unf
/
containers
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge branch 'dicom_index' into 'main' 

add dicom_indexer image for gitlab or swarm deployment

See merge request ni-dataops/containers!4
This commit is contained in:
Basile Pinsard 2024-02-09 19:38:20 +00:00
parent 0f1a3b7ebb 6385f4f72f
commit 4440e89eca
14 changed files with 672 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.gitlab-ci.yml
View File

@ -59,3 +59,5 @@ build_all_dockers:
- heudiconv
- deface
- dicom_indexer
# TODO: add deploy job for dicom indexer, if deployed with storescp

17
docker/dicom_indexer/Dockerfile Normal file
View File

@ -0,0 +1,17 @@
FROM python:3.12-alpine
RUN apk add --no-cache ca-certificates tzdata 7zip jq\
git openssh-client git-annex curl bzip2 bash glab\
&& cp /usr/share/zoneinfo/UTC /etc/localtime \
&& apk del tzdata \
&& rm -rf /tmp/* /var/cache/apk/*
RUN apk add --no-cache dcmtk --repository=https://dl-cdn.alpinelinux.org/alpine/edge/testing
RUN pip install --break-system-packages --no-cache-dir datalad ssh_agent_setup python-gitlab pydicom pyyaml
ADD indexer /indexer
COPY entrypoint.sh /entrypoint.sh
RUN chmod +x /entrypoint.sh
ENTRYPOINT ["bash", "/entrypoint.sh"]
WORKDIR /work

40
docker/dicom_indexer/entrypoint.sh Normal file
View File

@ -0,0 +1,40 @@
#!/bin/bash
export CONTAINER_ID=$(basename $(cat /proc/1/cpuset))
GITLAB_TOKEN_SECRET=$(cat /var/run/secrets/dicom_bot_gitlab_token 2>/dev/null)
export GITLAB_TOKEN=${GITLAB_TOKEN_SECRET:=$GITLAB_TOKEN}
export GITLAB_API_URL=https://${CI_SERVER_HOST}/api/v4
export GIT_SSH_PORT=${GIT_SSH_PORT:=222}
mkdir -p ~/.ssh
# only export keys when deploying as a service on swarm
# TODO: should try using gitlab runner mechanism if not
if [ -n "${GITLAB_TOKEN}" ] ; then
# generate container specific ssh-key
ssh-keygen -f /root/.ssh/id_rsa -N ''
# register it for dicom_bot user
echo 'registering the ssh key'
export ssh_key_json=$(curl -X POST -F "private_token=${GITLAB_TOKEN}" \
-F "title="${HOSTNAME} -F "key=$(cat ~/.ssh/id_rsa.pub)" \
"${GITLAB_API_URL}/user/keys")
export ssh_key_id=$(jq .id <<< "$ssh_key_json")
fi
git config --global init.defaultBranch main
ssh-keyscan -p ${GIT_SSH_PORT} -H ${CI_SERVER_HOST} | install -m 600 /dev/stdin $HOME/.ssh/known_hosts
# example
# /usr/bin/storescp \
# -aet DICOM_SERVER_SEQUOIA\
# -pm\
# -od $DICOM_TMP_DIR -su ''\
# --eostudy-timeout ${STORESCP_STUDY_TIMEOUT:=60} \
# --exec-on-eostudy "python3 $DICOM_ROOT/exec_on_study_received.py #p " 2100 >> $DICOM_DATA_ROOT/storescp.log
# run whatever command was passed (storescp or python index_dicoms directly)
$@
if [ -n "${GITLAB_TOKEN}" ] ; then
# unregister the temporary ssh key
curl -X DELETE -F "private_token=${GITLAB_TOKEN}" "${GITLAB_API_URL}/user/keys/${ssh_key_id}"
fi

