A Smart Cache for the RDF Dataset of the knowledge channel.
SCG (Smart Cache Graph) provides SPARQL access using the SPARQL protocol and SPARQL Graph Store Protocol to RDF data with ABAC data security.
It is a container that consists of:
- Apache Jena Fuseki server
- Fuseki-Kafka bridge
- Telicent RDF ABAC data security
- Telicent GraphQL
Smart Cache Graph is configured using a Fuseki configuration file (documentation). There is an example config.ttl file.
The following environment variables can be used to control Smart Cache Graph:
This is the network location of user attribute server which also includes the hierarchies management.
The URL value is a template including {user}. Example: http://some-host/users/lookup/{user}
This specifies the JSON Web Key Set (JWKS) URL to use to obtain the public keys for verifying JSON Web Tokens (JWTs). The value "disabled" turns off token verification.
Building Smart Cache Graph is a two-step process.
The java artifacts are built using the maven release plugin. When these are released, the docker container is automatically built.
Check versions in release-setup.
On branch main:
Edit and commit release-setup to set the correct versions.
source release-setup
This prints the dry-run command.
If you need to change this file, edit it, then simply source the file again.
Dry run
mvn $MVN_ARGS -DdryRun=true release:clean release:prepare
and for real
mvn $MVN_ARGS release:clean release:prepare
mvn $MVN_ARGS release:perform
This updates the version number.
After release, do git pull to sync local and remote git repositories.
To rebuild for update version for development:
mvn clean install
The maven artifacts have been uploaded to the maven repository configured in the POM file.
The docker container is automatically built by github action on a release of the Smart Cache Graph jar artifacts.
In the docker container we have:
/fuseki/logs/
/fuseki/databases/
/fuseki/config/
and configuration files go into host mnt/config/.
The provided script, docker-run.sh, runs SCG in a docker container, with the contents of the local mnt/config directory mounted into the newly generated docker image for ease of use. Similarly, the mnt/databases and mnt/logs are moutned for easier analysis.
scg-docker/docker-run.shPassing no parameters means that it will default to ("--mem /ds")
It specifies an in-memory dataset at "/ds" which replays the "RDF" topic on start-up. It assumes that Kafka must be up and running, prior to launch.
The Fuseki server is available at http://localhost:3030/ds.
scg-docker/docker-run.sh --config config/config-local-abac.ttlThis runs the server using the configuration file [config-abac-local.ttl](scg-docker/mnt/config/config-abac-local.ttl. It specifies an in-memory dataset at "/ds" and that Attribute Based Access Control is enabled.
Note: See caveat below re: authentication.
scg-docker/docker-run.sh --config config/config-replay-abac.ttlAs this suggests, this runs server using the configuration file config/config-replay-abac.ttl
or config-replay-abac.ttl as it's known locally.
It specifies an in-memory dataset at "/ds" which replays the "RDF" topic on start-up. It assumes that Kafka must be up and running, prior to launch.
The Fuseki server is available at http://localhost:3030/ds.
Alternately, you can use the script d-run which will map the relevant config
and database directories from the local filesystem, pulling down the given image
and running it directly (not in -d mode). It requires a number of environment
variables to be set as indicated in the script.
It can be run with exactly the same configuration as docker-run.sh except with no default configuration if nothing is provided.
Open Telemetry for SCG will be enabled if any environment variables with OTEL in the
name are present at runtime. If this is not the case then the Open Telemetry Agent is
not attached to the JVM and no metrics/traces will be exported.