Best Practices in Geospatial SOA NSDI Cooperative Agreements Program (CAP) 2008 Best Practices in Geospatial Service Oriented Architecture (SOA) Project

Best Practices in Best Practices in Geospatial SOAGeospatial SOA

NSDI Cooperative Agreements Program (CAP) 2008NSDI Cooperative Agreements Program (CAP) 2008Best Practices in Geospatial Service Oriented Architecture (SOA) ProjectBest Practices in Geospatial Service Oriented Architecture (SOA) Project

Contacts:Contacts:

Neil Devadasan, [email protected] Devadasan, [email protected] Ehman, [email protected] Ehman, [email protected] Harrison, [email protected] Jeff Harrison, [email protected]

TopicsTopics

• Introduction

• What is SOA? Some Common Definitions

• Defining Requirements and Processes

• Designing and Deploying SOA

• Questions

IntroductionIntroduction

• For the US Federal Government’s Geospatial Line of Business (LoB) effective design and deployment of Service Oriented Architecture (SOA) using Web Services will determine the success of shared access to geospatial data and applications.

Geospatial Web Services...

Services Oriented Architecture (SOA)

Users Citizens

Federal Data Providers

Maps and location-aware technology

Geospatial Assets

Governance

CAP 2008 Category 2 ProjectsCAP 2008 Category 2 Projects• Government and industry leaders design, deploy, and

document reusable geospatial services and applications using SOA.

• Solutions satisfy multi-agency requirements by modeling business processes & related data and service components.

• Documents best practices to educate federal agencies on design, implementation, and application of government-wide services for Geospatial LoB.

ParticipantsParticipants

• Image Matters and EPA

• The Polis Center, Indiana University, USGS and NWS

• CubeWerx and US Army Corps of Engineers (with support from The Carbon Project)

Geospatial Web Services...Services Oriented Architecture (SOA)

Users Citizens

Data Providers

Geospatial Assets

Governance

What’s the best way to deploy SOA for our Geo-Assets?

Example of the ChallengeExample of the Challenge

• Quick look at interagency processes enabled by geospatial SOA

• For example, regulatory permitting that requires data from US Army Corps of Engineers, EPA, USGS and others…

Geospatial Web Services...Services Oriented Architecture (SOA)

EPA AnalystsEPA & COE Managers

USGS NHD WFS

Geospatial Assets

Governance

FWS NWI WFS

USGS Contextual LayersWMS

What is SOA?What is SOA?

• SOA is software architecture oriented toward Services

• Service-oriented architecture (SOA) describes a category of composite applications composed of service provider and service consumer components.

• SOA segregates business logic and offers location transparency for the service providers and consumers.

• The SOA approach lets you replace or upgrade individual components in the application without affecting other components or the process as a whole.

Common DefinitionsCommon Definitions

1. metadata describing the operations and geographic information available at a server [ISO 19128 draft]

Developing geoSOADeveloping geoSOA

Model Business ProcessElicit Requirements

Design

Integrate and BuildTest andDeploy

Monitor and Manage


UsersCitizens

Data Providers

Geospatial Assets

Governance

Analysis NSDI Project

Access-Control NSDI Project

Services NSDI Project

Defining Defining Requirements Requirements and Processesand Processes

Data/ Service Provider


Data Provider

1. Publish2. Discover

3. Access

ProviderUser

Agent

Data and Services

Registry

Web Application

UserUser

NSDI Framework

Data/ Service ProviderUserUser

UserUser

UserUser

UserUser

UserUser

UserUser










CONOPsCONOPs

Use CasesUse Cases


UsersCitizens

Data Providers

Geospatial Assets

Governance




Concept of Operations (CONOPs)Concept of Operations (CONOPs)

Use CasesUse Cases


UsersCitizens

Data Providers

Geospatial Assets

Governance




Online stream gauges

Geospatial Infrastructure

Building and Property Losses

Geo-Spatial Flood Maps

USGS Water Data

Flood planner

Concerned Citizen

Meteorologist

Hydrologist



Emergency Responder

Socio-Demographic Statistics

Flood Forecast

1 Flood forecast are issued 2 Geo-Spatial Flood Maps are Generated 3 Building and Property Losses are Generated 4 Socio-Demographic Statistics are Generated

