annotate Sphinx/source/plugins/google-cloud-platform.rst @ 1113:a588960a72e5 default tip

spelling
author Alain Mazy <am@orthanc.team>
date Mon, 28 Oct 2024 09:23:08 +0100
parents 60b0b7ea409b
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
254
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
1 .. _google:
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
2
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
3
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
4 Google Cloud Platform plugin
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
5 ============================
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
6
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
7 .. contents::
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
8
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
9
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
10 Introduction
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
11 ------------
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
12
1027
60b0b7ea409b migration to orthancteam
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 1023
diff changeset
13 The Orthanc project freely provides the `source code
991
1316bc62b5d5 migration to UCLouvain servers
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 891
diff changeset
14 <https://orthanc.uclouvain.be/hg/orthanc-gcp/file/default/>`__ of a plugin
361
84e3a2612c36 links to hg
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 358
diff changeset
15 to interface Orthanc with the Healthcare API of `Google Cloud Platform
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
16 (GCP) <https://en.wikipedia.org/wiki/Google_Cloud_Platform>`__ through
891
ce9218a720db fix dicomweb link
Alain Mazy <am@osimis.io>
parents: 784
diff changeset
17 `DICOMweb <https://www.dicomstandard.org/using/dicomweb>`__.
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
18
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
19 This GCP plugin turns Orthanc into a DICOMweb client connected to GCP
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
20 servers, enabling the upload of DICOM images using STOW-RS, the
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
21 querying of the cloud content using QIDO-RS, and the retrieval of
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
22 remote content using WADO-RS. These operations can be possibly
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
23 :ref:`scripted <dicomweb-client>` thanks to the REST API of Orthanc.
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
24
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
25 Concretely, the role of the GCP plugin is to `manage the credentials
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
26 <https://cloud.google.com/docs/authentication/>`__ to Google Cloud
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
27 Platform. It requires the official :ref:`DICOMweb plugin <dicomweb>`
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
28 to be installed, as all the user interactions are done through the
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
29 latter plugin. As soon as Orthanc is started, the GCP plugin
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
30 automatically acquires then periodically refreshes the access tokens,
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
31 transparently updating the remote :ref:`DICOMweb servers
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
32 <dicomweb-client-config>` that are known to the DICOMweb plugin. The
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
33 access tokens can be derived either from service accounts, or from
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
34 user accounts.
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
35
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
36 This page makes the assumption that you have created a Google Cloud
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
37 Platform project, in which you have enabled the `Healthcare API
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
38 <https://cloud.google.com/healthcare/>`__, and in which you have
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
39 created a `DICOM store
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
40 <https://cloud.google.com/healthcare/docs/how-tos/dicom>`__.
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
41
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
42
459
a4ed4e883337 highlighting the pre-compiled binaries for google, aws and azure
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 451
diff changeset
43 Pre-compiled binaries
a4ed4e883337 highlighting the pre-compiled binaries for google, aws and azure
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 451
diff changeset
44 ---------------------
a4ed4e883337 highlighting the pre-compiled binaries for google, aws and azure
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 451
diff changeset
45
1023
5d4701d8fe28 replaced osimis/orthanc by orthancteam/orthanc
Alain Mazy <am@osimis.io>
parents: 991
diff changeset
46 As of today, there are no known distribution of pre-compiled binaries
5d4701d8fe28 replaced osimis/orthanc by orthancteam/orthanc
Alain Mazy <am@osimis.io>
parents: 991
diff changeset
47 for this plugin.
459
a4ed4e883337 highlighting the pre-compiled binaries for google, aws and azure
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 451
diff changeset
48
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
49
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
50 Compilation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
51 -----------
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
52
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
53 .. highlight:: text
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
54
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
55 The procedure to compile the GCP plugin is similar of that for the
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
56 :ref:`core of Orthanc <compiling>`. The following commands should work
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
57 on any recent UNIX-like distribution (including GNU/Linux)::
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
58
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
59 $ mkdir Build
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
60 $ cd Build
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
61 $ cmake .. -DSTATIC_BUILD=ON -DCMAKE_BUILD_TYPE=Release
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
62 $ make
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
63
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
64 The compilation produces a shared library
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
65 ``OrthancGoogleCloudPlatform`` that contains the GCP
451
938206110483 added object storage
Alain Mazy <alain@mazy.be>
parents: 449
diff changeset
66 plugin.
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
67
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
68 Under the hood, the GCP plugin is built on the top of the official
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
69 `Google Cloud Platform C++ Client Libraries
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
70 <https://github.com/googleapis/google-cloud-cpp>`__.
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
71
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
72
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
73 Configuration
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
74 -------------
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
75
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
76 Dependencies
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
77 ^^^^^^^^^^^^
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
78
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
79 As explained above, the GCP plugin requires Orthanc (with version
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
80 above 1.5.4), and the :ref:`official DICOMweb plugin <dicomweb>` to be
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
81 installed (with version above 1.0). All the communications with Google
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
82 Cloud Platform are done using the DICOMweb plugin, and the
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
83 responsibility of the GCP plugin is to aquire and periodically refresh
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
84 the access tokens whose lifetime is limited.
