Upload
briana-anthony
View
220
Download
4
Tags:
Embed Size (px)
Citation preview
Best Practices in Best Practices in Geospatial SOAGeospatial SOA
NSDI Cooperative Agreements Program (CAP) 2008NSDI Cooperative Agreements Program (CAP) 2008Best Practices in Geospatial Service Oriented Architecture (SOA) ProjectBest Practices in Geospatial Service Oriented Architecture (SOA) Project
Contacts:Contacts:
Neil Devadasan, [email protected] Devadasan, [email protected] Ehman, [email protected] Ehman, [email protected] Harrison, [email protected] Jeff Harrison, [email protected]
TopicsTopics
• Introduction
• What is SOA? Some Common Definitions
• Defining Requirements and Processes
• Designing and Deploying SOA
• Questions
IntroductionIntroduction
• For the US Federal Government’s Geospatial Line of Business (LoB) effective design and deployment of Service Oriented Architecture (SOA) using Web Services will determine the success of shared access to geospatial data and applications.
Geospatial Web Services...
Services Oriented Architecture (SOA)
Users Citizens
Federal Data Providers
Maps and location-aware technology
Geospatial Assets
Governance
CAP 2008 Category 2 ProjectsCAP 2008 Category 2 Projects• Government and industry leaders design, deploy, and
document reusable geospatial services and applications using SOA.
• Solutions satisfy multi-agency requirements by modeling business processes & related data and service components.
• Documents best practices to educate federal agencies on design, implementation, and application of government-wide services for Geospatial LoB.
ParticipantsParticipants
• Image Matters and EPA
• The Polis Center, Indiana University, USGS and NWS
• CubeWerx and US Army Corps of Engineers (with support from The Carbon Project)
Geospatial Web Services...Services Oriented Architecture (SOA)
Users Citizens
Data Providers
Geospatial Assets
Governance
What’s the best way to deploy SOA for our Geo-Assets?
Example of the ChallengeExample of the Challenge
• Quick look at interagency processes enabled by geospatial SOA
• For example, regulatory permitting that requires data from US Army Corps of Engineers, EPA, USGS and others…
Geospatial Web Services...Services Oriented Architecture (SOA)
EPA AnalystsEPA & COE Managers
USGS NHD WFS
Geospatial Assets
Governance
FWS NWI WFS
USGS Contextual LayersWMS
What is SOA?What is SOA?
• SOA is software architecture oriented toward Services
• Service-oriented architecture (SOA) describes a category of composite applications composed of service provider and service consumer components.
• SOA segregates business logic and offers location transparency for the service providers and consumers.
• The SOA approach lets you replace or upgrade individual components in the application without affecting other components or the process as a whole.
Common DefinitionsCommon Definitions
1. metadata describing the operations and geographic information available at a server [ISO 19128 draft]
Developing geoSOADeveloping geoSOA
Model Business ProcessElicit Requirements
Design
Integrate and BuildTest andDeploy
Monitor and Manage
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
Defining Defining Requirements Requirements and Processesand Processes
Data/ Service Provider
Data/ Service Provider
Data Provider
1. Publish2. Discover
3. Access
ProviderUser
Agent
Data and Services
Registry
Web Application
UserUser
NSDI Framework
Data/ Service ProviderUserUser
UserUser
UserUser
UserUser
UserUser
UserUser
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
CONOPsCONOPs
Use CasesUse Cases
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
Concept of Operations (CONOPs)Concept of Operations (CONOPs)
Use CasesUse Cases
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
Online stream gauges
Geospatial Infrastructure
Building and Property Losses
Geo-Spatial Flood Maps
USGS Water Data
Flood planner
Concerned Citizen
Meteorologist
Hydrologist
Data/ Service Provider
Concept of Operations (CONOPs)Concept of Operations (CONOPs)
Emergency Responder
Socio-Demographic Statistics
Flood Forecast
1 Flood forecast are issued 2 Geo-Spatial Flood Maps are Generated 3 Building and Property Losses are Generated 4 Socio-Demographic Statistics are Generated
Local Government Data
Building Property Assessment, Socio-Demographics
DEM
Use CasesUse Cases
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
