Federation features Tests show good performance/scalability Already deployed by several Grid Applications –LHCb, ATLAS, Biomed, … –AMGA WI, gMOD, gLibrary (it follows) AMGA Web Site http://cern.ch/amga /

25 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 GILDA Use cases gLibrary AMGA for Geospatial metadata gMOD

26 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary Motivations Huge amounts of data can be saved on SEs (did we forget about the existence of Data Grids?) But how can we easily find later a file that we need? –(if you have good memory, its GUID could be a solution ) –File Catalogues just let us to arrange files in folders and subfolders, no way to query on their contents –Metadata Catalogues are a possible solution, but not always “affordable” especially for non expert users (powerful but complex to use) Our solution: a higher level application built on top of many gLite grid services: a Metadata Catalogue + File Catalogues + Storage Elements  gLibrary Requirements: easy to use, fast, secure, extensible

27 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary goals Attempt to create a Multimedia Management System on the Grid –Examples of Multimedia Contents handled by gLibrary:  Images  Movies  Audio Files  Office Documents (Powerpoint, Word, Excel, OpenOffice)  E-Mails, PDFs, HTMLs  Customized versions of well-know document type (ex. EGEE PPTs)  …. Keep track and organize in a uniform way all the additional details (metadata) of files saved in Storage Elements and registered in File Catalogues Provide users an easy way to locate and retrieve files based on their contents

28 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Usage scenarios Example 1: –Locate all theoretical (PPTType) PowerPoint (Type) presentations about FireMan (Keywords) given in 2005 (Date) by Uncle Sam (Speaker); –Find all the movies (Type) in which Julia Roberts (Cast) performed together with Hugh Grant (Cast) produced in USA (Country) in 2004 (ReleaseDate); or all the acoustic (Genre) mp3 (Format) audio files (Type) of Alanis Morissette (Singer) that last more than 3 minutes (Runtime). Example 2: –A doctor is looking for brain (keyword) DICOM (Type) images of male (Gender) patients older than 65 (Age). Example 3: –A job can behave as a storage crawler: it scans pre-existing files in Storage Elements to extract relevant metadata that will be published on gLibrary for further data mining.

29 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary prototype implementation Files are saved on SEs and registered into file catalogues (LFC and/or FiReMan) The AMGA Metadata Catalogue is used to archive and organize metadata and to answer users’ queries. gLibrary is built using the following AMGA collections: –/gLibrary contains generic metadata for each entry –/gLAudio, /gLImage, /gLVideo, /gLPPT, /EGEEPPT, /gLDoc, … are examples of collections of “additional features” (shown later) –/gLTypes  keeps the associations between document types and the names of the collection that contains the “additional features”  is used by gLibrary to find out where it has to look when new document types are added into the system (extensibility) –/gLKeys is used to store Decryption Keys

30 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example of entries Collection/gLibrary Entry Names Attributes FileNamePathNameTypeSubmitter 4ffaffc8-26e7-4826-b460-3d5bf08081a4 DedicatoAte.mp3/grid/gilda/calanducciAudioTony Calanducci 00454dca-a269-4b93-8a45-c4012af05600 ardizzonelarocca_is_231005.ppt.gpg/grid/gilda/calanducci/ EGEE EGEEDOCTony Calanducci /gLibrary (continuum) Attributes SubmissionDateEncryptionDescriptionKeywordsCreationDate 2006-01-05 00:00:00falseCanzone delle vibrazioni che ha ricevuto un enorme successo tra i teenagers nel 2003 Vibrazioni2004-02-05 00:00:00 2005-01-05 16:44:22truegLite Information SystemR-GMA, RGMA, BDII, IS2005-10-05 23:40