557
docker/dicom_indexer/indexer/index_dicom.py Normal file
View File

@ -0,0 +1,557 @@
import os
import pydicom as dicom
import argparse
import pathlib
import urllib.parse
import datalad.api as dlad
import datalad.config
import shutil
import gitlab
import tempfile
import logging
import subprocess
import yaml
from contextlib import contextmanager
REPO_TEMPLATES_PATH = (
pathlib.Path(os.path.dirname(os.path.realpath(__file__))) / "repo_templates"
)
DEBUG = bool(os.environ.get("DEBUG", False))
if DEBUG:
logging.basicConfig(level=logging.DEBUG)
GITLAB_REMOTE_NAME = os.environ.get("GITLAB_REMOTE_NAME", "origin")
GITLAB_TOKEN = os.environ.get("GITLAB_TOKEN", None)
GITLAB_BOT_USERNAME = os.environ.get("GITLAB_BOT_USERNAME", None)
GITLAB_BOT_EMAIL = os.environ.get("GITLAB_BOT_EMAIL", None)
BIDS_DEV_BRANCH = os.environ.get("BIDS_DEV_BRANCH", "dev")
NI_DATAOPS_GITLAB_ROOT = os.environ.get("NI_DATAOPS_GITLAB_ROOT", "ni-dataops")
S3_REMOTE_DEFAULT_PARAMETERS = [
"type=S3",
"encryption=none",
"autoenable=true",
"port=443",
"protocol=https",
"chunk=1GiB",
"requeststyle=path",
]
def git_global_setup(
storage_remote_url: urllib.parse.ParseResult, scope="global"
) -> None:
git_config = datalad.config.ConfigManager()
git_config.add("user.name", GITLAB_BOT_USERNAME, scope=scope)
git_config.add("user.email", GITLAB_BOT_EMAIL, scope=scope)
if storage_remote_url.scheme == "s3":
import socket
s3_ip = socket.gethostbyname(storage_remote_url.hostname)
git_config.add(
"annex.security.allowed-ip-addresses",
s3_ip,
scope=scope,
)
# TODO: rewrite for pathlib.Path input
def sort_series(path: pathlib.Path) -> None:
"""Sort series in separate folder
Parameters
----------
path : str
path to dicoms
"""
files = path.glob(os.path.join(path, "*"))
for f in files:
if not os.path.isfile(f):
continue
dic = dicom.read_file(f, stop_before_pixels=True)
# series_number = dic.SeriesNumber
series_instance_uid = dic.SeriesInstanceUID
subpath = os.path.join(path, series_instance_uid)
if not os.path.exists(subpath):
os.mkdir(subpath)
os.rename(f, os.path.join(subpath, f.name))
def _build_arg_parser() -> argparse.ArgumentParser:
p = argparse.ArgumentParser(
description="dicom_indexer - indexes dicoms into datalad"
)
p.add_argument("input", help="path/url of the dicom.")
p.add_argument(
"--gitlab-url",
type=str,
default=os.environ.get("GITLAB_SERVER", None),
help="http(s) url to the gitlab server where to push repos",
)
p.add_argument(
"--gitlab-group-template",
default="{ReferringPhysicianName}/{StudyDescription}",
type=str,
help="string with placeholder for dicom tags",
)
p.add_argument(
"--session-name-tag",
default="PatientName",
type=str,
help="dicom tags that contains the name of the session",
)
p.add_argument("--storage-remote", help="url to the datalad remote")
p.add_argument(
"--sort-series",
action="store_true",
default=True,
help="sort dicom series in separate folders",
)
p.add_argument(
"--fake-dates",
action="store_true",
help="use fake dates for datalad dataset",
)
p.add_argument(
"--p7z-opts",
type=str,
default="-mx5 -ms=off",
help="option for 7z generated archives",
)
return p
def main() -> None:
parser = _build_arg_parser()
args = parser.parse_args()
if not GITLAB_REMOTE_NAME:
raise RuntimeError("missing GITLAB_REMOTE_NAME env var")
if not GITLAB_TOKEN:
raise RuntimeError("missing GITLAB_TOKEN env var")
if not GITLAB_BOT_USERNAME:
raise RuntimeError("missing GITLAB_BOT_USERNAME env var")
input = urllib.parse.urlparse(args.input)
output_remote = urllib.parse.urlparse(args.storage_remote)
gitlab_url = urllib.parse.urlparse(args.gitlab_url)
git_global_setup(output_remote)
with index_dicoms(
input,
sort_series=args.sort_series,
fake_dates=args.fake_dates,
p7z_opts=args.p7z_opts,