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
85
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
86
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
87 Common parameters
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
88 ^^^^^^^^^^^^^^^^^
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
89
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
90 There are some common parameters to be set. Firstly, the ``Plugins``
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
91 :ref:`configuration option <configuration>` of Orthanc must contain
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
92 the path that contains the ``OrthancGoogleCloudPlatform`` shared
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
93 library.
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
94
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
95 Secondly, obtaining the access tokens for Google Cloud Platform
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
96 necessitates a sequence of HTTPS requests. As a consequence, the
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
97 Orthanc configuration must specify how the authenticity of the Google
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
98 servers is verified. You have two possibilities to that end:
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
99
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
100 1. Disabling the verification of the remote servers (**not recommended
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
101 in production**). This is done by setting option ``HttpsVerifyPeers``
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
102 to ``false``.
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
103
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
104 2. Providing a list of `trusted Certificate Authorities (CA)
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
105 <https://curl.haxx.se/docs/sslcerts.html>`__ to the HTTPS client
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
106 that is internally used by Orthanc (namely, `cURL
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
107 <https://en.wikipedia.org/wiki/CURL>`__). This is done by properly
299
Alain Mazy <alain@mazy.be>
parents: 260
diff changeset
108 setting ``HttpsCACertificates`` option, so that it points to a file
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
109 containing a store of CA certificates. Depending on your operating
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
110 system, this file can be found as follows:
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
111
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
112 * On Debian-based system, the standard file
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
113 ``/etc/ssl/certs/ca-certificates.crt`` can be used.
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
114 * On other systems (including Microsoft Windows), the cURL project
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
115 provides `CA certificates
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
116 <https://curl.haxx.se/docs/caextract.html>`__ that are extracted
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
117 from Mozilla.
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
118
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
119 Note that to debug HTTPS communications, you have the possibility of
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
120 setting the ``HttpVerbose`` configuration option of Orthanc to
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
121 ``true``. It can also be useful to run Orthanc in ``--verbose`` mode
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
122 (check out :ref:`this page <log>`).
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
123
254
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
124
63cc25161330 skeleton of gcp
Sebastien Jodogne <s.jodogne@gmail.com>
parents:
diff changeset
125
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
126 Service account
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
127 ^^^^^^^^^^^^^^^
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
128
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
129 As explained on the `Google documentation
358
011b01ccf52d fixing external hyperlinks
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 299
diff changeset
130 <https://cloud.google.com/docs/authentication>`__, *"a service account
011b01ccf52d fixing external hyperlinks
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 299
diff changeset
131 is a Google account that represents an application, as opposed to
011b01ccf52d fixing external hyperlinks
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 299
diff changeset
132 representing an end user"*. This is presumably the most common
011b01ccf52d fixing external hyperlinks
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 299
diff changeset
133 situation in the case of Orthanc.
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
134
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
135 You first have to `create a service account
358
011b01ccf52d fixing external hyperlinks
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 299
diff changeset
136 <https://cloud.google.com/docs/authentication/getting-started>`__ for
011b01ccf52d fixing external hyperlinks
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 299
diff changeset
137 your application. This will produce a JSON file (say,
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
138 ``dicom-osimis.json``) that you have to store securely on the server
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
139 that will run Orthanc.
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
140
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
141 .. highlight:: json
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
142
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
143 Secondly, you have to modify the :ref:`Orthanc configuration
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
144 <configuration>` in order to provide the GCP plugin with your service
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
145 account file and with the parameters of your `DICOM store
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
146 <https://cloud.google.com/healthcare/docs/how-tos/dicom>`__. Here is a
256
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 255
diff changeset
147 sample, minimalist configuration of Orthanc::
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
148
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
149 {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
150 "HttpsCACertificates": "/etc/ssl/certs/ca-certificates.crt",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
151 "Plugins" : [ "." ],
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
152 "GoogleCloudPlatform" : {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
153 "Accounts": {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
154 "my-google" : {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
155 "Project" : "osimis-test",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
156 "Location" : "europe-west2",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
157 "Dataset" : "test",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
158 "DicomStore" : "dicom",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
159 "ServiceAccountFile" : "dicom-osimis.json"
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
160 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
161 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
162 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
163 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
164
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
165
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
166 In this example, once the GCP plugin has succeeded to authenticate
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
167 using the service account, the DICOMweb plugin will provide access to
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
168 the cloud DICOM store at URI ``/dicom-web/servers/my-google/`` of the
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
169 REST API of Orthanc.
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
170
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
171
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
172 User account
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
173 ^^^^^^^^^^^^
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
174
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
175 User account is an alternative to service account, and can be used
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
176 *"when the application needs to access resources on behalf of an end
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
177 user"* (check out the `Google documentation
358
011b01ccf52d fixing external hyperlinks
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 299
diff changeset
178 <https://cloud.google.com/docs/authentication/end-user>`__).