31 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example of gLibrary collections Collection/gLTypes Entry names Attributes Path (refers to a collection) Audio /gLAudio Image /gLImage Video /gLVideo Documents /gLDOC PowerPoint /gLPPT EGEEDOC /EGEEPPT Collection/EGEEPPT Entry names Attributes TitleRuntimeAuthorTypeDateEventSpeakerTopic 00454dca-a269- 4b93-8a45- c4012af05600 Information Systems 00:30:00Valeria Ardizzione, Giuseppe La Rocca Theorical2005-10-234 th EGEE Conferen ce Giuseppe La Rocca, Valeria Ardizzone R-GMA, BDII Collection/gLAudio Entry names Attributes SongTitleDurationAlbumGenreSingerFormat 4ffaffc8-26e7-4826- b460-3d5bf08081a4 Dedicato A Te00:03:27Dedicato A TePopLe VibrazioniMP3 Collection/gLKeys Entry names Attributes Passphrase 00454dca-a269-4b93-8a45- c4012af05600 ardizzo “additional features”

32 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary Security User Requirements: –a valid proxy with VOMS extensions –VOMS Role and Group needed to be recognized by gLibrary as a contents manager. 3 kinds of users: –gLibraryManager: (s)he can create new content type and allows a generic VO user to become gLibrarySubmitter –gLibrarySubmitters: they can add new entries and define access rights on the entries they create.  Fine-grained permission (reading, writing, listing, decrypting) settings on each entry: whole VO members, VO groups, list of DNs –generic VO users: browse and make queries (on entries they have access to) Basic level of cryptography: –New files saved on SEs can be encrypted beforehand with a symmetric passphrase that will be saved in /gLKeys. Only selected users (that have a specific DN in the subject of their VOMS proxy) can access the passphrase and decrypt the file.

33 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary Authorization Query> acl_show /gLibrary/ >> gLibraryManager rwx >> gLibraryManager:glibsubmitters rwx >> gilda:users rx Query> acl_show /gLAudio >> gLibraryManager rwx >> gLibraryManager:glibsubmitters rwx >> gilda:users rx Query> acl_show /gLTypes >> gLibraryManager rwx >> gLibraryManager:glibsubmitters rx >> gilda:users rx Query> whoami >> gLibrarySubmitter Query> acl_show /gLKeys/gildateam >> gLibrarySubmitter rwx >> gLibrarySubmitter:gildateam rx Query> grp_show gildateam >> tony >> valeria >> giuseppe >> emidio Query> user_listcred tony >> >> 'C = IT, O = GILDA, OU = Personal Certificate, L = INFN Catania, CN = Tony Calanducci, emailAddress = tony.calanducci@ct.infn.it'

34 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Security example (I) Connecting to amga.ct.infn.it:8822... ARDA Metadata Server 1.1.0 Query> whoami >> tony Query> user_listcred tony >> 'C = IT, O = GILDA, OU = Personal Certificate, L = INFN Catania, CN = Tony Calanducci, emailAddress = tony.calanducci@ct.infn.it‘tony.calanducci@ct.infn.it Query> grp_member >> gilda:users >> gLibraryManager:glibrarysubmitters Query> addentry /gLibrary/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a FileName VOMS_server_Installation.ppt.gpg PathName /grid/gilda/calanducci/EGEE Type EGEEDOC Submitter 'Tony Calanducci' SubmissionDate '2006-01-07 18:44' DecryptKeyDir '/DLKeys/gildateam' Description 'VOMS Server installation tutorial done in Venezuela' Keywords 'VOMS Server' CreationDate '2005-10-08 18:28‘ Query> acl_add /gLibrary/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a gLibraryManager:glibrarysubmitters rwx Query> acl_show /gLibrary/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a >> tony rwxr-x >> gLibraryManager:glibrarysubmitters rwx

