Skip to content

Latest commit

 

History

History
90 lines (52 loc) · 6 KB

README.md

File metadata and controls

90 lines (52 loc) · 6 KB

BridgeDownstream

BridgeDownstream is a data pipeline which processes digital health data originating from Sage’s Bridge platform. Bridge receives data from digital health apps and exports the same data to Synapse with its metadata as annotations. In general, Bridge can process data of any format, but typically the data is a ZIP archive of JSON files. This data is bucketed into JSON datasets of similar schemas and these JSON datasets are then “relationalized” into flat, tabular data frames and written to S3 as one or more Parquet datasets.

This README explains how this repo is organized and how to set up the development environment. For documentation on the Bridge Downstream pipeline, please see the developer documentation.

Setting up the development environment

The development environment is managed using pipenv. Run the following command in the same folder as the Pipfile and start a new shell subprocess utilizing this environment:

pipenv install --dev
pipenv shell

How this repo is organized

This repository contains all the resources needed to build a production-ready deployment from scratch.

src/

The src directory contains job scripts and reference files and is divided into subdirectories by AWS service. Additionally, there is a scripts subdirectory, which contains scripts meant to be run outside of the deployed infrastructure. You can think of these as convenience scripts to speed up the completion of common tasks. The bootstrap_trigger script is particularly important, as it is a stand-in for a currently missing Bridge feature.

docs/

The docs directory contains documents and diagrams related to the organization of infrastructure.

tests/

This directory contains unit tests and testing data. Tests can be run with pytest. Detailed instructions on how to run the tests are included in the tests directory README.

templates/

These are CloudFormation templates for the AWS resources we deploy.

config/

These are configuration files which make use of the CloudFormation templates in templates/ See the Deployment section below for a detailed description of how to deploy the stacks.

.github

This directory contains the scripts for our Github Actions CI/CD.

Deployment

Deployment is a two-step process.

Upload S3 resources

Some of the AWS resources which we deploy -- including Glue, Lambda, and EC2 resources -- reference objects in S3. If you forget to upload these objects in advance of deployment, the pipeline may break or you may unwittingly be running old code. All S3 resources are organized within their own namespace, which allows multiple developers to simultaneously work on the pipeline without stepping on each other's toes. By convention, we use the branch name as the namespace. Run the following script to sync these objects to their respective namespaced location in S3:

python src/scripts/manage_artifacts/artifacts.py --upload --ref my-namespace

Additionally, Glue jobs currently reference a separate S3 location for their script. We have this extra step because at some point in the future we may want to have multiple versions of a Glue job running concurrently within the same namespace. This could occur if, for example, future digital health apps or future versions of existing apps change the format of the data they upload. We still need to support the processing of data in the old format, and so different jobs will reference different script versions -- and hence different S3 locations -- for their script.

The version which is used with deployment is tracked in the latest_version field of the sceptre global config. Your --ref argument should match this value.

python src/scripts/manage_artifacts/artifacts.py --upload --ref 'v0.1'

Deployment with sceptre

All deployments are deployed within a namespace. By default, the namespace is bridge-downstream, but you should pass the same namespace you used above when you uploaded the S3 resources. Importantly, namespaces are not mutually exclusive in the resources they utilize. Stacks from different namespaces will still write their output to the same S3 bucket, for example. If you are deploying a stack to the development account entirely from scratch, then you would invoke sceptre like so:

sceptre --var namespace='my-namespace' launch develop

If you did not make any modifications to the shared resources (those in config/develop/ but not in config/develop/namespaced/), then it's sufficient to deploy only the namespaced stacks:

sceptre --var namespace='my-namespace' launch develop/namespaced

Similarly, to deploy to the production account with the default bridge-downstream namespace:

sceptre launch prod

You'll notice that we don't specify a namespace here and that there is no config/prod/namespaced/ folder. This is because namespaces are only useful because they allow us to deploy different versions of the same type of resource to the same account. Only one version of BridgeDownstream should ever run in production -- the production version -- and so there is effectively only one namespace in the production environment, that is, the default namespace: bridge-downstream.

For more information on using sceptre, see the docs.

CI/CD

Github Actions is used to run QA tools, tests, and automatically deploy stacks to their respective namespace upon pushing to a branch and opening and merging a PR. To see which workflows are triggered upon these events, see the workflows directory. By convention, the namespace the stack is deployed to will match the branch name, or bridge-downstream if the branch name is main.