Actinia Basics

Actinia REST API documentation

Actinia is fully documented using the OpenAPI standard^1, better known as swagger^2. The JSON definition of the API can be accessed here:

https://actinia.mundialis.de/latest/swagger.json

A nicely rendered ReDoc version is available here:

https://redocly.github.io/redoc/?url=https://actinia.mundialis.de/latest/swagger.json

To generate a readable documentation out of the swagger.json file, the spectacle tool can be used:

 # Download the latest swagger definition from the actinia service
 wget  https://actinia.mundialis.de/latest/swagger.json -O /tmp/actinia.json

 # Run spectacle docker image to generate the HTML documentation
 docker run -v /tmp:/tmp -t sourcey/spectacle spectacle /tmp/actinia.json -t /tmp

 # Start Firefox to show the documentation
 firefox /tmp/index.html

The petstore swagger UI creator^3 can be used to show all available REST API calls and all response models in a convenient way.

User, user-roles and user-groups

Actinia uses the concept of users, user-roles and user-groups to manage the access to the actinia databases and API calls. A single user has always a specific user role and can be member of one single user-group.

The following user-roles are supported:

1. superadmin

  • Can create, modify and delete users with all user-roles
  • Has access to all API calls and read/write access to all databases

2. admin

  • Can access all API calls
  • Can create, modify and delete users with the maximum user-role user of the same user group
  • Has access to persistent databases that were granted by a superadmin

3. user

  • Can run computational tasks in ephemeral and user specific databases
  • Can create, modify and delete projects in a user specific database
  • Can create, modify and delete mapsets in user specific databases
  • Has limited access to API calls
  • Can not create, modify or delete users
  • Has access to persistent databases that were granted by a superadmin

4. guest

  • Has very limited access to API calls
  • Can not create, modify or delete mapsets
  • Can not create, modify or delete users
  • Has access to persistent databases that were granted by a superadmin

Overview table:

task superadmin admin user guest notes
amount raster cells is unlimited y y limited, selected via redis limited, selected via redis -
database access is unlimited y only to persistent databases that were granted by a superadmin limited, defined in redis limited, defined in redis -
project/mapset access is unlimited y y can create, modify and delete projects/mapsets in user specific databases, defined in redis has access to persistent databases that were granted by a superadmin, defined in redis -
module access is unlimited y y can run computational tasks in ephemeral and user specific databases has very limited access to API calls -
get, create, delete a single user y users with the maximum user-role user of the same user group n n Only normal users (role=user can be created)

In the file actinia.cfg, limits and more can be defined:

[LIMITS]
max_cell_limit = 2000000
process_time_limt = 60
process_num_limit = 20
number_of_workers = 3

The Actinia databases

Actinia manages GRASS GIS projects in its persistent database. User are not permitted to modify data in the actinia persistent database, but can access all data read-only for processing and visualization. Data in the persistent database can only be accessed via HTTP GET API calls.

The user can either process data in an ephemeral databases, that will be removed after the processing is finished, or in a user specific database. A user specific database is persistent, only visible to users of the same user-group and can contain any data the user has imported. The user can read-access all data from the persistent database while running analysis in the ephemeral database or user specific database.

Summary

1. Persistent database

  • Read only database with projects and mapsets that can be used as processing environment and data source
  • Data can only be accessed using HTTP GET API calls

2. Ephemeral database

  • All processing is performed in ephemeral databases for performance and security reasons
  • Ephemeral databases are created for all API calls and removed after the processing is finished
  • Ephemeral databases use persistent databases as processing environments to access required data from mapsets in persistent projects

3. User specific databases

  • Persistent databases that can be created and modified by a specific user group
  • The base for a project in a user specific database can be a project from a persistent database, however mapsets names must be unique.
  • A user group can only access a single database with any number of projects

Footnotes