Geospatial Infrastructure
Data/ Service Provider
Data Provider
1. Publish2. Discover
3. Access
ProviderUser
Agent
Data and Services
Registry
Web Application
User
NSDI Framework
Other SDI
Data/ Service Provider User
User
User
User
User
User
Data/ Service Provider
Data/ Service Provider
1 - Authentication
2 - Single Sign-On
3 - Access Control
Data/ Service Provider
Data/ Service Provider
Data/ Service Provider
Concept of Operations (CONOPs)Concept of Operations (CONOPs)
USACE Data
Provider
Portal Provider
Security Manager
NSDIData Provider
USACE End User
‘Keith’
NSDIEnd User
‘Jeff’
ManageUsers
ManageRoles
ManageCredentials
ManageGroups
ManageAccess Control
Rules
AuthorizeUsers
Access byFeature
Access byRole
DeployData
Access byGeography
Update by Feature
Update by Role
Update byOperation Type
Access byOperation Type
Use CasesUse Cases
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
Designing Designing and and
Deploying Deploying SOASOA
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
NWI WFS(wetlands)
NHD WFS(streams)
G-A WPS
G-A Server
G-A Client
Web Browser
Geo-AnalysisApplication
Javascript
Java
Architecture Architecture
Sequence Diagrams Sequence Diagrams
1. Zoom to AOI
2. Select NWI polys
3. Initiate WPS and name results set
4. View/Add/Save metadata
5. List processed features
6. Examine map
7. Add contextual layers
User StepsUser Steps
Web Services in DevelopmentWeb Services in DevelopmentService Description
National Wetlands Inventory – Web Feature Service
Serves FWS wetland polygons through OGC-compliant WFS; supports Filter Encoding specification to constrain queries
Intersection GeoAnalysis – Web Processing Service
Find geometric intersection of features from two different sets of vector geometries accessed via WFS
Proximity GeoAnalysis – Web Processing Service
Finds distances between closest locations of features from two different sets of vector geometries accessed via WFS
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
• A SOA solution will provide a very cost effective solution• SOA provides a platform to perform complex business processes• Without SOA developing a process to cater all partners was unattainable
• SOA is inherently distributed with multiple services• Service applications are heterogeneous• It provides synchronous and asynchronous access to PI
• Complexity of service orchestration is handled by• Accepted solution is BPEL• Acts like the “middle man” or the “centralized web service”• BPEL keeps process state in schema• BPEL coordinates synchronous and asynchronous communication• BPEL performs Receive, Assign, Invoke and Reply activities
• BPEL processes are deployed on ESB based on JBI
Designing a Geospatial SOADesigning a Geospatial SOA
Translating requirements into UML, documenting the process.
Design Design
Translating UML into BPEL workflow: service composition and execution.
LINK TO BPEL GRAPHIC.
• Floods cause more death and destruction of property than any other natural hazard in the United States– 75% of all federally declared disasters are flood-
related.
• The June 2008 floods in Indiana, Illinois, Iowa, and other parts of the Midwest reinforced the importance of this problem.– <20 deaths but potentially billions of dollars in
damage.
Flooding Flooding
• Flood planning, forecasting, and emergency response can all be greatly enhanced by integration of online Web services.
• Existing services include online NWS stream gauges and Weather forecasting services.
• Our project goal is to couple these to flood modeling services, loss estimation services, and mapping services.
• Connect these services end-to-end as workflows.– Provide planning capabilities to mitigate extreme events.– Provide alert systems to quickly estimate at-risk areas– Automate and streamline loss estimation to simplify
disaster declartations.
What can be done? What can be done?
• Ravenswood neighborhood of Indianapolis.– Frequent flooding; site of IMA Virginia B. Fairbanks Art
and Nature Park – Extensive historical data, detailed elevation data,
building inventory
Project Study AreaProject Study Area
Web Services in DevelopmentWeb Services in DevelopmentService Description
Inundation Modeling Service
Web service wrapping of the USGS FastMECH service.
Parcel Information Service
Extract land parcel metadata from WFS: IDs, parcel centroids, etc.
