ImageTrove is a tool for ingesting and archiving NIF datasets. It is made up of a number of components:
- PostgreSQL database.
- Web front end: MyTARDIS, a Django application.
- DICOM server: DICOM.
- Dataset uploader: imagetrove-uploader.
- Federated authentication: end users log in to MyTARDIS using their institutional identity, which is verified by the Australian Access Federation's Rapid Connect service.
For ease of deployment, all of the components are packaged into a Docker container.
The flow of data through the system is as follows:
- Instrument user chooses a dataset to archive.
- At the instrument console, the user sends the dataset to the ImageTrove modality (this is the DCMTK server).
- Periodically, imagetrove-uploader scans the DCMTK storage directory for new datasets which are converted to MINC and Nifti and imported into MyTARDIS, along with metadata.
- A 64bit Linux system with sufficient storage for the datasets. For example a Nectar VM with an RDSI storage allocation mounted as NFS. Any distribution of Linux is acceptable as long as there is a Docker package.
- Each instrument's DICOM server must be able to connect to the ImageTrove instance on port 4242.
- Alternatively, each file system mount (containing DICOM and other instrument files) must be mountable over the network on the ImageTrove instance.
- The ImageTrove web server must be able to accept a HTTPS POST request from an AAF system.
Follow the instructions at https://docs.docker.com/installation/#installation
By default Docker stores its images in /var/lib/docker so ensure that this
directory is on a partition with sufficient free space. Check these settings in /etc/default/docker:
DOCKER_OPTS="--graph=/mnt/bigdrive/docker"
export TMPDIR="/mnt/bigdrive/docker-tmp"
While not necessary, running Docker with AUFS makes building containers much faster. You can
check if AUFS is enabled by looking at the Storage Driver field:
$ sudo docker info
Containers: 22
Images: 652
Storage Driver: aufs
Root Dir: /var/lib/docker/aufs
Dirs: 696
Execution Driver: native-0.2
Kernel Version: 3.14.0-2-amd64
Operating System: Debian GNU/Linux jessie/sid (containerized)
WARNING: No memory limit support
WARNING: No swap limit support
You might need to install the kernel package linux-image-extra-`uname -r` for AUFS to work.
Clone the imagetrove and MyTARDIS repositories:
git clone https://github.com/carlohamalainen/imagetrove
cd imagetrove
git clone git://github.com/carlohamalainen/mytardis.git # current dev fork; later will be git://github.com/mytardis/mytardis.git
Look for CHANGEME in create_admin.py, postgresql_first_run.sh, settings.py, and imagetrove_uploader.conf.
To use AAF authentication you must register your service at https://rapid.aaf.edu.au
For the purposes of testing you can use a plain http callback URL, but for production
you need a https callback.
TODO Configuration of SSL certificates in the container.
The callback URL is at /rc, so in the test federation use
RAPID_CONNECT_CONFIG['aud'] = 'http://imagetrove.example.com/rc/'
and in production,
RAPID_CONNECT_CONFIG['aud'] = 'https://imagetrove.example.com/rc/'
To get a shell in a running container, use docker exec:
sudo docker exec -it <hash> bash
where <hash> is the value in the first column of output given by docker ps.
Alternatively, do it in one line with:
sudo docker exec -it `sudo docker ps | grep 'user/imagetrove:latest' | awk '{print $1}'` bash
Each instrument must be specified in imagetrove_uploader.conf.
The fields in each instrument block are:
instrument: list of name/value pairs used to identify a DICOM dataset as belonging to this instrument.experiment_title: list of DICOM fields that will be used to construct the experiment title for the corresponding MyTARDIS experiment.dataset_title: list of DICOM fields that will be used to construct the dataset name for the corresponding MyTARDIS dataset.default_institution_name: institution name to be used if the DICOM fieldInstitutionNameis missing.default_institutional_department_name: department name to be uesd if the DICOM fieldInstitutionalDepartmentNameis missing.default_institutional_address: institutional address to be used if the DICOM fieldInstitutionAddressis missing.schema_experiment: URL-style identifier for the MyTARDIS experiment schema, e.g.http://cai.edu.au/schema/1schema_dataset: URL-style identifier for the MyTARDIS dataset schema, e.g.http://cai.edu.au/schema/2schema_file: URL-style identifier for the MyTARDIS file schema, e.g.http://cai.edu.au/schema/3
Correspondingly, each instrument needs to know the address of the
ImageTrove DICOM server, which is a STORESCP server. By
default this will be imagetrove.example.com:4242 where imagetrove.example.com
is the main ImageTrove instance.
Each instrument's DICOM server needs to be able to connect to the ImageTrove STORESCP server on port 4242.
sudo docker build -t='user/imagetrove' .
The container uses external volumes for persistent storage.
imagetrove: our shared storage location with MyTARDIS.data: postgresql database files.var_log: logfiles for supervisord, postgresql, mytardis, etc.
Create directories for the persistent storage:
mkdir -p /somewhere/imagetrove \
/somewhere/data \
/somewhere/var_log/supervisor \
/somewhere/var_log/nginx \
Run the container:
sudo docker run -i -t --rm \
-p 0.0.0.0:8000:8000 \
-v /somewhere/imagetrove:/imagetrove \
-v /somewhere/data:/data \
-v /somewhere/var_log:/var/log \
-P user/imagetrove
Now go to http://localhost:8000 and you should see the default MyTARDIS front page.
TODO
The MyTARDIS login button directs to AAF. To log in as the local admin user visit http://localhost:8000/local_local.
This also gives you access to the Django admin interface.
Click the blue Log in button. You will be redirected to your institution's authentication page, and then back to MyTARDIS.
TODO
TODO
- Define interaction of user-ACL utility and pre-existing projects: experiment imported before project has been defined?
- File mount ingestion
- Configure ingestion application
- Apache or Nginx instead of django-runserver.
- How to use command line interface.