Vlaams Biodiversiteitsportaal

This project is the main source for developing the Flemish Biodiversity Portal.
It is a customisation of the Atlas of Living Australia project.
That project, started in 2008 in Australia, was aimed at providing easy access to all their biodiversity data.
It has since been made open-source and is currently used by a number of countries around the world.

Architecture

A DrawIO diagram showing an overview of the current architecture can be found in the /docs folder.

Web Application

The platform is made up of a number of microservices.
Almost all of them use Grails as a framework.
These are all containerised using docker and deployed to AWS ECS. You can find the Dockerfiles in the /docker folder.
Internet access to the services is managed by an AWS Application Load Balancer.

Config files are stored separately in the /config folder.
This keeps us from needing to rebuild the docker images every time the configuration or environment of a service is changed. On special config folder is /config/common, which contains configuration shared between most of the services.

Finally, the static landing page, together with the custom UI Theming is stored in the /branding folder.
These files are served by an S3 bucket together with an AWS CloudFront distribution.

Data pipelines

Data is ingested into the platform using a single AWS step function.
Its definition is currently maintained in the terraform project.

It uses a combination of AWS Batch and EMR to index all occurrence data, managed in the collectory service,
and sample it against the species taxonomy, species list, and spatial layers.
The data-processing logic can be found in the gbif-pipelines project.

The indexed data is finally uploaded to the SOLR service for use by the web platform.

User Authentication and Authorization

User authentication and authorization uses openID connect. It is currently provided by AWS Cognito.
But we plan on switching to keycloak before launch.

Running the portal

Cloud

The portal is currently deployed to AWS using terraform.
That logic is maintained in a separate, private project: inbo-aws-biodiversiteitsportaal-terraform
Look there for more information on how to make changes to the cloud environments.

Docker images

The definition of the docker images can be found in the /docker folder. To build them and release them to the AWS Elastic Container Registry, you can use the build.sh script.

# Get AWS ECR authorization token
aws ecr get-login-password --profile <aws profile name> | docker login --username AWS --password-stdin 632683202044.dkr.ecr.eu-west-1.amazonaws.com

# Build and push the images
cd docker && DOCKER_BUILDKIT=1 COMPOSE_PARALLEL_LIMIT=1 docker-compose build --push

The COMPOSE_PARALLEL_LIMIT is needed because most of the images share a single gradle cache.
Most of the projects have the Australian gradle repo hard coded and this makes downloading the dependencies very slow. Unfortunately it is not possible to share a gradle between different instances of gradle.
That means we can only build a single image at a time.

Additionally a specific buildx builder might be required to build the images. Again to limit the amount of concurrent gradle instances.

docker buildx create --use \                                                                                                                            ✔  09:23:28 ▓▒░
  --name living-atlas \
  --driver docker-container \
  --config ./buildkitd.toml

Local

To run the portal locally, you can use the docker-compose files in the /docker folder.

cd docker && docker-compose up

Be aware that running the entire platform requires a lot of resources.
(We are currently working on a hopefully more lightweight version)

The platform currently uses subdomains to differentiate between the different services. To make this work locally, you need to add the following lines to your /etc/hosts file.

127.0.0.1 localhost branding.la-flanders.org collections.la-flanders.org records.la-flanders.org records-ws.la-flanders.org species-ws.la-flanders.org auth.la-flanders.org logger.la-flanders.org images.la-flanders.org lists.la-flanders.org regions.la-flanders.org species.la-flanders.org la-flanders.org spatial.la-flanders.org index.la-flanders.org mock-oauth2-server

To generate the static pages like the homepage and styling, you also need to run the following command in the branding folder

cd branding
git submodule update --init --recursive
npm install
npx brunch build --production

Differences with the cloud environments

Because some AWS Cloud services are not available locally, alternatives are used in the local environment. These are:

• nginx
  Instead of the AWS Application Load Balancer and the AWS CloudFront distribution with static pages.
• mock-oauth2
  Instead of AWS Cognito for user authentication and authorization.
• mailhog
  Instead of SES a smtp server.

Making changes to the actual code

This project only contains the things needed to build and configure the platform.
No actual code is managed here.

The code for the different components can be found in their respective repositories.
We try to use the latest officially released versions, maintained by the Atlas of Living Australia community.

However, when needed, some of those repositories are forked in order to make things work for us.
Hopefully these forks are temporary and will be merged back into the original repositories.
Or until we figure out what is wrong with our configuration to necessitate the changes.

To check with version of a component is being used, look at their Dockerfile in the /docker folder.

Contributing

We use Github issues to track all the work on the portal.
Feel free to create an issue if you have a question or want to suggest a change.