) as dicom_session_ds:
session_metas = extract_session_metas(dicom_session_ds)
if (
not input.scheme
or input.scheme == "file"
or args.force_export
and output_remote
):
export_data(
dicom_session_ds,
output_remote,
dicom_session_tag=args.session_name_tag,
session_metas=session_metas,
)
setup_gitlab_repos(
dicom_session_ds,
gitlab_url=gitlab_url,
dicom_session_tag=args.session_name_tag,
session_metas=session_metas,
gitlab_group_template=args.gitlab_group_template,
)
@contextmanager
def index_dicoms(
input: urllib.parse.ParseResult,
sort_series: bool,
fake_dates: bool,
p7z_opts: str,
) -> dlad.Dataset:
"""Process incoming dicoms into datalad repo"""
with tempfile.TemporaryDirectory(delete=not DEBUG) as tmpdirname:
dicom_session_ds = dlad.create(tmpdirname, fake_dates=fake_dates)
if not input.scheme or input.scheme == "file":
archive = import_local_data(
dicom_session_ds,
pathlib.Path(input.path),
sort_series=sort_series,
p7z_opts=p7z_opts,
)
elif input.scheme in ["http", "https", "s3"]:
archive = import_remote_data(dicom_session_ds, input_url)
# index dicoms files
dlad.add_archive_content(
archive,
dataset=dicom_session_ds,
strip_leading_dirs=True,
commit=False,
)
# cannot pass message above so commit now
dicom_session_ds.save(message=f"index dicoms from archive {archive}") #
# optimize git index after large import
#dicom_session_ds.repo.gc() # aggressive by default
yield dicom_session_ds
def export_data(
dicom_session_ds: dlad.Dataset,
output_remote: urllib.parse.ParseResult,
dicom_session_tag: str,
session_metas: dict,
) -> None:
if "ria" in output_remote.scheme:
export_to_ria(
dicom_session_ds,
output_remote,
dicom_session_tag=dicom_session_tag,
session_metas=session_metas,
)
elif output_remote.scheme == "s3":
export_to_s3(dicom_session_ds, output_remote, session_metas)
def set_bot_privileges(
gitlab_conn: gitlab.Gitlab, gitlab_group_path: pathlib.Path
) -> None:
# add maint permissions for the dicom bot user on the study repos
study_group = get_or_create_gitlab_group(gitlab_conn, gitlab_group_path)
bot_user = gitlab_conn.users.list(username=GITLAB_BOT_USERNAME)
if not bot_user:
raise RuntimeError(
f"bot_user: {GITLAB_BOT_USERNAME} does not exists in gitlab instance"
)
bot_user = bot_user[0]
if not any(m.id == bot_user.id for m in study_group.members.list()):
study_group.members.create(
{
"user_id": bot_user.id,
"access_level": gitlab.const.AccessLevel.MAINTAINER,
}
)
def setup_gitlab_repos(
dicom_session_ds: dlad.Dataset,
gitlab_url: urllib.parse.ParseResult,
session_metas: dict,
dicom_session_tag: str,
gitlab_group_template: str,
) -> None:
gitlab_conn = connect_gitlab(gitlab_url)
# generate gitlab group/repo paths
gitlab_group_path = pathlib.Path(gitlab_group_template.format(**session_metas))
dicom_sourcedata_path = gitlab_group_path / "sourcedata/dicoms"
dicom_session_path = dicom_sourcedata_path / session_metas["StudyInstanceUID"]
dicom_study_path = dicom_sourcedata_path / "study"
# create repo (should not exists unless rerun)
dicom_session_repo = get_or_create_gitlab_project(gitlab_conn, dicom_session_path)
dicom_session_ds.siblings(
action="configure", # allow to overwrite existing config
name=GITLAB_REMOTE_NAME,
url=dicom_session_repo._attrs["ssh_url_to_repo"],
)
"""
# prevent warnings
dicom_session_ds.config.add(
f"remote.{GITLAB_REMOTE_NAME}.annex-ignore",
value='false',
scope='local'
)"""
set_bot_privileges(gitlab_conn, gitlab_group_path)
# and push
dicom_session_ds.push(to=GITLAB_REMOTE_NAME)
## add the session to the dicom study repo
dicom_study_repo = get_or_create_gitlab_project(gitlab_conn, dicom_study_path)
with tempfile.TemporaryDirectory(delete=not DEBUG) as tmpdir:
dicom_study_ds = dlad.install(
source=dicom_study_repo._attrs["ssh_url_to_repo"],
path=tmpdir,
)
"""
# prevent warnings when pushing
dicom_study_ds.config.add(
f"remote.origin.annex-ignore",
value='false',
scope='local'
)"""
if dicom_study_ds.repo.get_hexsha() is None or dicom_study_ds.id is None:
dicom_study_ds.create(force=True)
# add default study DS structure.
init_dicom_study(dicom_study_ds, gitlab_group_path)
# initialize BIDS project
init_bids(gitlab_conn, dicom_study_repo, gitlab_group_path)
# create subgroup for QC and derivatives repos
get_or_create_gitlab_group(gitlab_conn, gitlab_group_path / "derivatives")
get_or_create_gitlab_group(gitlab_conn, gitlab_group_path / "qc")
dicom_study_ds.install(
source=dicom_session_repo._attrs["ssh_url_to_repo"],
path=session_metas.get(dicom_session_tag),
)
# Push to gitlab
dicom_study_ds.push(to="origin")
def init_bids(
gl: gitlab.Gitlab,
dicom_study_repo: dlad.Dataset,
gitlab_group_path: pathlib.Path,
) -> None:
bids_project_repo = get_or_create_gitlab_project(gl, gitlab_group_path / "bids")
with tempfile.TemporaryDirectory() as tmpdir:
bids_project_ds = dlad.install(
source=bids_project_repo._attrs["ssh_url_to_repo"],
path=tmpdir,
)
shutil.copytree(
REPO_TEMPLATES_PATH / "bids", bids_project_ds.path, dirs_exist_ok=True
)
write_ci_env(bids_project_ds, gitlab_group_path)
bids_project_ds.create(force=True)
bids_project_ds.save(path=".", message="init structure and pipelines")
bids_project_ds.install(
path="sourcedata/dicoms",
source=dicom_study_repo._attrs["ssh_url_to_repo"],
)
# TODO: setup sensitive / non-sensitive S3 buckets
bids_project_ds.push(to="origin")
# create dev branch and push for merge requests
bids_project_ds.repo.checkout(BIDS_DEV_BRANCH, ["-b"])
bids_project_ds.push(to="origin")
# set protected branches
bids_project_repo.protectedbranches.create(data={"name": "convert/*"})
bids_project_repo.protectedbranches.create(data={"name": "dev"})
def init_dicom_study(
dicom_study_ds: dlad.Dataset,
gitlab_group_path: pathlib.Path,
) -> None:
shutil.copytree(
REPO_TEMPLATES_PATH / "dicom_study", dicom_study_ds.path, dirs_exist_ok=True
)
write_ci_env(dicom_study_ds, gitlab_group_path)
dicom_study_ds.save(path=".", message="init structure and pipelines")
dicom_study_ds.push(to="origin")
def write_ci_env(
ds: dlad.Dataset,
gitlab_group_path: pathlib.Path,
) -> None:
env = {
"variables": {
"STUDY_PATH": str(gitlab_group_path),
"BIDS_PATH": str(gitlab_group_path / "bids"),
}
}
with (pathlib.Path(ds.path) / ".ci-env.yml").open("w") as outfile:
yaml.dump(env, outfile, default_flow_style=False)
SESSION_META_KEYS = [
"StudyInstanceUID",
"PatientID",
"PatientName",
"ReferringPhysicianName",
"StudyDate",
"StudyDescription",
]
def extract_session_metas(dicom_session_ds: dlad.Dataset) -> dict:
all_files = dicom_session_ds.repo.get_files()
for f in all_files:
try:
dic = dicom.read_file(dicom_session_ds.pathobj / f, stop_before_pixels=True)
except Exception as e: # TODO: what exception occurs when non-dicom ?
continue
# return at first dicom found
return {k: str(getattr(dic, k)).replace("^", "/") for k in SESSION_META_KEYS}
raise InputError("no dicom found")
def import_local_data(
dicom_session_ds: dlad.Dataset,
input_path: pathlib.Path,
sort_series: bool = True,
p7z_opts: str = "-mx5 -ms=off",
):
dest = input_path.name
if input_path.is_dir():
dest = dest + ".7z"
# create 7z archive with 1block/file parameters
cmd = ["7z", "u", str(dest), str(input_path)] + p7z_opts.split()
subprocess.run(cmd, cwd=dicom_session_ds.path)
elif input_path.is_file():
dest = dicom_session_ds.pathobj / dest
try: # try hard-linking to avoid copying
os.link(str(input_path), str(dest))
except OSError: # fallback if hard-linking not supported
shutil.copyfile(str(input_path), str(dest))
dicom_session_ds.save(dest, message="add dicoms archive")
return dest
def import_remote_data(
dicom_session_ds: dlad.Dataset, input_url: urllib.parse.ParseResult
):
try:
dest = pathlib.Path(url.path).name
dicom_session_ds.repo.add_url_to_file(dest, url)
except Exception:
... # TODO: check how things can fail here and deal with it.
return dest
def export_to_ria(
ds: dlad.Dataset,
ria_url: urllib.parse.ParseResult,
dicom_session_tag: str,
session_metas: dict,
export_ria_archive: bool = False,
ria_archive_7zopts: str = "-mx5 -ms=off",
):
ria_name = pathlib.Path(ria_url.path).name
ds.create_sibling_ria(
ria_url.geturl(),
name=ria_name,
alias=session_metas[dicom_session_tag],
existing="reconfigure",
new_store_ok=True,
)
ds.push(to=ria_name, data="nothing")
# keep the old ria-archive before add-archive-content, not used for now
if export_ria_archive:
ria_sibling_path = pathlib.Path(ds.siblings(name=ria_name)[0]["url"])
archive_path = ria_sibling_path / "archives" / "archive.7z"
ds.export_archive_ora(
archive_path,
opts=ria_archive_7zopts.split(),
missing_content="error",
)
ds.repo.fsck(remote=f"{ria_url}-storage", fast=True) # index
ds.push(to=ria_name, data="nothing")
def export_to_s3(
ds: dlad.Dataset,
s3_url: urllib.parse.ParseResult,
session_metas: dict,
):
# TODO: check if we can reuse a single bucket (or per study) with fileprefix
# git-annex initremote remotename ...
remote_name = s3_url.hostname
s3_path = s3_url.path
if '{' in s3_path:
s3_path = s3_path.format(**session_metas)
_, bucket_name, *fileprefix = pathlib.Path(s3_path).parts
fileprefix.append(session_metas["StudyInstanceUID"] + "/")
ds.repo.init_remote(
remote_name,
S3_REMOTE_DEFAULT_PARAMETERS
+ [
f"host={s3_url.hostname}",
f"bucket={bucket_name}",
f"fileprefix={'/'.join(fileprefix)}",
],
)
ds.repo.set_preferred_content(
"wanted",
"include=*7z or include=*.tar.gz or include=*zip",
remote=remote_name,
)
ds.push(to=remote_name, data="auto")
# It does not push the data to the S3 unless I set data="anything" which pushes everyhing including the deflated archived data
def connect_gitlab(
gitlab_url: urllib.parse.ParseResult, debug: bool = False
) -> gitlab.Gitlab:
"""
Connection to Gitlab
"""
gl = gitlab.Gitlab(gitlab_url.geturl(), private_token=GITLAB_TOKEN)
if debug:
gl.enable_debug()
gl.auth()
return gl
def get_or_create_gitlab_group(
gl: gitlab.Gitlab,
group_path: pathlib.Path,
):
"""fetch or create a gitlab group"""
group_list = group_path.parts
found = False
for keep_groups in reversed(range(len(group_list) + 1)):
tmp_repo_path = "/".join(group_list[0:keep_groups])
logging.debug(tmp_repo_path)
gs = gl.groups.list(search=tmp_repo_path)
for g in gs:
if g.full_path == tmp_repo_path:
found = True
break
if found:
break
for nb_groups in range(keep_groups, len(group_list)):
if nb_groups == 0:
logging.debug(f"Creating group {group_list[nb_groups]}")
g = gl.groups.create(
{"name": group_list[nb_groups], "path": group_list[nb_groups]}
)
else:
logging.debug(f"Creating group {group_list[nb_groups]} from {g.name}")
g = gl.groups.create(
{
"name": group_list[nb_groups],
"path": group_list[nb_groups],
"parent_id": g.id,
}
)
return g
def get_or_create_gitlab_project(gl: gitlab.Gitlab, project_path: pathlib.Path):
"""fetch or create a gitlab repo"""
project_name = project_path.parts
# Look for exact repo/project:
p = gl.projects.list(search=project_name[-1])
if p:
for curr_p in p:
if curr_p.path_with_namespace == str(project_path):
return curr_p
g = get_or_create_gitlab_group(gl, project_path.parent)
logging.debug(f"Creating project {project_name[-1]} from {g.name}")
p = gl.projects.create({"name": project_name[-1], "namespace_id": g.id})
return p
if __name__ == "__main__":
main()