35 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Security example (II) Query> dir /gLibrary >> /gLibrary/00454dca-a269-4b93-8a45-c4012af05600 >> entry >> /gLibrary/abd52d35-1bee-4de9-b234-a9abd920307e >> entry >> /gLibrary/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a >> entry Let’s logout and login again using a VOMS proxy with just VO Gilda membership (No Role or group) ARDA Metadata Server 1.1.0 Query> whoami >> gilda Query> grp_member >> gilda:users Query> dir /gLibrary >> /gLibrary/00454dca-a269-4b93-8a45-c4012af05600 >> entry Query> acl_show /gLibrary/00454dca-a269-4b93-8a45-c4012af05600 >> gLibraryManager rwxr-x >> gilda:users rx The entry previously created does not even appear to non authorized users

36 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example: EGEE PPT submission $ gpg -c VOMS_Server_Installation.ppt Enter Passphrase: ******* $ ls VOMS_Server_Installation.ppt* VOMS_Server_Installation.ppt VOMS_Server_Installation.ppt.gpg Log into your UI and locate the file you want to upload to a SE. The use GPG (as an example) to encrypt it using a symmetric passphrase: Upload the encrypted file to a SE $ lcg-cr -v --vo gilda -d grid009.ct.infn.it -l lfn:/grid/gilda/calanducci/EGEE/VOMS_server_Installation.ppt.gpg file://$PWD/VOMS_Server_Installation.ppt.gpg Using grid catalog type: lfc Source URL: file:/home/tcaland/DLibrary Docs/EGEEPPT/VOMS_Server_Installation.ppt.gpg File size: 657042 VO name: gilda Destination specified: grid009.ct.infn.it Destination URL for copy: gsiftp://grid009.ct.infn.it/flatfiles/SE00/gilda/generated/2006- 01-07/file24151089-8bf2-499a-9ca0-1b0120f1ed69 Alias registered in Catalog: lfn:/grid/gilda/calanducci/EGEE/VOMS_server_Installation.ppt.gpg 0 bytes 0.00 KB/sec avg 0.00 KB/sec inst Transfer took 4130 ms Destination URL registered in Catalog: sfn://grid009.ct.infn.it/flatfiles/SE00/gilda/generated/2006-01-07/file24151089-8bf2-499a- 9ca0-1b0120f1ed69 guid:1f6e9ac6-5c86-4599-b03b-560e0e7ea38a

37 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example: EGEE PPT submission (II) Initialize your VOMS proxy asking for LibrarySubmitter Role $ voms-proxy-init --voms gilda:/gilda/Role=gLibrarySubmitter $ voms-proxy-info -fqan | grep gLibrarySubmitter /gilda/Role=gLibrarySubmitter/Capability=NULL Edit your.mdclient.config setting Login=gilda:/gilda/Role^=LibrarySubmitter Log into AMGA using mdclient command line tool $ mdclient Connecting to wn1-test.ct.infn.it:8899... ARDA Metadata Server 1.0.0 Query> whoami >> gLibrarySubmitter

38 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example: EGEE PPT submission (III) Create a new entry inside /DLibrary collection and one with the related “special features” into /EGEEPPT using the GUID obtained by lcg-cr as entry name Query> addentry /gLibrary/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a FileName VOMS_server_Installation.ppt.gpg PathName /grid/gilda/calanducci/EGEE Type EGEEDOC Submitter 'Tony Calanducci' SubmissionDate '2006-01-07 18:44' DecryptKeyDir '/gLKeys/gildateam' Description 'VOMS Server installation tutorial done in Venezuela' Keywords 'VOMS Server' CreationDate '2005-10-08 18:28‘ Query> addentry /EGEEPPT/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a Title 'Installing a gLite VOMS Server' Runtime '01:30:00' Author 'ziggy, Giorgio' Type 'Admin, Installation' Date '2005-11-21 11:00' Event 'First Latin American Workshop for Grid Administrators' Speaker 'Emidio Giorgio' Topic 'VOMS‘ Query> addentry /gLKeys/gildateam/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a Passphrase 'EGEE2006‘ Query> acl_show /gLKeys/gildateam >> gLibrarySubmitter rwx >> gLibrarySubmitter:gildateam rx Query> grp_show gildateam >> tony >> valeria >> giuseppe >> emidio Add the passphrase to the collection with ACLs listing people you want to give access to

