Contents

Database Extraction, Transformation and Load (ETL)

Description

The Database Extraction, Transformation and Load (ETL) Process is a critical aspect of the VISA Common Portal being deployed at each site.

VISA has a specific data structure concerning entities in the following two principal domains:

  1. User data: Users, roles and employers

  2. Facility data: Proposals, experiments and instruments

The ETL process takes data from each site’s data source (database or user system) and injects this into the VISA database in a specific format.

Each site needs to implement an ETL process for VISA to be deployed correctly. This process should run regularly (for example as a CRON job) to update VISA and include site data changes as soon as possible.

Design

The ETL Process is an application that runs outside of the VISA server framework but has access to the VISA database.

A Python VISA ETL Library is available to help sites develop an ETL process. This library perform the load part of the process and injects data into the VISA database. Each site must develop their own tools to extract data from their own systems and transform it correctly.

Data Model

This section describes the model used by VISA where data has to come from the ETL process.

User Data

The following diagram illustrates the user data that should be loaded into VISA.

The ETL should import information about users. Most importantly here is the association of roles to users. VISA will work without any user data being injected but there will be no admin users or support users.

Different roles are associated to different users which can either be related to VISA itself or to the function of the person within the facility. These roles are pre-defined and experience has given us some insights into these and are important when providing support to users.

Some roles may only be temporary, for example the Guest role. This is accounted for in the data model and expiry dates can be provided when associating a role to a user (if no expiry date is given then the role is permanent).

Role

Type

Description

application

A non-existant role implies that the user is a standard user with no special functionality

ADMIN

application

Has full admin rights: can manage all instances, images, flavours, plans

INSTRUMENT_CONTROL

function

Anyone who works for the instrument control service can provide support to users that are performing remote experiments

INSTRUMENT_SCIENTIST

function

An instrument scientist (scientific staff at the facility) can provider support to anyone with an instance associated to their specific instruments

IT_SUPPORT

function

Any person from the IT service can provide support to the portal users

SCIENTIFIC_COMPUTING

function

A scientific computing specialist can provider support to users for the data analysis software

STAFF

function

All staff at the facility have different access rights to external users (for example for instance lifetimes or security groups)

GUEST

application

A guest user (managed manually through the VISA Admin UI) allows individual users to create virtual machines without having any associated experiments. For example it can be used to provide temporary access to users during a training course.

Facility Data

The data model for the facility data is as follows.

Facility information (experiments, instruments, etc) is important to VISA when creating an instance and associating it to scientific data.

Associating an instance to facility data is important for:

  • ensuring the data is accessible to the user

  • ensuring the instance has correct security groups (allowing access to instrument control for example)

  • allowing team access to share remote desktops

  • providing scientific support to external users depending on the instrument

  • statistical analysis

VISA has a simple model for this based around an Experiment. No team roles (ie principal investigator, local contact, etc) are included here (meaning that explicit users can also be associated to an experiment even if they weren’t on the original team).

Table Structure

The following sections are the tables that need data to be injected and the structure of these tables is included.

users

Column

type

Constraints

id

varchar(250)

not null, primary key

email

varchar(100)

first_name

varchar(100)

instance_quota

integer

not null

last_name

varchar(100)

not null

last_seen_at

timestamp

affiliation_id

bigint

constraint fk_employer_id references employer

activated_at

timestamp

activated

timestamp

employer

Column

type

Constraints

id

bigint

not null, primary key

country_code

varchar(10)

name

varchar(200)

town

varchar(100)

user_role

Column

type

Constraints

user_id

varchar(250)

not null, constraint fk_users_id references users

role_id

bigint

not null, constraint fk_role_id references role

expires_at

timestamp

instrument

Column

type

Constraints

id

bigint

not null, primary key

name

varchar(250)

not null

proposal

Column

type

Constraints

id

bigint

not null, primary key

identifier

varchar(100)

not null

title

varchar(2000)

public_at

timestamp

summary

varchar(5000)

doi

varchar(2000)

url

varchar(2000)

experiment

Column

type

Constraints

id

varchar(32)

not null, primary key

instrument_id

bigint

not null, constraint fk_instrument_id references instrument

proposal_id

bigint

not null, constraint fk_proposal_id references proposal

end_date

timestamp

start_date

timestamp

title

varchar(2000)

doi

varchar(2000)

url

varchar(2000)

experiment_user

Column

type

Constraints

experiment_id

varchar(32)

not null, constraint fk_experiment_id references experiment

user_id

varchar(250)

not null, constraint fk_users_id references users

instrument_scientist

Column

type

Constraints

instrument_id

bigint

not null, constraint fk_instrument_id references instrument

user_id

varchar(250)

not null, constraint fk_users_id references users
Security Groups Service Email customisation