New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

heaserver

Package Overview
Dependencies
Maintainers
2
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

heaserver

The server side of HEA.

  • 1.23.0
  • PyPI
  • Socket score
Maintainers
2

HEA Server Framework

Research Informatics Shared Resource, Huntsman Cancer Institute, Salt Lake City, UT

The HEA Server Framework contains shared code for creating HEA microservices.

Version 1.23.0

  • Added optional failed_cb keyword argument to heaserver.service.messagebroker.publisher_cleanup_context_factory that is called when something goes wrong with the connection to RabbitMQ.
  • Events that cannot be published to the message broker are now persisted in a queue backed by sqlite and retried later if the PublishQueuePersistencePath config property is set. If not set, the queue is in-memory only.

Version 1.22.1

  • Updated openservicelib to handle for batch_insert

Version 1.22.0

  • Added hea-recently-accessed to list of standard relation values.
  • Added heaserver.service.desktopobjectop module that abstracts some of the logic for common desktop object operations (experimental).
  • Prevent trying to set the _id field to ObjectId(None) when id is None in heaserver.service.db.mongo.Mongo.
  • Fixed type hints for heaserver.service.util.queued_processing.

Version 1.21.5

  • Expanding to the opensearch db api for update, update_bulk, delete, and delete_bulk.
  • Bug fix in search api for opensearch.

Version 1.21.1

  • Fixed queued_processing bug when no exceptions to ignore are passed in.
  • Documented that heaserver.service.db.mongo.Mongo sets the created and updated timestamps in the UTC timezone.

Version 1.21.0

  • Changed heaserver.service.util.queued_processing to accept an AsyncIterable instead of a callable and fix some bugs.

Version 1.20.0

  • We no longer attempt to create an organization and account manually in moto. Fixes an error in some tests because the organization and account are created and linked automatically.
  • Support substituting request header values in link URLs.
  • Address potential resource leaks.
  • Lots of doc string enhancements.
  • New heaserver.service.util function, filter_mapping, which is useful for creating header mappings from request objects.
  • New heaserver.service.client.post_data_create function for returning just the id of the created object, rather than the entire URL like with heaserver.service.client.post.
  • We now use freezegun when creating expected values for testing.
  • New mongoservicelib.get_desktop_object function.
  • Added a pre-save hook callback to mongoservicelib.put.

Version 1.19.1

  • Support heaobject 1.16.*.

Version 1.19.0

  • Moved S3 object-related APIs to heaserver-folders-aws-s3.
  • Performance improvements.
  • Use uvloop event loop on non-Windows platforms.
  • Set Activity.request_url attribute.

Version 1.18.0

  • Turn on eager task factory when running Python 3.12.
  • Fixed timing issue in heaserver.service.aiohttp.RequestFileLikeWrapper, potentially causing a hang.
  • Replaced deprecated logger.warn with logger.warning.
  • Fixed bug in awsservicelib.copy_object where copy fails if the target folder contains an object with a name that is a prefix of the object to be copied.

Version 1.17.0

  • Added support for Python 3.12.

Version 1.16.1

  • Fixed regression in heaserver.service.db.awsservicelib._copy_object_extract_target causing error when there are query parameters in the target URL.

Version 1.16.0

  • Implemented a new async retry decorator for async context managers, heaserver.service.util.async_retry_context_manager.
  • Fixed retry and async_retry to raise the actual exception rather than RetryExhaustedError.
  • Removed RetryExhaustedError.
  • Altered the Mongo context manager not to close the client in aexit().
  • Don't let freezegun prevent asyncio.sleep() from working.
  • The Collection+JSON representor can now be configured to omit data and permissions and just return links.

Version 1.15.1

  • Fixed testing bugs in handling of enum formatting and where owner may have wrong expected readOnly status.