39 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example: gLibrary queries Initialize your VOMS proxy asking to be member of the gilda VO Edit your.mdclient.config setting Login=NULL (user will be retrieved from your proxy extensions) Log into AMGA $ voms-proxy-init --voms gilda $ voms-proxy-info -fqan /gilda/Role=NULL/Capability=NULL $ grep Login.mdclient.config Login = NULL Suppose we want to look for all contents about VOMS Query> whoami >> gilda Query> selectattr /gLibrary:FILE /gLibrary:FileName /gLibrary:Type 'like(/gLibrary:Keywords, "%VOMS%")' >> 1f6e9ac6-5c86-4599-b03b-560e0e7ea38a >> VOMS_server_Installation.ppt.gpg >> EGEEDOC Query> getattr /gLTypes/EGEEDOC Path >> EGEEDOC >> /EGEEPPT Now let’s find out in which collection EGEEDOC attributes are stored

40 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example: gLibrary queries (II) Query> selectattr /gLibrary:FILE /gLibrary:FileName /gLibrary:Description /EGEEPPT:Author /EGEEPPT:Title /EGEEPPT:Event '/gLibrary:FILE=/EGEEPPT:FILE and like(/gLibrary:Keywords, "%VOMS%")‘ >> 1f6e9ac6-5c86-4599-b03b-560e0e7ea38a >> VOMS_server_Installation.ppt.gpg >> VOMS Server installation tutorial done in Venezuela >> ziggy, Giorgio >> Installing a gLite VOMS Server >> First Latin American Workshop for Grid Administrators Query> selectattr /gLibrary:FILE DecryptKeyDir 'FILE="1f6e9ac6-5c86-4599-b03b- 560e0e7ea38a"' >> 1f6e9ac6-5c86-4599-b03b-560e0e7ea38a >> /DLKeys/gildateam Query> getattr /gLKeys/gildateam/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a Passphrase Error 4: Permission denied But … Let’s see where the passphrase to decrypt the file is stored Because gilda is not a member of the gildateam group Now we can make a JOIN between the 2 tables to extract all the information we like

41 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example: gLibrary queries (III) Query> whoami >> tony Query> grp_member >> gilda:users >> gLibrarySubmitter:gildateam Query> getattr /gLKeys/gildateam/1f6e9ac6-5c86-4599-b03b-560e0e7ea38a Passphrase >> 1f6e9ac6-5c86-4599-b03b-560e0e7ea38a >> EGEE2006 Query> selectattr /gLibrary:FileName SubmissionDate Submitter /gLAudio:SongTitle Singer Duration Genre '/gLibrary:FILE=/gLAudio:FILE' >> DedicatoAte.mp3 >> 2006-01-05 00:00:00 >> Tony Calanducci >> Dedicato A Te >> Le Vibrazioni >> 00:03:27 >> Pop Set Login = tony into.mdclient.config. I will be authenticated correctly because my DN is mapped onto the AMGA user tony Yet another example of a query to look for Audio contents:

42 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary query examples Query> selectattr /gLibrary:FILE /gLibrary:FileName /gLibrary:Description /EGEEPPT:Author /EGEEPPT:Title /EGEEPPT:Event '/gLibrary:FILE=/EGEEPPT:FILE and like(/gLibrary:Keywords, "%VOMS%")‘ >> 1f6e9ac6-5c86-4599-b03b-560e0e7ea38a >> VOMS_server_Installation.ppt.gpg >> VOMS Server installation tutorial done in Venezuela >> ziggy, Giorgio >> Installing a gLite VOMS Server >> First Latin American Workshop for Grid Administrators Query> selectattr /gLibrary:FileName SubmissionDate Submitter /gLAudio:SongTitle Singer Duration Genre '/gLibrary:FILE=/gLAudio:FILE and /gLAudio:Format=“MP3”' >> DedicatoAte.mp3 >> 2006-01-05 00:00:00 >> Tony Calanducci >> Dedicato A Te >> Le Vibrazioni >> 00:03:27 >> Pop