Local Government Data

Building Property Assessment, Socio-Demographics

DEM

Use CasesUse Cases


UsersCitizens

Data Providers

Geospatial Assets

Governance




Geospatial Infrastructure


Data Provider

1. Publish2. Discover

3. Access

ProviderUser

Agent

Data and Services

Registry

Web Application

User

NSDI Framework

Other SDI

Data/ Service Provider User

User

User

User

User

User



1 - Authentication

2 - Single Sign-On

3 - Access Control





USACE Data

Provider

Portal Provider

Security Manager

NSDIData Provider

USACE End User

‘Keith’

NSDIEnd User

‘Jeff’

ManageUsers

ManageRoles

ManageCredentials

ManageGroups

ManageAccess Control

Rules

AuthorizeUsers

Access byFeature

Access byRole

DeployData

Access byGeography

Update by Feature

Update by Role

Update byOperation Type

Access byOperation Type

Use CasesUse Cases


UsersCitizens

Data Providers

Geospatial Assets

Governance




Designing Designing and and

Deploying Deploying SOASOA


UsersCitizens

Data Providers

Geospatial Assets

Governance




NWI WFS(wetlands)

NHD WFS(streams)

G-A WPS

G-A Server

G-A Client

Web Browser

Geo-AnalysisApplication

Javascript

Java

Architecture Architecture

Sequence Diagrams Sequence Diagrams

1. Zoom to AOI

2. Select NWI polys

3. Initiate WPS and name results set

4. View/Add/Save metadata

5. List processed features

6. Examine map

7. Add contextual layers

User StepsUser Steps

Web Services in DevelopmentWeb Services in DevelopmentService Description

National Wetlands Inventory – Web Feature Service

Serves FWS wetland polygons through OGC-compliant WFS; supports Filter Encoding specification to constrain queries

Intersection GeoAnalysis – Web Processing Service

Find geometric intersection of features from two different sets of vector geometries accessed via WFS

Proximity GeoAnalysis – Web Processing Service

Finds distances between closest locations of features from two different sets of vector geometries accessed via WFS


UsersCitizens

Data Providers

Geospatial Assets

Governance




• A SOA solution will provide a very cost effective solution• SOA provides a platform to perform complex business processes• Without SOA developing a process to cater all partners was unattainable

• SOA is inherently distributed with multiple services• Service applications are heterogeneous• It provides synchronous and asynchronous access to PI

• Complexity of service orchestration is handled by• Accepted solution is BPEL• Acts like the “middle man” or the “centralized web service”• BPEL keeps process state in schema• BPEL coordinates synchronous and asynchronous communication• BPEL performs Receive, Assign, Invoke and Reply activities

• BPEL processes are deployed on ESB based on JBI

Designing a Geospatial SOADesigning a Geospatial SOA

Translating requirements into UML, documenting the process.

Design Design

Translating UML into BPEL workflow: service composition and execution.

LINK TO BPEL GRAPHIC.

• Floods cause more death and destruction of property than any other natural hazard in the United States– 75% of all federally declared disasters are flood-

related.

• The June 2008 floods in Indiana, Illinois, Iowa, and other parts of the Midwest reinforced the importance of this problem.– <20 deaths but potentially billions of dollars in

damage.

Flooding Flooding

• Flood planning, forecasting, and emergency response can all be greatly enhanced by integration of online Web services.

• Existing services include online NWS stream gauges and Weather forecasting services.

• Our project goal is to couple these to flood modeling services, loss estimation services, and mapping services.

• Connect these services end-to-end as workflows.– Provide planning capabilities to mitigate extreme events.– Provide alert systems to quickly estimate at-risk areas– Automate and streamline loss estimation to simplify

disaster declartations.

What can be done? What can be done?