Building Information Service
Extract building structural information, and assessed values from Indiana Department of Local Government and Finance database
Loss Estimation Service
Uses HAZUS-MH as a backend service to perform Level 2 Analysis
Mapping and Plotting Service
Export inundation results as KML
Services Oriented Architecture (SOA)
UsersCitizens
Data Providers
Geospatial Assets
Governance
Analysis NSDI Project
Access-Control NSDI Project
Services NSDI Project
Identity ManagementWeb Server
NSDI Framework site
WFS Request &
Response
Client
Scenario 1: NSDI Client accessing a local resource
Authentication
Login
CookieWFS Response
Access Control
WFS Request
WFS
IMS
SOA Design and Role-based Access SOA Design and Role-based Access ControlControl
Scenario 2: NSDI Client accessing a remote resource
Identity ManagementWeb Server
Other Client
Identity ManagementWeb Server
NSDI Framework site
WFS Request &
Response
Client
Other SDI(Critical Infrastructure site)
Authentication
Login
CookieWFS Response
WFS Request &
Response
WFS Request
Access Control
CI FederationFine grain Access Control rules:
NRCan Client: Feature ConstraintsSpatial Extent Constraints
CI FederationFine grain Access Control rules:
NRCan Client: Feature ConstraintsSpatial Extent Constraints
Access Control
WFS
IMS
WFSIMS
SOA Design and Role-based Access SOA Design and Role-based Access ControlControl
Demonstration
GaiaViewer
HTTPS
IMS
NSDI WFS(CubeSTOR)
WFS
Carbon Arc
WMS &WFS Access Control
Rules
WMS
Access Control Rules
Access Control Rules
Architecture Architecture
CubeSERVCubeSERV
ArcGIS 9.2 DesktopAny Windows Desktop
Testing - Role-based Access ControlTesting - Role-based Access Control
• Access Control by –• Role
• Geography
• Feature
• OGC Operation
• Roles –• NSDI User – ‘Jeff’
• EOC User – ‘Keith’
• DataProvider – ‘Edric’
• WFS to Secure SDI client
Jeff
EdricKeith
Island of Galveston
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Jeff
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Jeff
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Jeff
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Jeff
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Jeff
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control
Keith
Jeff
Jeff
Free Secure SDI client available atwww.thecarbonportal.net
Secure SDI – Feature Level Security Secure SDI – Feature Level Security
Jeff
Secure SDI – Feature Level Security Secure SDI – Feature Level Security
Keith
Secure SDI – Feature Level Security Secure SDI – Feature Level Security
Keith
Secure SDI – Feature Level Security Secure SDI – Feature Level Security
Secure SDI – By OGC Operation Secure SDI – By OGC Operation
Secure SDI – By OGC Operation Secure SDI – By OGC Operation
Secure SDI – By OGC Operation Secure SDI – By OGC Operation
Secure SDI – By OGC Operation Secure SDI – By OGC Operation
Free Secure SDI client available atwww.thecarbonportal.net
Secure SDI – By OGC Operation Secure SDI – By OGC Operation
Access Controls Rules Access Controls Rules
Web Services in DevelopmentWeb Services in DevelopmentService Description
NSDI Web and Feature Service (available)
Serves national-level roads, hydrography, and governmental units through OGC-compliant WMS/WFS; supports Filter Encoding to constrain queries
Secure SDI Web Feature Service
Implement role-based access control for national-level roads, hydrography, and governmental units via WFS and CubeWerx IMS
Identity Management Service
Enables development of access control rules, single-sign on, authentication, access control and other security functions
Project DeliverablesProject Deliverables
• Wiki to all project documents
• Best Practices
• Common terms
• Processes and Models
• Lessons Learned
• Working Services and Examples
Questions?Questions?
Best Practices in Best Practices in Geospatial SOAGeospatial SOA
NSDI Cooperative Agreements Program (CAP) 2008NSDI Cooperative Agreements Program (CAP) 2008Best Practices in Geospatial Service Oriented Architecture (SOA) ProjectBest Practices in Geospatial Service Oriented Architecture (SOA) Project
Contacts:Contacts:
Neil Devadasan, [email protected] Devadasan, [email protected] Ehman, [email protected] Ehman, [email protected] Harrison, [email protected] Jeff Harrison, [email protected]