September 29, 2023 Architecture Team Meeting Notes
Attendees
@Taylor Downs
@Aleksander Reitsakas
@Trev Harmon
@Steve Conrad
Apologies
Agenda | Presenter | Duration | Discussion |
Technical Reviews of BB specs | @Steve Conrad | 10 minutes | Update on review process:
Wes to review Wave 3 BBs to ensure that they are aligned to the template. Ramkumar to work with Wave 3 teams to get complete list of contributors. @Steve Conrad - Set up meeting with eMarketplace so that we can articulate the current and future scope, as well as what procurement functionality should be included (either current or future) Specific question for Architecture team: MKT-154: Service APIs Section - Technical Review for Non-REST APIsDone |
PAERA Update | @Aare Laponin @PSRAMKUMAR | 15 minutes | Update on changes to PAERA document and progress/next steps Working draft: Ready for review and comment (Sections 1-3). Steve and Wes to review. Need to decide where this lives for the upcoming release (GitBook, linked, PDF)?
|
Prioritize future topics | @Steve Conrad | 20 minutes | There are several future topics below. We need to identify what are most critical for architecture team to work on. Aleks: Size of Building Blocks, ie. MOSIP - large products can’t really function as Building Blocks. How do we better identify candidates? Taylor: Creating a vision/picture of how we expect GovStack to implemented. What do we expect GovStack users to do? Identify products, create adaptors, prototype? Create citizen portal? Is GovStack just used to support RFP processes? Trev: Define user personas and user journeys Ensure that we have the guidance/resources for various users to actually implement these journeys Taylor: Architecture team can then identify the ways that we need to communicate better. Be better at explaining GovStack and how it works and how it serves different user personas. High quality content around why is GovStack valuable - still technical, but more big picture. Aleks: Have to be able to demonstrate real use cases in sandbox. We have to prove out that this can be done. Ramkumar: More country engagement - they will identify questions/gaps. Should we define/mandate a central portal for GovStack? How do we manage SSO/IAM across multiple use cases? Need to engage more with Sandbox team to ensure that what they are implementing is aligned with GovStack architecture.
Generic adaptor building block Trev: another pass through the security spec Articulating the tradeoffs between specificity and more generalized approaches. How do we better position ourselves as technology agnostic (and should we)? Provide different examples of implementations using different stacks?
Rough groupings/priorities:
2,4,6 are oriented around giving inputs to other groups (country engagement, BB teams). Architecture can/should do more definition around #2 (not just giving guidance) |
Future Topic - Capabilities/Service Blocks | @Wes Brown | 15 minutes | Review service block (capabilities) template Need clear definition of distinction between building block and service block. |
Future Topic - September | @PSRAMKUMAR |
| Go through key learnings from Egypt deep dive and Kenya roadshow and map out how to address them in the architecture documents
|
Future topic - Fall 2023 Manage Access Authorization to BB APIs | @Jaume DUBOIS | 30 minutes |
From Technical Committee Meeting: BBs should not own RBAC - the calling applications are responsible for it. Are we using token based authorization within the request to BB? How to get candidates bypass its own RBAC?
|
Action Items
Ramkumar to connect with Hani/Nico on infra requirements
Future Topics
Capabilities/Service Blocks
Define a standard set of APIs that are needed for any BB to indicate that they are running, configured and ready to use in the sandbox (or test harness). Do we need a BB registry?
Decoupling BBs into smaller pieces, as well as talking about an approach for existing products which span multiple BBs
SSO and how we provide functional IDs
Identify experts that can do reviews of all Wave 1, 2, 3 BBs and map out process for external reviews
How to articulate the different levels/scopes of building blocks - foundational/DPI, functional, and possibly application (things like eMarketplace). This should be clearly articulated in GovStack documentation. Also articulate how service blocks fit in to this paradigm.
Identify BBs that are missing/needed and develop plan to address those new BBs - get feedback from Egypt and Kenya meetings
Adaptor Building Block - is it needed?
Questions about IM from Egypt deep dive
Exchanging large amounts of data through IM (MRIs, etc)
Real-time streaming
Taylor: we'd likely need to find some experts on open-source video chat apps, see how Self-Hosting Guide - Debian/Ubuntu server | Jitsi Meet fits into the IM, and ALSO talk about things like email clients and servers