43 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Implementation Heavy exploitation of AMGA features –support for VOMS proxy authentication –fine-grained authorization capabilities to set ACLs per entry basis to restrict access to the decryption keys.  Allow gLibrarySubmitters to control which users (based on DNs, VOMS Roles and Groups) can list and get the attributes’ value for the submitted entries GUI Front-ends (to achieve the “easy of use” promise): –Java SWING GUI to be run on a Grid UserInterface (JVM required) -- prototype is under way –Portlet based front-end will be deployed in GENIUSPHERE and made available for any other JSR168 compliant portlets cointainer  Both use AMGA Java APIs

44 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary Deployment scenario Authenticate with X509 Certificate VOMS Proxy with Group & Role Information AMGA Server PostGreSQL VOMS (gLibraryManager, gLibrarySubmitter, VO user) LFC (or Fireman) Catalog VOMS Proxy w/Role & Group SE VOMS Proxy UI

45 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary JAVA GUI screenshot Alpha Prototype

46 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gLibrary JAVA GUI Screenshot (II) Alpha Prototype

47 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Future planned improvements Splitting of big files among several SEs (different chunks stored in different SEs): –Increase the security of data: even if a chunk is intercepted it has no meaning alone. –Increase upload/download bandwidth –Possible implementation:  one more NumberOfChunks attribute in /gLibrary collection.  /gLChunks collection keeps track of FirstChunkGUID-Chunk#-ChunkGUID Automatic extraction and population of metadata for well known document types –use of GNU libextractor to extract metadata from HTML, PDF, PS, OLE2 (DOC, XLS, PPT), OpenOffice (sxw), StarOffice (sdw), DVI, MAN, MP3 (ID3v1 and ID3v2), OGG, WAV, EXIV2, JPEG, GIF, PNG, TIFF, DEB, RPM, TAR(.GZ), ZIP, ELF, REAL, RIFF (AVI), MPEG, QT and ASF –use of Lucenne algorithm for indexing document types containing text Evaluation of gLite Hydra Key Store to save decryptions keys

48 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Splitting Implementation UI SE EGEE_Movie.mpg EGEE_Movie.mpg_gpg_1 EGEE_Movie.mpg_gpg_2 EGEE_Movie_mpg_gpg_3 EGEE_Movie.mpg_gpg_4

49 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 AMGA for GIS Datatype Metadata AMGA Datatypes –Using the above datatypes you are sure that your metadata can be easily moved to all supported back-ends –If you do not care about DB portability, you can use, in principle, as entry attribute type ALL the datatypes supported by the back- end, even the more esoteric ones (PostgreSQL Network Address type or Geometric ones) We played a little bit with GIS Datatype offered by MySQL 5

