Skip to content
/ epc_cli Public

Command-line interface for automating and managing epidemiological and WGS data submissions to the EpiPulse Cases platform, with support for configuration, validation, and approval workflows.

License

EUPL-1.2 license
5 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

EU-ECDC/epc_cli

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

42 Commits
LICENSE
LICENSE
 
 
bin
bin
 
 
docker
docker
 
 
env
env
 
 
epc_cli
epc_cli
 
 
LICENSE.txt
LICENSE.txt
 
 
README.md
README.md
 
 
config.json
config.json
 
 
setup.py
setup.py
 
 

Repository files navigation

EpiPulse Cases CLI

Installation

You first need to clone the git repository and create the epc_cli conda environment:

git clone https://github.com/EU-ECDC/epc_cli

cd epc_cli/
mamba env create -f env/epc_cli.yaml

Then you need to set up your configuration file (config.json) by adding your username, country code, the urls of the resources that you will use to contact the API endpoints and other optional customisations.

Note: Some users might need to set up use multiple configuration files to account for for different roles, subjects and/or environments. In such cases, make sure that the environment "name" variable in each configuration file is unique.

Configuring credentials

Before using epc_cli, you need to store your credentials in a secure way.

We natively support the keyrings.cryptfile backend, which provides a stand-alone, file-based, and encrypted storage.

You can configure your credentials with the following command:

./bin/epc_set_secrets

Note: epc_cli uses the Python keyring library, which supports multiple backends (e.g., macOS Keychain, Windows Credential Manager, KWallet). This makes it possible to switch to another backend if you prefer to use your own secure storage solution, with relatively few changes to the codebase.

Usage

epc_cli includes prebuilt scripts to simplify data submission.

You can automate your data submissions using a single script (epc_automatic_submission) or a set of scripts which allow you to go through the workflow step by step. In this section we will use epc_automatic_submission to submit data.

Finally, please note that epc_cli is also Python library that you can use to build custom scripts and automate workflows (see "Advanced usage").

epc_d

If you run the application only occasionally, you will be asked to provide the master password of your keyring every time the application token needs to be renewed (approximately every hour). If instead you need to perform multiple submissions throughout the day, or you want the application to automatically submit data as soon as they become available, you may want to use the epc_d daemon (Linux/macOS). With the daemon, you only need to enter the master password once; afterwards, the process runs in the background and automatically renews the application token using your credentials. To start the daemon:

./bin/epc_d -c config-uat-HD-FR.json

By default it runs indefinitely, You can limit its runtime using the -m option. For example:

./bin/epc_d -c config-uat-HD-FR.json -m 10h

Notes:

  • If you no longer need to run epc_cli, please remember to manually stop the daemon by killing its process: kill "$(cat epc_d.pid)".
  • All commands in this guide assume the scripts are executed from the epc_cli directory.

Epidemiological data

Please remember to activate the conda environment:

mamba activate epc_cli

Then we can submit a csv file with case data:

./bin/epc_automatic_submission --config config-uat-HD-FR.json --upload_type "Add/Update" --files dataset/epc_Deng_tessy_2025_20240523_v1.csv --rp_start 2025-01-01 --rp_end 2025-03-27

Notes:

  • In case of submission of epidemiological data --rp_start and --rp_end MUST be defined.
  • The upload type string is case sensitive. "Add/Update" works, "add/update" does not.
  • By default, epc_automatic_submission looks for a config.json file in the current directory. If you have set up and intend to use this file, there is no need to specify it explicitly with the -c/--config option. However, if you prefer to use a different configuration file, you can specify it using the -c/--config option, as shown in this example.
  • The technical validation and epidemiological validation reports will be saved on {application_data}/submissions/{guid}/. The default submission_data folder is the current directory (./).
  • If your subject follows a parent-child data model, please read the sub-section "Subjects with a parent-child layout" (see below)

In this example, we did not run epc_automatic_submission with the --approve flag. This flag automatically approves a data submission once it successfully completes all the steps in the workflow, providing full automation of the submission process. While using this flag fully automates the submission, it is highly recommended to review the epidemiological validation report before approving or rejecting the submission.