5
docker/dicom_indexer/indexer/repo_templates/bids/.all-contributorsrc Normal file
View File

@ -0,0 +1,5 @@
{
"files": [
"README"
]
}

1
docker/dicom_indexer/indexer/repo_templates/bids/.bids_init Normal file
View File

@ -0,0 +1 @@
dummy file to trigger ci to init BIDS branches and remotes

3
docker/dicom_indexer/indexer/repo_templates/bids/.bidsignore Normal file
View File

@ -0,0 +1,3 @@
**/anat/*localizer*
**/anat/*scout*
**/*__dup*

1
docker/dicom_indexer/indexer/repo_templates/bids/.derivatives Normal file
View File

@ -0,0 +1 @@
qc/mriqc

13
docker/dicom_indexer/indexer/repo_templates/bids/.gitattributes vendored Normal file
View File

@ -0,0 +1,13 @@
**/.git* annex.largefiles=nothing
* annex.largefiles=(largerthan=100kb)
*.yml annex.largefiles=nothing
*.json annex.largefiles=nothing
*.txt annex.largefiles=nothing
*.tsv annex.largefiles=nothing
*.nii.gz annex.largefiles=anything
*.tgz annex.largefiles=anything
*_scans.tsv annex.largefiles=anything
# annex event files as they contain subjects behavioral responses
sub-*/**/*_events.tsv annex.largefiles=anything
*.bk2 annex.largefiles=anything
.bidsignore annex.largefiles=nothing

2
docker/dicom_indexer/indexer/repo_templates/bids/.gitignore vendored Normal file
View File

@ -0,0 +1,2 @@
.pybids_cache/**
.heudiconv

6
docker/dicom_indexer/indexer/repo_templates/bids/.gitlab-ci.yml Normal file
View File

@ -0,0 +1,6 @@
include:
- local: /.ci-env.yml
- project: "$NI_DATAOPS_GITLAB_ROOT/ci-pipelines"
ref: refactor
file:
- 'ci-pipelines/bids/bids_repo.yml'

6
docker/dicom_indexer/indexer/repo_templates/bids/README Normal file
View File

@ -0,0 +1,6 @@
# xyz dataset
## Contributors
<!-- ALL-CONTRIBUTORS-LIST:START - Do not remove or modify this section -->
<!-- prettier-ignore -->
<!-- ALL-CONTRIBUTORS-LIST:END -->

12
docker/dicom_indexer/indexer/repo_templates/dicom_study/.gitattributes vendored Normal file
View File

@ -0,0 +1,12 @@
**/.git* annex.largefiles=nothing
* annex.largefiles=(largerthan=100kb)
*.yml annex.largefiles=nothing
*.json annex.largefiles=nothing
*.txt annex.largefiles=nothing
*.tsv annex.largefiles=nothing
*.nii.gz annex.largefiles=anything
*.tgz annex.largefiles=anything
*_scans.tsv annex.largefiles=anything
# annex event files as they contain subjects behavioral responses
sub-*/**/*_events.tsv annex.largefiles=anything
*.bk2 annex.largefiles=anything

7
docker/dicom_indexer/indexer/repo_templates/dicom_study/.gitlab-ci.yml Normal file
View File

@ -0,0 +1,7 @@
include:
- local: /.ci-env.yml
- project: "$NI_DATAOPS_GITLAB_ROOT/ci-pipelines"
ref: refactor
file:
- 'ci-pipelines/sources/dicoms_study.yml'