50 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Example with ESR data Query> listattr /ESR/opera_nno >> Dataset >> varchar(30) >> File_Name >> varchar(50) >> Footprint >> multipolygon >> Lat >> numeric(8,2) >> Level >> varchar(5) >> Lon >> numeric(8,2) >> Orbit >> int(5) >> Proc_centre >> varchar(50) >> Proc_date >> timestamp >> Start_Date >> timestamp >> Stop_Date >> timestamp... We created a /ESR/opera_nno collection asking AMGA to use the MyISAM table engine We used insert command that evaluates all inserted values: insert sameEntryName Dataset "GOME" Level 2 Version "v1.1" Orbit 25421 File_Name "/grid/esr/gome/utv/2000/03/00301000.utv" Start_Date '"2000-02-29 00:01:00.0"' Stop_Date '"2000-02-29 00:58:00.0"' Footprint 'MPolyFromText("MULTIPOLYGON(((82.96 -59.12,75.95 -89.07,75.95 -89.07,76.46 - 94.77,76.84 -100.85,77.07 -107.21,77.13 -115.34,77.00 -121.80,76.72 - 128.08,76.30 -134.03,75.74 -139.59,75.07 -144.70,74.30 -149.36,80.26 - 179.07,80.26 -179.07,81.52 -174.78,82.71 -169.12,83.81 -161.42,84.76 - 150.74,85.47 -136.17,85.80 -117.93,85.57 -94.31,84.94 -78.84,84.03 - 67.39,82.96 -59.12)))")' Proc_centre "EGEE" Proc_date '"2005-10-14 13:20:00.0"' File_input "00301000.lv1" Proc_description '"Algorithm: utv"'

51 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Sample queries As a summary, the following functions work: GeomFromText(), MPolyFromText(), Contains(), AsText() In principle PostgreSQL+PostGIS would also work but this is not tested. Query> selectattr /ESR/opera_nno:File_Name /ESR/opera_nno:Start_Date /ESR/opera_nno:Stop_Date 'Contains(/ESR/opera_nno:Footprint, GeomFromText("POINT(82.96 -59.12)"))' >> /grid/esr/gome/utv/2000/03/00301000.utv >> 2000-02-29 00:01:00 >> 2000-02-29 00:58:00 Query> selectattr /ESR/opera_nno:File_Name AsText(/ESR/opera_nno:Footprint) '' >> /grid/esr/gome/utv/2000/03/00301000.utv >> MULTIPOLYGON(((82.96 -59.12,75.95 -89.07,75.95 -89.07,76.46 -94.77,76.84 - 100.85,77.07 -107.21,77.13 -115.34,77 -121.8,76.72 -128.08,76.3 -134.03,75.74 - 139.59,75.07 -144.7,74.3 -149.36,80.26 -179.07,80.26 -179.07,81.52 -174.78,82.71 -169.12,83.81 -161.42,84.76 -150.74,85.47 -136.17,85.8 -117.93,85.57 - 94.31,84.94 -78.84,84.03 -67.39,82.96 -59.12))) Let’s check if the entry was properly inserted (we need to use AsText() to decode a MultiPolygon): We want to look for a Polygon that cointains a given point:

52 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gMOD: grid Movie On Demand gMOD provides a Video-On-Demand service User chooses among a list of video and the chosen one is streamed in real time to the video client of the user’s workstation For each movie a lot of details (Title, Runtime, Country, Release Date, Genre, Director, Case, Plot Outline) are stored and users can search a particular movie querying on one or more attributes Two kind of users can interact with gMOD: TrailersManagers that can administer the db of movies (uploading new ones and attaching metadata to them); GILDA VO users (guest) can browse, search and choose a movie to be streamed.

53 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gMOD under the hood Built on top of gLite services: Storage Elements, sited in different place, physically contain the movie files FireMan, the File Catalogue, keeps track in which Storage Element a particular movie is located AMGA is the repository of the detailed information for each movie, and makes possible queries on them The Virtual Organization Membership Service (VOMS) is used to assign the right role to the different users The Workload Management System (WMS) is responsible to retrieve the chosen movie from the right Storage Element and stream it over the network down to the user’s desktop or laptop

54 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gMOD interactions VOMS FireMan Catalogue Metadata Catalogue WNWN WN CE Storage Elements User Genius Portal Workload Management System get Role AMGA

55 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 gMOD screenshot gMOD is accesible through the Genius Portal (https://glite-tutor.ct.infn.it)

56 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America 6th EELA Tutorial, Madrid, 14-20 October 2006 Any questions? Thanks for the attention

Download ppt "FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases."

Similar presentations

Data Management Expert Panel - WP2. WP2 Overview.