The epidemiological validation report can be found on {application_data}/submissions/{guid}/.

If you now wish to approve the data submission, you can do so with the following command:

./bin/epc_finalise_submission -c config-uat-HD-FR.json --epi_validation_guid 4c847b0c-fc33-4f2e-b4f1-2566f566a754 --action Approve

Notes:

  • you will find the epi_validation_guid in the output of epc_automatic_submission

If you wish to reject the data submisson, you can do so with the following command:

./bin/epc_finalise_submission -c config-uat-HD-FR.json --epi_validation_guid 4c847b0c-fc33-4f2e-b4f1-2566f566a754 --action Reject --reject_reason 'this is only a test'

Subjects with a parent-child layout

Some subjects use a parent-child data model, where multiple interrelated files are required to represent a complete record submission. An example is SALMISO, where one file specifies the main information of the isolates (e.g. date and place of sampling, typing data), while a second file contains the antimicrobial resistance data linked to those isolates.

The submission process differs only slightly from standard submissions. In this specific case we

./bin/epc_automatic_submission -c data/config-uat.json --upload_type "Add/Update" -f data/1.SALMISO_myupload.csv data/2.SALMISO_myupload_AST.csv --subject SALMISO --country_code NL --parent_child --rp_start 2022-04-13 --rp_end 2022-09-10

Notes:

  • You need to specify the --parent_child flag; otherwise the provided files you provide will be treated as independend submissions
  • Exactly two (csv|xml) files must be provided per execution of epc_automatic_submission. Submitting more than two files at once (e.g., four or six files) is not supported at this stage.
  • The file with the main information on the records ("parent") must start with 1., while the one with additional information ("child") must start with a 2.

In this example, we did not run epc_automatic_submission with the --approve flag. This flag automatically approves a data submission once it successfully completes all the steps in the workflow, providing full automation of the submission process. While using this flag fully automates the submission, it is highly recommended to review the epidemiological validation report before approving or rejecting the submission.

The epidemiological validation report can be found on {application_data}/submissions/{guid}/.

If you now wish to approve the data submission, you can do so with the following command:

./bin/epc_finalise_submission -c data/config-uat.json --epi_validation_guid 95b955c3-bc54-4f6b-b521-7cb704504a31 --action Approve

Notes:

  • you will find the epi_validation_guid in the output of epc_automatic_submission

If you wish to reject the data submisson, you can do so with the following command:

./bin/epc_finalise_submission -c config-uat.json --epi_validation_guid 95b955c3-bc54-4f6b-b521-7cb704504a31 --action Reject --reject_reason 'this is only a test'

Sequence data (ISO subjects)

Please remember to activate the conda environment:

mamba activate epc_cli

Then we can submit sequence data and the csv with the isolate metadata:

./bin/epc_automatic_submission -c config-uat.json --upload_type "Add/Update" -f dataset/LEGIISO_metadata_submission-A10.csv dataset/*-test8.fastq.gz --subject LEGIISO --country_code NL --regex '^(?<RecordId>[A-Z0-9\-]+)_[A-Z0-9_a-z\-]+.(fastq|fq).gz$'

Notes:

  • In case of submission for an ISO subject --subject and --country_code and --regex MUST be defined.
  • Remember to put the regular expression on sigle quotes (as shown above). In case of a issues, you may want to check your regular expression here.
  • By default, epc_automatic_submission looks for a config.json file in the current directory. If you have set up and intend to use this file, there is no need to specify it explicitly with the -c/--config option. However, if you prefer to use a different configuration file, you can specify it using the -c/--config option, as shown in this example.
  • The technical validation and epidemiological validation reports will be saved on {application_data}/submissions/{guid}/. The default submission_data folder is the current directory (./).

