Deployment¶
Production System¶
This section describes a simple deployment without using Docker containers, assuming the use of WhiteNoise to serve the static files. It is possible to serve the static files using other methods (e.g. Nginx). And in the future it is possible to upgrade the deployment stack using Docker container and Docker compose (we foresee 3 main containers: Django, Dask and Traefik/Nginx). We recommend in any case reading Django deployment documentation for general knowledge.
Note
We assume deployment to a UNIX server.
The following steps describes how to set up the Django side of the production deployment, and can be of reference for a future Dockerization. They assumed you have SSH
access to your remote server and have sudo
priviledges.
Web App Deployment¶
-
Clone the repo in a suitable path, e.g.
/opt/
.$ cd /opt && sudo git clone https://github.com/askap-vast/vast-pipeline
-
Follow the Installation Instructions. We recommend installing the Python virtual environment under the pipeline folder.
$ cd /opt/vast-pipeline && virtualenv -p python3 pipeline_env
-
Configure your
.env
files with all the right settings. -
Check that your server is running fine by changing
DEBUG = True
in the.env
file. -
Run Django deployment checklist command to see what are you missing. It is possible that some options are turned off, as implemented in the reverse proxy or load balancer of your server (e.g.
SECURE_SSL_REDIRECT = False
or not set, assumes your reverse proxy redirect HTTP to HTTPS).(pipeline_env)$ ./manage.py check --deploy
-
Build up the static and fix url in JS9:
(pipeline_env)$ cd /opt/vast-pipeline && npm ci && npm start \ && npm run js9staticprod && ./manage.py collectstatic -c --noinput
-
Set up a unit/systemd file as recommended in Gunicorn docs (feel free to use the socket or an IP and port). An example of command to write in the file is (assuming a virtual environment is installed in
venv
under the main pipeline folder):NOTE: (for future development) theExecStart=/opt/vast-pipeline/venv/bin/gunicorn -w 3 -k gevent \ --worker-connections=1000 --timeout 120 --limit-request-line 6500 \ -b 127.0.0.1:8000 webinterface.wsgi
--limit-request-line
parameter needs to be adjusted for the actual request length as that might change if more parameters are added to the query. -
Finalise the installation of the unit file. Some good instructions on where to put, link and install the unit file are described in the Jupyter Hub docs
Extra Service(s) Deployment¶
Django Q¶
In order to run a pipeline run from the Web App, the Django Q
process needs to be started and managed as a service by the OS. In order to do so we recommend building a unit/systemd file to manage the Django Q
process, in a similar way of the gunicorn
process (following the Jupyter Hub docs):
...
WorkingDirectory=/opt/vast-pipeline
ExecStart=/opt/vast-pipeline/venv/bin/python manage.py qcluster
...
Tip
In the examples above, the Python virtual enviroment used by the pipeline is installed in the venv
folder under the cloned repository.
Security¶
By default the settings file has some security parameters that are set when you run the web app in production (DEBUG = False
), but you can read more in the Django documentation or in this blog post in which they explain how to get an A+ rating for your web site.
Created: April 27, 2021