Data Management Expert Panel - WP2. WP2 Overview.
FP7-INFRA-222667 Enabling Grids for E-sciencE www.eu-egee.org EGEE Induction Grid training for users, Institute of Physics Belgrade, Serbia Sep. 19, 2008.

FP7-INFRA Enabling Grids for E-sciencE EGEE Induction Grid training for users, Institute of Physics Belgrade, Serbia Sep. 19, 2008.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org AMGA Metadata Access on the Grid Mike Mineter.

EGEE-II INFSO-RI Enabling Grids for E-sciencE AMGA Metadata Access on the Grid Mike Mineter.
SOFTWARE PRESENTATION ODMS (OPEN SOURCE DOCUMENT MANAGEMENT SYSTEM)

SOFTWARE PRESENTATION ODMS (OPEN SOURCE DOCUMENT MANAGEMENT SYSTEM)
Www.eu-eela.eu E-science grid facility for Europe and Latin America A Data Access Policy based on VOMS attributes in the Secure Storage Service Diego Scardaci.

E-science grid facility for Europe and Latin America A Data Access Policy based on VOMS attributes in the Secure Storage Service Diego Scardaci.
The AMGA metadata catalog Riccardo Bruno - INFN Madrid, 07-11/05/2007.

The AMGA metadata catalog Riccardo Bruno - INFN Madrid, 07-11/05/2007.
Asterios Katsifodimos Saturday, May 23, 2015 High Performance Computing systems Lab University of Cyprus The AMGA metadata catalog – An Overview Slides.

Asterios Katsifodimos Saturday, May 23, 2015 High Performance Computing systems Lab University of Cyprus The AMGA metadata catalog – An Overview Slides.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America AMGA metadata catalog with use cases Tony.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America AMGA metadata catalog with use cases Tony.
Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.

Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org University of Coimbra AMGA Use Cases Tony Calanducci NA4 Generic Applications Meeting January.

INFSO-RI Enabling Grids for E-sciencE University of Coimbra AMGA Use Cases Tony Calanducci NA4 Generic Applications Meeting January.
Makrand Siddhabhatti Tata Institute of Fundamental Research Mumbai 17 Aug 2009 1.

Makrand Siddhabhatti Tata Institute of Fundamental Research Mumbai 17 Aug
Ninth EELA Tutorial for Users and Managers www.eu-eela.org E-infrastructure shared between Europe and Latin America LFC Server Installation and Configuration.

Ninth EELA Tutorial for Users and Managers E-infrastructure shared between Europe and Latin America LFC Server Installation and Configuration.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America GENIUS server installation and configuration.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America GENIUS server installation and configuration.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America Information System (IS) Valeria Ardizzone.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Information System (IS) Valeria Ardizzone.
ES Metadata Management Enabling Grids for E-sciencE ES metadata OGSA-DAI NA4 GA Meeting, 09.01.06 D. Weissenbach, IPSL, France.

ES Metadata Management Enabling Grids for E-sciencE ES metadata OGSA-DAI NA4 GA Meeting, D. Weissenbach, IPSL, France.
IST-2006-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases Domenico Vicinanza, CERN.

IST E-infrastructure shared between Europe and Latin America The AMGA metadata catalog with use cases Domenico Vicinanza, CERN.
EGEE-III INFSO-RI- 222667 Enabling Grids for E-sciencE www.eu-egee.org The Medical Data Manager : the components Johan Montagnat, Romain Texier, Tristan.

EGEE-III INFSO-RI Enabling Grids for E-sciencE The Medical Data Manager : the components Johan Montagnat, Romain Texier, Tristan.
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org gLibrary: a Multimedia Contents Management System on the grid Tony Calanducci INFN Catania,

INFSO-RI Enabling Grids for E-sciencE gLibrary: a Multimedia Contents Management System on the grid Tony Calanducci INFN Catania,

Similar presentations

Ads by Google