In this example, we did not run epc_automatic_submission with the --approve flag. This flag automatically approves a data submission once it successfully completes all the steps in the workflow, providing full automation of the submission process. While using this flag fully automates the submission, it is highly recommended to review the epidemiological validation report before approving or rejecting the submission.

The epidemiological validation report can be found on {application_data}/submissions/{guid}/.

If you now wish to approve the data submission, you can do so with the following command:

./bin/epc_finalise_submission -c config-uat-HD-FR.json --epi_validation_guid 4c847b0c-fc33-4f2e-b4f1-2566f566a754 --action Approve

Notes:

  • you will find the epi_validation_guid in the output of epc_automatic_submission

If you wish to reject the data submisson, you can do so with the following command:

./bin/epc_finalise_submission -c config-uat-HD-FR.json --epi_validation_guid 4c847b0c-fc33-4f2e-b4f1-2566f566a754 --action Reject --reject_reason 'this is only a test'

Subjects with a parent-child layout

Some subjects use a parent-child data model, where multiple interrelated files (csv, xml) are required to represent a complete record submission. An example is SALMISO, where one file specifies the main information of the isolates (e.g. date and place of sampling, typing data), while a second file contains the antimicrobial resistance data linked to those isolates.

In this case you need to submit two csv or xml files as well as the fastq or fasta files with the sequencing data.

The submission process differs only slightly from standard submissions.

./bin/epc_automatic_submission -c data/config-uat.json --upload_type "Add/Update" -f data/1.SALMISO_myupload.csv data/2.SALMISO_myupload_AST.csv data/28382022* data/11402022* --subject SALMISO --country_code NL --parent_child --rp_start 2022-04-13 --rp_end 2022-
09-10

Notes:

  • You need to specify the --parent_child flag; otherwise the provided files you provide will be treated as independend submissions
  • Exactly two (csv|xml) files must be provided per execution of epc_automatic_submission. Submitting more than two files at once (e.g., four or six files) is not supported at this stage.
  • The file with the main information on the records ("parent") must start with 1., while the one with additional information ("child") must start with a 2.

In this example, we did not run epc_automatic_submission with the --approve flag. This flag automatically approves a data submission once it successfully completes all the steps in the workflow, providing full automation of the submission process. While using this flag fully automates the submission, it is highly recommended to review the epidemiological validation report before approving or rejecting the submission.

The epidemiological validation report can be found on {application_data}/submissions/{guid}/.

If you now wish to approve the data submission, you can do so with the following command:

./bin/epc_finalise_submission -c data/config-uat.json --epi_validation_guid 95b955c3-bc54-4f6b-b521-7cb704504a31 --action Approve

Notes:

  • you will find the epi_validation_guid in the output of epc_automatic_submission

If you wish to reject the data submisson, you can do so with the following command:

./bin/epc_finalise_submission -c config-uat.json --epi_validation_guid 95b955c3-bc54-4f6b-b521-7cb704504a31 --action Reject --reject_reason 'this is only a test'

Advanced usage

You can use this software package as a library to build your own scripts. The following example shows how to unlock the keyring (the user must interactively provide the keyring’s master password) and trigger two data submissions with automatic approval (equivalent to using the --approve option)

#!/usr/bin/env python3

import sys
sys.path.insert(0, '.')
import keyring
from keyrings.cryptfile.cryptfile import CryptFileKeyring
import getpass
import epc_cli
import glob
import logging

# I define the format of the log messages
logging.basicConfig(
    level=logging.INFO,
    format="%(asctime)s %(levelname)s: %(message)s",
    datefmt="%Y-%m-%d %H:%M:%S"
)

# I load data of the configuration file 
config_data = epc_cli.load_config("config-uat-HD-FR.json")

# I unlock the keyring
epc_cli.set_cryptfile_keyring(config_data['env']['kr_path'])

# I make a data submission with epidemiological data
logging.info(f"Submission 1")
print()
epc_cli.automate_submission(config_data = config_data,
    subject = "DENGUE",
    upload_type = "Add/Update",        
    csv_xml = ["./epc_Deng_tessy_2025_20240523_v1.csv"],
    rp_start = "2025-01-01", 
    rp_end = "2025-03-27")

