The COMS API is available as a hosted service for BC Government client applications.
Some important aspects of the hosted service to consider:
-
Requests to COMS API requests must be authorized using a User ID token (OAuth JWT) issued in the Pathfinder SSO 'Standard' realm. Typically a user would sign-in to your app (website) and your app would call COMS with that user's JWT.
-
Basic Auth or authentication using a service-account (eg: client credentials) is currently not available on the Hosted COMS service. This is a feature if you are self-hosting.
-
Object Storage buckets must be obtained by the client. Any S3 compatible bucket will work (for example: AWS S3 and Minio). OCIO provide a low-cost object Storage service. NRM clients can request a bucket through the Optimization Team.
-
Once provisioned, you can add your bucket to COMS using the createBucket endpoint. See: Managing Buckets.
-
Bucket credentials (
Access Key IDandSecret Access Key) are stored in the database as encrypted strings. Encryption is done by NodeJS's internalcryptolibrary. The key for encryption is assigned to aSERVER_PASSPHRASEenvironment variable, and is only available inside the scope of the COMS app container.
- The stricter Privacy Controls setting is enabled in the Hosted service (requires
READpermission on bucket or object to discover or access the file and related data). This removes the abiility to search for objects that you don't have permissions for.
- BCBox Integration: Using the Hosted COMS service has the added benefit of being able to integrate your application with BCBox - a hosted drop-box type interface for sharing files.
As part of your development workflow, ensure your application is using the correct COMS environment. The Hosted COMS service only accepts User Auth tokens issued in the corresponding SSO 'Standard' realm.
COMS environments:
-
Development: https://coms-dev.api.gov.bc.ca/api/v1/
-
Production: https://coms.api.gov.bc.ca/api/v1/
Note: Please also review the Hosting Considerations page, and reasons to self-host.