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
179
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
180 .. highlight:: json
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
181
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
182 The easiest way of setting up a user account is through the `gcloud
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
183 command-line tool <https://cloud.google.com/sdk/gcloud/>`__.
256
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 255
diff changeset
184 `Google's quick-starts
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
185 <https://cloud.google.com/sdk/docs/quickstarts>`__ explain how to
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
186 initialize the environment depending on your operating system (check
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
187 out the "Initialize the SDK" sections, which essentially boil down to
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
188 calling ``gcloud init``).
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
189
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
190
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
191 .. highlight:: bash
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
192
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
193 Once the ``gcloud init`` command-line has been invoked, you can
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
194 extract credentials to be used by Orthanc by typing the following
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
195 command::
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
196
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
197 $ gcloud auth print-access-token --format json
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
198
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
199
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
200 .. highlight:: json
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
201
260
f9e7036d81d0 updating DICOMweb documentation
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 259
diff changeset
202 This command generates a JSON file containing all the required
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
203 information, that can be written to a file (say,
256
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 255
diff changeset
204 ``dicom-user.json``). Given this file, here is a sample, minimalist
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
205 configuration of Orthanc::
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
206
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
207 {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
208 "HttpsCACertificates": "/etc/ssl/certs/ca-certificates.crt",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
209 "Plugins" : [ "." ],
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
210 "GoogleCloudPlatform" : {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
211 "Accounts": {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
212 "my-google" : {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
213 "Project" : "osimis-test",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
214 "Location" : "europe-west2",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
215 "Dataset" : "test",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
216 "DicomStore" : "dicom",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
217 "AuthorizedUserFile" : "dicom-osimis.json"
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
218 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
219 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
220 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
221 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
222
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
223 In this example, once the GCP plugin has succeeded to authenticate
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
224 using the user account, the DICOMweb plugin will provide access to the
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
225 cloud DICOM store at URI ``/dicom-web/servers/my-google/`` of the REST
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
226 API of Orthanc.
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
227
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
228
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
229 .. highlight:: bash
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
230
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
231 Note that only 3 fields in the JSON file produced by the ``gcloud auth
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
232 print-access-token`` command are required: ``client_id``,
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
233 ``client_secret``, and ``refresh_token``. Instead of using the full
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
234 JSON file, you can extract only these fields, e.g. using the `jq
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
235 <https://stedolan.github.io/jq/>`__ command-line tool::
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
236
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
237 $ gcloud auth print-access-token --format json | jq '{ AuthorizedUserClientId: .client_id, AuthorizedUserClientSecret:.client_secret, AuthorizedUserRefreshToken:.refresh_token }'
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
238 {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
239 "AuthorizedUserClientId": "XXXXXXXXXX.apps.googleusercontent.com",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
240 "AuthorizedUserClientSecret": "ZmssLNXXXXXX",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
241 "AuthorizedUserRefreshToken": "1/e2ngXXXXXX"
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
242 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
243
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
244
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
245 .. highlight:: json
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
246
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
247 These fields can then be copied/pasted as follows in order to create a
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
248 configuration for Orthanc that is equivalent to the one using the
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
249 separate JSON file::
255
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
250
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
251 {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
252 "HttpsCACertificates": "/etc/ssl/certs/ca-certificates.crt",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
253 "Plugins" : [ "." ],
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
254 "GoogleCloudPlatform" : {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
255 "Accounts": {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
256 "my-google" : {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
257 "Project" : "osimis-test",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
258 "Location" : "europe-west2",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
259 "Dataset" : "test",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
260 "DicomStore" : "dicom",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
261 "AuthorizedUserClientId": "XXXXXXXXXX.apps.googleusercontent.com",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
262 "AuthorizedUserClientSecret": "ZmssLNXXXXXX",
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
263 "AuthorizedUserRefreshToken": "1/e2ngXXXXXX"
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
264 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
265 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
266 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 254
diff changeset
267 }
259
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
268
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
269
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
270 Advanced options
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
271 ^^^^^^^^^^^^^^^^
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
272
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
273 .. highlight:: json
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
274
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
275 Some advanced configuration options are available as well, as
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
276 summarized in this excerpt::
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
277
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
278 {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
279 ...
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
280 // In seconds, must be large enough to send/receive your largest studies
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
281 // using WADO or STOW, depending on the speed of your Internet connection
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
282 "HttpTimeout" : 600,
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
283
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
284 "GoogleCloudPlatform" : {
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
285 ...
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
286 // Path to the URL of the GCP services
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
287 "BaseUrl" : "https://healthcare.googleapis.com/v1beta1/"
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
288 }
Sebastien Jodogne <s.jodogne@gmail.com>
parents: 258
diff changeset
289 }