# I make a data submission with sequencing data
#logging.info(f"Submission 2")
print()
epc_cli.automate_submission(config_data = config_data,
    subject = "LEGIISO",
    upload_type = "Add/Update",        
    csv_xml = ["./data/LEGIISO_metadata_submission-A14.csv"],
    seq_data = glob.glob("data/*-test39.fastq.gz"),
    regex = '^(?<RecordId>[A-Z0-9\-]+)_[A-Z0-9_a-z\-]+.(fastq|fq).gz$'
 )

Changelog

0.11.0

  • upload to S3 via presigned URL is now performed in a single PUT request
  • authentication tokens are now cached on disk to reduce the number of times the user is prompted for the keyring password
  • the user is now explicitly notified when the token request returns an empty or invalid token

0.10.0

  • added write_token() function to fully utilize the token's validity period
  • [fix] epc_set_secrets: added validation to prevent conflicting keyring path definitions from config file and command-line parameters

0.9.1

  • [fix] fixed Markdown rendering issues in the README file
  • [fix] corrected typos in variable names in bin/epc_upload_csv

0.9.0

  • updated token-request logic across all scripts and enforced the use of the keyrings.cryptfile backend
  • changed configuration file format (added kr_path)
  • [fix] corrected typos in variable names in bin/epc_upload_csv
  • [fix] added missing files: epc_cli/automate.py and bin/epc_d

0.8.0

  • added epc_d daemon to automate token refresh (target: Unix systems)
  • changed configuration file format (application_data)
  • renamed epc_store_credentials -> epc_set_secrets
  • docker support temporarily removed

0.7.0

  • added automate_submission() function to facilitate automated data submission in custom scripts
  • README file updated (added a code snippet showing how to unlock the keyring and perform data submissions, and clarified terminology)
  • [fix] changed string quoting to avoid conflicts inside f-strings

0.6.0

  • added functionality for securely storing your credentials

0.5.2

  • added licence information (EUPL 1.2)
  • README file updated (installation instructions)

0.5.1

  • [fix] SSL verification enabled for request_token()
  • minor changes to README and Dockerfile

0.5.0

  • support for subjects with a parent-child layout

0.4.1

  • [fix] SSL verification is now enabled (previously verify = False)

0.4.0

  • added dockerfile to generate a docker image for epc_cli

0.3.0

  • improved automation features
    • the user can use a single command to trigger the full workflow instead of typing a separate command for each step of the workflow
    • the user can provide a list of files [csv|xml|fasta|fastq.gz|fq.gz] and the system will autodetect the steps of the workflow which are needed to finalise that specific data submission
    • the user can trigger the automatic approval of a submission through the --approve option. If the user does not intend to use such option, he/she has to manually execute epc_finalise_submission to approve or reject the data submission
  • changes to the configuration file
    • the user can choose an arbitrary folder where to store the data associated with the submissions (technical validation and epidemiological validation reports).

0.2.0

  • full set of functions to cover the API calls used for data submission
  • full workflow that covers data submission of epidemiological and WGS data
  • conda environment yaml file (env/epc_cli.yaml)
  • README file describing software installation and usage

0.1.0

  • capability to get a token, authenticate and get the list of available WGS subjects
  • loading credentials and urls from a json file specified by the user (default: config.json)

About

Command-line interface for automating and managing epidemiological and WGS data submissions to the EpiPulse Cases platform, with support for configuration, validation, and approval workflows.

Resources

Readme

License

EUPL-1.2 license
Activity
Custom properties

Stars

5 stars

Watchers

2 watching

Forks

0 forks
Report repository

Contributors 4

  •  
  •  
  •  
  •  

Languages