Version 1.15.0

  • Added resource_base parameter to mongoservicelib.post and mongoservicelib.post_dict.
  • Docstring enhancements.
  • Fixed AttributeError in mockmongo.update_admin.
  • Added client_error_code() function to the heaserver.service.db.aws module to centralize what to do to extract the error code out of a boto3 ClientError exception.
  • In a Collection+JSON template when there is more than one desktop object in the document, create an object desktop object of the same type and use its attributes to determine which fields to make read-only.

Version 1.14.1

  • Includes opensearch-py sdk the required dependency of OpenSearch.

Version 1.14.0

  • Adds supporting classes for doing search in OpenSearch.
  • Added client_error_code() function to the heaserver.service.db.aws module to centralize what to do to extract the error code out of a boto3 ClientError exception.
  • In a Collection+JSON template when there is more than one desktop object in the document, create an object desktop object of the same type and use its attributes to determine which fields to make read-only.

Version 1.14.0

  • Added resource_base parameter to mongoservicelib.post and mongoservicelib.post_dict.
  • Docstring enhancements.
  • Fixed AttributeError in mockmongo.update_admin.
  • Added client_error_code() function to the heaserver.service.db.aws module to centralize what to do to extract the error code out of a boto3 ClientError exception.
  • In a Collection+JSON template when there is more than one desktop object in the document, create an object desktop object of the same type and use its attributes to determine which fields to make read-only.

Version 1.13.2

  • Fixed handling of id fields in mongo admin non-desktop object upsert and update.
  • Properly remove 'id' fields in desktop objects.

Version 1.13.1

  • Cache account owner information for a caching boost.

Version 1.13

  • Removed heaserver.service.aiohttp.StreamResponseFileLikeWrapper.
  • Handle iterator-of-tuple header format in heaserver.service.response.status_ok().

Version 1.12.2

  • Made heaserver.service.testcase.microsevicetestcase.MicroserviceTestCase an abstract class with a default constructor to prevent errors with recent pytest versions. The class was previously documented as abstract but did not inherit from abc.ABC nor did it have any methods marked as abstract.
  • Updated dependencies.

Version 1.12.1

  • Caching optimizations.

Version 1.12.0

  • Support passing the Bearer token in the access_token query parameter as an alternative to the Authorization header.

Version 1.11.0

  • The OIDC claim constants now include more claims.
  • Respond with HTTP status code 409 (Conflict) on insertions when there is a conflict.
  • Added optional desktop object parameter to heaserver.service.db.mongoservicelib.put.
  • Addressed minor bugs in the testing framework.
  • The heaserver.service.db.database.DatabaseContextManager.credentials property now does a deep copy of the credential list before returning it.
  • Altered parameter validation of heaserver.service.db.aws.S3.get_client() so that the credentials and volume_id parameters can both be None (which delegates credentials to the boto3 library).
  • Improved docstrings.
  • New functions for improving error messages (s3_object_display_name and http_error_message in heaserver.service.awsservicelib, and http_error_message in heaserver.service.aiohttp).

Version 1.10.7

  • Updated pymongo dependency

Version 1.10.6

  • Addressed potential interpreter hang at the end of running tests.

Version 1.10.5

  • Fixed bug sometimes preventing role from being assumed.

Version 1.10.4

  • Improved performance generating cloud credentials.

Version 1.10.3

  • Fixed type hints and logging.
  • Make mongo insert calls return HTTP Conflict status code when appropriate.
  • Resolved a potential issue getting an AWS account.

Version 1.10.2

  • Adds email util

Version 1.10.1

  • Limit the duration of privilege elevation when requesting it from AWS.

Version 1.10.0

  • Added elevate_privileges method to heaserver.service.db.S3.

Version 1.9.0

  • Fixed type hints, requiring mostly minor API changes.

Version 1.8.3

  • Fixed error getting object versions if no prefix is specified.

Version 1.8.2

  • Retry getting temporary credentials when the call to boto3 assume_role_with_web_identity fails.
  • Use boto3's built-in paginator everywhere.