• Ravenswood neighborhood of Indianapolis.– Frequent flooding; site of IMA Virginia B. Fairbanks Art

and Nature Park – Extensive historical data, detailed elevation data,

building inventory

Project Study AreaProject Study Area


Inundation Modeling Service

Web service wrapping of the USGS FastMECH service.

Parcel Information Service

Extract land parcel metadata from WFS: IDs, parcel centroids, etc.

Building Information Service

Extract building structural information, and assessed values from Indiana Department of Local Government and Finance database

Loss Estimation Service

Uses HAZUS-MH as a backend service to perform Level 2 Analysis

Mapping and Plotting Service

Export inundation results as KML


UsersCitizens

Data Providers

Geospatial Assets

Governance




Identity ManagementWeb Server

NSDI Framework site

WFS Request &

Response

Client

Scenario 1: NSDI Client accessing a local resource

Authentication

Login

CookieWFS Response

Access Control

WFS Request

WFS

IMS

SOA Design and Role-based Access SOA Design and Role-based Access ControlControl

Scenario 2: NSDI Client accessing a remote resource


Other Client


NSDI Framework site

WFS Request &

Response

Client

Other SDI(Critical Infrastructure site)

Authentication

Login

CookieWFS Response

WFS Request &

Response

WFS Request

Access Control

CI FederationFine grain Access Control rules:

NRCan Client: Feature ConstraintsSpatial Extent Constraints

CI FederationFine grain Access Control rules:

NRCan Client: Feature ConstraintsSpatial Extent Constraints

Access Control

WFS

IMS

WFSIMS

SOA Design and Role-based Access SOA Design and Role-based Access ControlControl

Demonstration

GaiaViewer

HTTPS

IMS

NSDI WFS(CubeSTOR)

WFS

Carbon Arc

WMS &WFS Access Control

Rules

WMS

Access Control Rules

Access Control Rules

Architecture Architecture

CubeSERVCubeSERV

ArcGIS 9.2 DesktopAny Windows Desktop

Testing - Role-based Access ControlTesting - Role-based Access Control

• Access Control by –• Role

• Geography

• Feature

• OGC Operation

• Roles –• NSDI User – ‘Jeff’

• EOC User – ‘Keith’

• DataProvider – ‘Edric’

• WFS to Secure SDI client

Jeff

EdricKeith

Island of Galveston

Secure SDI – Geographic Access Control Secure SDI – Geographic Access Control


Jeff


Jeff


Jeff


Jeff


Jeff






Keith

Jeff

Jeff

Free Secure SDI client available atwww.thecarbonportal.net

Secure SDI – Feature Level Security Secure SDI – Feature Level Security

Jeff


Keith


Keith


Secure SDI – By OGC Operation Secure SDI – By OGC Operation




Free Secure SDI client available atwww.thecarbonportal.net


Access Controls Rules Access Controls Rules


NSDI Web and Feature Service (available)

Serves national-level roads, hydrography, and governmental units through OGC-compliant WMS/WFS; supports Filter Encoding to constrain queries

Secure SDI Web Feature Service

Implement role-based access control for national-level roads, hydrography, and governmental units via WFS and CubeWerx IMS

Identity Management Service

Enables development of access control rules, single-sign on, authentication, access control and other security functions

Project DeliverablesProject Deliverables

• Wiki to all project documents

• Best Practices

• Common terms

• Processes and Models

• Lessons Learned

• Working Services and Examples

Questions?Questions?

Best Practices in Best Practices in Geospatial SOAGeospatial SOA

NSDI Cooperative Agreements Program (CAP) 2008NSDI Cooperative Agreements Program (CAP) 2008Best Practices in Geospatial Service Oriented Architecture (SOA) ProjectBest Practices in Geospatial Service Oriented Architecture (SOA) Project

Contacts:Contacts:

Neil Devadasan, [email protected] Devadasan, [email protected] Ehman, [email protected] Ehman, [email protected] Harrison, [email protected] Jeff Harrison, [email protected]