Publish a Vitessce notebook on Posit Connect about vitessce-python HOT 11 CLOSED

Hi,
Mark can elaborate more on the particulars of hosting data for Vitesse, but this seems like a Posit Connect question. We at CCB have been hosting Vitesse widgets for our projects on posit connect and the key for us has been hosting the data on a remote bucket such as AWS S3, saving the config on S3, then publishing just a notebook that pulls the config from the s3 URL and displays the widget. Alternatively there are ways to publish just the plot from push-button publishing in RStudio which works only if the view config already works with remote data sources.

In short, I would not rely on Posit Connect as the data server and your notebook should not run data processing pipeline AND the widget display code. You should host or mount data elsewhere then publish the visualizations to Posit Connect. Vitesse.io might also be another option.

from vitessce-python.

Thanks @lee-t for the suggestion.

In my use case, I would like to only give authorized access to users who can see the vitessce application. Is there a way to provide a Bearer token in the request headers?

from vitessce-python.

I don't think vitessce has the means to manage tokens for auth, you would need a different library on whatever you're hosting vitessce on unless (as you mentioned in the parent issue) you're on posit connect in which you shouldn't be bothering because the platform should do that management for you.
Posit Connect can integrate with a number of 3rd party products and authentication providers for user authentication. Depending on the provider or the integration standard used to integrate with the provider, varying levels of functionality will be supported for external groups of users. Read the admin or user docs for more info.

from vitessce-python.

Thanks @lee-t.
Yes, I am able to use Posit Connect's authentication module to generate an auth token for the user. I know that's a bit different than the original subject of this issue, does vitessce has the capability to include that auth token in the header of the Get request vitessce uses to fetch files using https?

Maybe something like what is shown here?

from vitessce-python.

Hi @georgezakinih ,
I am not very familiar with Posit Connect so I will defer to @lee-t who has more expertise about that. Regarding definition of additional headers, this can be done with the requestInit property within each file definition. The values of requestInit correspond to the second parameter of the JS fetch function https://developer.mozilla.org/en-US/docs/Web/API/fetch

If using the Vitessce Python API, a dict can be passed to the request_init parameter in the constructor of the AnnDataWrapper class:

from vitessce-python.

Regarding the proxy support, the proxy=True argument can be passed to several of the functions including the VitessceConfig.widget function (ctrl+F for "proxy" on this page https://vitessce.github.io/vitessce-python/api_config.html for additional documentation). This assumes jupyter_server_proxy https://jupyter-server-proxy.readthedocs.io/en/latest/install.html is installed. It has only been tested with Jupyter Notebooks and Jupyter Lab, so I am not sure whether it would work with Voila or Posit Connect. You could try with both the proxy and host_name parameters of VitessceConfig.display like VitessceConfig.display(proxy=True, host_name="http://posit_connect.com/something") which may be more robust to different notebook platforms.

from vitessce-python.

Thanks @keller-mark and @lee-t .

Yes the display method looks like what I should try. I appreciate your thoughts what should be the base_url and port and I test with this example: https://vitessce.github.io/vitessce-python/notebooks/widget_pbmc.html

Thanks for the point to request_init. I see its get added to the "requestInit" attribute in the config file. I will test this out.

from vitessce-python.

@keller-mark, in my use case, I will need add every file separately in a dataset.
Current the add_file function does not take the requestInit attribute.

Do you suggest a workaround?

from vitessce-python.

Hi @keller-mark , I have added the option in the add_file function to read the "requestInit" from the json configuration file.
Now my configuration looks like:

      "fileType": "obsEmbedding.csv",
      "url": "https://my-authenticated-endpoint",
      "coordinationValues": {
        "obsType": "cell",
        "embeddingType": "t-SNE"
      },  
      "requestInit": {
        "method": "GET",
        "headers": {"Authorization": "Bearer xyz"}
      },  

Is that what vitessce expects? For some reason, testing with the configuration above shows that the request is sent (in chrome developer view), but it does not return successfully (not showing any return code)

P.S., in this documentation, I believe the attribute is "headers" with 's'.

from vitessce-python.

Looking further, I see the error is related to CORS. This happens when I add the "Authorization" attribute to the headers in the config file. If I remove the "Authorization" attribute, the request goes through and returns "unauthorized" with 401 error.

@keller-mark and @lee-t , is there anything I am missing in this process?

from vitessce-python.

@keller-mark @lee-t , it turned out to be a server problem of not allowing CORS. Disabling cores in the browser solved the problem. Thanks again for your help.

from vitessce-python.