Version 1.8.1

  • Prevent failed content downloads from hanging the microservice.

Version 1.8.0

  • Moved CLIENT_ERROR* constants from heaserver.service.db.awsservicelib to the aws module.
  • Updated the logic for determining permissions for AWS accounts, buckets, and objects to fallback to full permissions if the user lacks permission in AWS to simulate permissions. Thus, the behavior will fall back to that of version 1.6 or earlier. As before, AWS will still reject requests that the user lacks permissions for. A future version of heaserver will likely attempt to use elevated permissions to perform the simulation.

Version 1.7.1

  • Fixed the order in which multiple exceptions are raised.

Version 1.7.0

  • requirements_dev.txt now sets a minimum version of setuptools to address a security vulnerability. Also updated to a newer version of build.
  • Implemented attribute-level permissions.
  • Addressed potential performance issue with unarchiving large numbers of AWS S3 objects.
  • Addressed potential crash when the server loses its connection to a client while downloading an object's contents, and increased logging during downloads.
  • Mapped AWS access policies to HEA permissions so that HEA may present accurate permissions for AWS accounts, S3 buckets, and S3 objects.

Version 1.6.3

  • Upgrading heaobject dependency to get bug fixes.

Version 1.6.2

  • Added ability to toggle aws key duration depending on if system credential manager or any other user.
  • Background tasks now pass the aiohttp app object as a parameter of the coroutine added to the queue.
  • Added the scheduled_cleanup_ctx manager for scheduling reoccurring tasks with a delay optionally.
  • Prevent the id field from appearing in mongodb when a new desktop object is inserted.

Version 1.6.0

  • Improved docstrings.
  • New heaobject dependency.
  • Removed account_type_names parameters from heaserver.service.db.database.get_volumes and heaserver.service.db.database.Database.get_volumes.
  • New heaserver.service.util.now() function.
  • Removed file system-related parameters from heaserver.service.heaobjectsupport functions (type_to_resource_url, get_dict, get, get_all, get_component, get_resource_url).
  • heaserver.service.client: Made a type passed into type_or_obj not used to create the object instance; new get_all_list() function.
  • Use heaobject.util.now() instead of datetime.now() to get the current datetime with a timezone.
  • Don't allow creating a new desktop object in MongoDB if the current user and the owner of the object are not the same.
  • Set the created and modified attributes of desktop objects in heaserver.service.db.mongo.
  • Populate new AWSAccount attributes.

Version 1.5.3

  • When updating AWS temporary credentials, generate new headers rather than pass the headers from the HTTP request, possibly resulting in a Content-Length header that is shorter than the request body.
  • Make heaserver.service.db.aws.get_credentials raise the right exception.

Version 1.5.2

  • Fixed TypeError regression in the heaserver.service.client module.

Version 1.5.1

  • Ensure the Content-Type header is set to application/json in heaserver.service.client put and post calls.

Version 1.5.0

  • Added attribute-level permissions.
  • Temporarily restored the role check that was removed in version 1.4.1 in case an AWS credentials object with overly permissive permissions is altered.

Version 1.4.2

  • Synchronize around getting temporary credentials.

Version 1.4.1

  • Increased the boto3 max connection pool size from the default value (10) to 25.
  • Fixed a connection leak in DatabaseContextManager, and fixed the documentation for the connection() method.
  • Updated heaobject dependency.
  • Removed an unnecessary role check.

Version 1.4.0

  • Added type_display_name attribute to all HEA objects.

Version 1.3.0

  • Performance improvement getting accounts.
  • heaserver.service.db.database.DatabaseContextManagers now allow initializing with either a volume id or a Credentials object.

Version 1.2.0

  • get_volumes() in the database module and Database class can now filter by account ids.
  • New heaobject dependency: new heaobject.root.AbstractAssociation base class and heaobject.account.AccountAssociation implementation, and heaobject.organization.Organization class now has an accounts attribute using AccountAssociation.

