README
¶
go-placeholder-client-www
This is a Go package that provides a simple web application for querying a (Pelias) Placeholder server and uses Bootstrap, Leaflet, TangramJS and Nextzen tiles to render pages and maps. All (JavaScript and CSS) assets are bundled locally with the application and it is possible to configure the application to serve and cache local copies of Nextzen tiles.
The application will import and overlay Who's On First data for query results. As of this writing those resources can not be cached or served locally.
Important
This is work in progress. It works but the documentation is not complete. There are also a number of known-known UI/UX issues that remain to be addressed.
Tools
server
> ./bin/server -h
-api
Enable an API endpoint for Placeholder functionality.
-api-autocomplete
Enable autocomplete for the 'search' API endpoint.
-api-url string
The URL (a relative path) for the API endpoint. (default "/api/")
-authenticator-uri string
A valid sfomuseum/go-http-auth.Authenticator URI. (default "null://")
-cors
Enable CORS support for the API endpoint.
-cors-origin value
One or more hosts to restrict CORS support to on the API endpoint. If no origins are defined (and -cors is enabled) then the server will default to all hosts.
-nextzen-apikey string
A valid Nextzen API key
-nextzen-style-url string
... (default "/tangram/refill-style.zip")
-nextzen-tile-url string
... (default "https://tile.nextzen.org/tilezen/vector/v1/512/all/{z}/{x}/{y}.mvt")
-opensearch
... (default true)
-opensearch-plugin-url string
... (default "/opensearch/")
-opensearch-search-form string
...
-opensearch-search-template string
...
-placeholder-endpoint string
The address of the Placeholder endpoint to query. (default "http://localhost:3000")
-proxy-test-network
Ensure outbound network connectivity for proxy tiles
-proxy-tiles
Proxy (and cache) Nextzen tiles.
-proxy-tiles-dsn string
A valid tile proxy DSN string. (default "gocache://")
-proxy-tiles-timeout int
The maximum number of seconds to allow for fetching a tile from the proxy. (default 30)
-proxy-tiles-url string
The URL (a relative path) for proxied tiles. (default "/tiles/")
-ready-check
Enable the Placeholder "ready" check handler. (default true)
-ready-check-ttl int
The time to live, in seconds, for the Placeholder "check". (default 60)
-ready-check-url string
The URL (a relative path) for the Placeholder "ready" check handler. (default "/ready/")
-server-uri string
... (default "http://localhost:8080")
-static-prefix string
Prepend this prefix to URLs for static assets.
-url-prefix string
Prepend this prefix to application URLs.
-www
Enable a human-facing web endpoint for Placeholder functionality. (default true)
For example
go run -mod vendor cmd/server/main.go \
-nextzen-apikey {NEXTZEN_APIKEY} \
-proxy-tiles
-proxy-tiles-dsn 'cache=blob blob=s3://{S3_BUCKET}?region={S3_REGION}&credentials={AWS_CREDENTIALS'
Authentication
Authentication is performed using the sfomuseum/go-http-auth package. The default "authenticator" is that package's NullAuthenticator which allows all requests. For example:
authenticator_uri := "null://"
authenticator, err := auth.NewAuthenticator(ctx, authenticator_uri)
search_handler, err := http.NewSearchHandler(search_opts)
search_handler = authenticator.WrapHandler(search_handler)
mux.Handle(search_url, search_handler)
If you want to restrict access to the /search and /api endpoints you will need to implement the auth.Authenticator interface to limit access in the WrapHandler method and then load it something like this:
package main
import (
"context"
_ "github.com/{YOU}/{YOUR_AUTHENTICATOR_IMPLEMENTATION}"
"github.com/sfomuseum/go-placeholder-client-www/application/server"
)
func main() {
ctx := context.Background()
server.Run(ctx)
}
AWS
This diagram represents the earliest attempts to get this working in AWS. It does work but requires a non-trivial setup and still has a number of AWS-related issues (described below) that make the whole thing a bit of a nuisance.
It describes two different setups:
Lambda + API Gateway + CloudFront
This setup runs the server tool as a Lambda function fronted by an API Gateway that is, in turn, fronted by a CloudFront distribution.
The problem with this setup is that, pending patches to the way that Tangram.js issues Fetch requests (naming passing along an HTTP Accept header) there is no way to tell API Gateway to return zipped scene file (map styles) bundled in the go-http-tangramjs handler) as binary data which confuses the map renderer something fierce. The only option here is to use remote scenefiles hosted on the Nextzen website.
ECS Fargate + CloudFront
This setup runs the server as a long-running process in an ECS (Fargate) container, fronted by a CloudFront distribution.
The problem with this set up is that in order to cache (read or write) Nextzen tiles to a local S3 bucket you need to do some AWS VPC hoop-jumping to allow you to retrieve both local AWS resources (S3) and things out on the internet (source tiles from Nextzen). It's possible but it requires a lot of button-pressing and I haven't figured it out yet...
The documentation that follows is specific to the first scenario (Lambda + API Gateway + CloudFront). Documentation for the second scenario (ECS Fargate + CloudFront) still needs to be written.
Lambda
Roles
You will need a IAM role with the following (AWS managed) policies:
AWSLambdaBasicExecutionRole
Environment variables
| Key | Value | Required |
|---|---|---|
| PLACEHOLDER_PROTOCOL | lambda |
yes |
| PLACEHOLDER_PLACEHOLDER_ENDPOINT | string | yes |
| PLACEHOLDER_NEXZEN_APIKEY | string | yes |
| PLACEHOLDER_URL_PREFIX | string | no |
| PLACEHOLDER_STATIC_PREFIX | string | no |
| PLACEHOLDER_API | boolean | no |
| PLACEHOLDER_API_AUTOCOMPLETE | boolean | no |
| PLACEHOLDER_API_URI | string | no |
| PLACEHOLDER_CORS | boolean | no |
| PLACEHOLDER_CORS_ORIGIN | string | no |
| PLACEHOLDER_NEXTZEN_STYLE_URL | string | no |
| PLACEHOLDER_PROXY_TILES | boolean | no |
| PLACEHOLDER_PROXY_TILES_DSN | string | no |
| PLACEHOLDER_OPENSEARCH_PLUGIN_URL | string | no, but probably |
| PLACEHOLDER_OPENSEARCH_SEARCH_FORM | string | no, but probably |
| PLACEHOLDER_OPENSEARCH_SEARCH_TEMPLATE | string | no, but probably |
| PLACEHOLDER_AUTHENTICATOR_URI | string | no, default is null:// which allows all connections |
"Static" and "URL" prefixes
PLACEHOLDER_STATIC_PREFIX is the prefix that gets appended to linked resources in HTML pages. PLACEHOLDER_URL_PREFIX is the prefix that gets appended to URLs ("routes") that the HTTP service serves.
This gets weird and fussy in an API Gateway context because of the "stage" that gets appended. For example:
| URL | PLACEHOLDER_STATIC_PREFIX | PLACEHOLDER_URL_PREFIX | | https://{EXAMPLE}.execute-api.us-west-2.amazonaws.com/prod/placeholder/?text=boston | /prod/placeholder | /placeholder | | https://{EXAMPLE}.com/placeholder/?text=dallas | /placeholder | /placeholder |
Remember:
- The Placeholder Lambda function integration is hanging off a
/placeholderresource (rather than/) - The CloudFront origin (that references the API Gateway) has an origin path of
/proddefined
Good times...
Nextzen style URLs in a Lambda context
Assuming you're accessing this Lambda function through an API Gateway endpoint you will need to specify an externally hosted Tilezen style for the PLACEHOLDER_NEXTZEN_STYLE_URL environment variable. Something like: https://www.nextzen.org/carto/refill-style/refill-style.zip
The reasons for this is that by default API Gateway returns data as plain or base-64 encoded text. It is possible to configure API Gateway to return binary data but this is dependent on the client requesting the data to pass along an HTTP Accept header. In this case that means Tangram.js needs to request style bundles as Accept: application/zip which it doesn't as of this writing.
Pending an update to Tangram.js there are some possible alternatives (to allow using local Tangram styles) but they are still being investigated.
Proxying tiles in a Lambda context
Assuming you're connecting to a Placeholder endpoint running in an ECS instance (using the docker-placeholder container) then you will have had to set up your Lambda function inside a VPC (see above). Once you've done that your Lambda function will no longer be able to reach the external internet without adding a NAT gateway to your VPC. If you haven't done that then, unless you've pre-seeded all the tiles you're going to request, the tile proxy layer won't work because the proxy will never be able to fetch tiles from S3 let alone Nextzen (aka: the external internet).
ECS
There is also a handy Dockerfile for running things in a container. The following assumes that you want to run the placeholder-client-www server in AWS as a Fargate deployment with application load balancer (ALB) in front of it.
/usr/local/bin/placeholder-client-www,-placeholder-endpoint,{PLACEHOLDER_ENDPOINT},-host,0.0.0.0,-nextzen-apikey,{NEXTZEN_APIKEY}
Note the -host 0.0.0.0 part. This is important. Without it the health checks performed by ALB will always fail.
See also
- https://github.com/sfomuseum/go-placeholder-client
- https://github.com/sfomuseum/docker-placeholder
- https://github.com/pelias/placeholder/
See also-er
Documentation
¶
There is no documentation for this package.
Source Files
Directories