Version 1.1.3

  • Fixed permissions setting in mongoservicelib.aggregate().

Version 1.1.2

  • Added resolved permissions for desktop objects in WeSTL and Collection+JSON docs.

Version 1.1.1

  • No longer errors out when accessing account information that the user is unauthorized to see.

Version 1.1.0

  • AWS account objects are now populated with more information.
  • New heaobject with new APIs.

Version 1.0.8

  • Performance improvements converting to/from a HEAObject and a dictionary.

Version 1.0.7

  • Prevent a condition where zip file generation resulted in a truncated zip file.

Version 1.0.6

  • Prevent hang while getting HEA object content when the client connection goes away.

Version 1.0.5

  • Backed out boto connections issue.

Version 1.0.4

  • Don't crash when getting the user's AWS account list includes an account that doesn't exist.
  • Fixed exceptions while unarchiving objects.
  • Better error messaging when trying to move archived files.
  • Allow copying and moving unarchived files.

Version 1.0.3

  • Added heaserver.service.response.status_generic_error() function.
  • Made heaserver.service.db.awsservicelib.handle_client_error always return an HTTP response object that can be raised as an exception.

Version 1.0.2

  • Improved performance of heaserver.service.activity.DesktopObjectActionLifecycle context manager.
  • Removed unused properties from heaserver.service.activity.DesktopObjectActionLifecycle.
  • Implemented input validation for heaserver.service.db.awsservicelib.archive_object().

Version 1.0.1

  • Fixed caching bug affecting mongodb paginated queries.
  • Fixed passing one desktop object dict to heaserver.service.wstl.RuntimeWeSTLDocumentBuilder().

Version 1

Initial release.

Runtime requirements

  • Python 3.10, 3.11, or 3.12.

Configuration

The heaserver.service.messagebroker module supports publishing and receiving messages to/from a RabbitMQ message broker. A HEASERVER_MESSAGE_BROKER_QUEUE_PATH environment variable is supported that, if set with the path to a sqlite database, will cause message broker messages that fail to publish to be persisted and retried later. If not set, failed messages will be stored only in memory and thus lost if the microservice is restarted. The variable need not be set for microservices that do not publish to the message broker. The same file must not be shared across multiple microservices or data corruption may result.

Development environment

Build requirements

  • Any development environment is fine.
  • On Windows, you also will need:
  • On Mac, Xcode or the command line developer tools is required, found in the Apple Store app.
  • Python 3.10, 3.11, or 3.12: Download and install Python from https://www.python.org, and select the options to install for all users and add Python to your environment variables. The install for all users option will help keep you from accidentally installing packages into your Python installation's site-packages directory instead of to your virtualenv environment, described below.
  • Create a virtualenv environment using the python -m venv <venv_directory> command, substituting <venv_directory> with the directory name of your virtual environment. Run source <venv_directory>/bin/activate (or <venv_directory>/Scripts/activate on Windows) to activate the virtual environment. You will need to activate the virtualenv every time before starting work, or your IDE may be able to do this for you automatically. Note that PyCharm will do this for you, but you have to create a new Terminal panel after you newly configure a project with your virtualenv.
  • From the project's root directory, and using the activated virtualenv, run pip install wheel followed by pip install -r requirements_dev.txt. Do NOT run python setup.py develop. It will break your environment.

Running tests

Run tests with the pytest command from the project root directory. To improve performance, run tests in multiple processes with pytest -n auto.

Running integration tests

  • Install Docker

Packaging and releasing this project

See the RELEASING.md file for details.

FAQs

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Typosquatted Go Packages Deliver Malware Loader Targeting Linux and macOS Systems

Research

Security News

Typosquatted Go Packages Deliver Malware Loader Targeting Linux and macOS Systems

Malicious Go packages are impersonating popular libraries to install hidden loader malware on Linux and macOS, targeting developers with obfuscated payloads.

By Kirill Boychenko  -  Mar 04, 2025
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc