-

Author: alexh-scrt

config/MAR-INF/MANIFEST.json

@@ -0,0 +1,13 @@
+{
+  "createdOn": "09/05/2025 14:18:23",
+  "runtime": "python",
+  "model": {
+    "modelName": "monai-breast-density-classification",
+    "serializedFile": "model.pt",
+    "handler": "inference_handler.py",
+    "modelVersion": "1.0",
+    "requirementsFile": "requirements.txt",
+    "configFile": "model-config.yaml"
+  },
+  "archiverVersion": "0.12.0"
+}

config/__init__.py

@@ -15,4 +15,7 @@ install_py_dep_per_model=true
 async_logging=false
 model_store=/mnt/models/model-store
 enable_token_auth=false
-model_snapshot={"name":"startup.cfg","modelCount":1,"models":{"monai-breast-density-classification":{"1.0":{"defaultVersion":true,"marName":"monai-breast-density-classification.mar","minWorkers":1,"maxWorkers":1,"batchSize":16,"maxBatchDelay":10,"responseTimeout":3600}}}}
+disable_token_auth=true
+model_snapshot={"name":"startup.cfg","modelCount":1,"models":{"breast-density":{"1.0":{"defaultVersion":true,"marName":"monai-breast-density-classification_model-store_monai-breast-density-classification.mar","minWorkers":1,"maxWorkers":1,"batchSize":16,"maxBatchDelay":10,"responseTimeout":3600}}}}
+
+# model_snapshot={"name":"startup.cfg","modelCount":1,"models":{"monai-breast-density-classification":{"1.0":{"defaultVersion":true,"marName":"monai-breast-density-classification.mar","minWorkers":1,"maxWorkers":1,"batchSize":16,"maxBatchDelay":10,"responseTimeout":3600}}}}

config/config.properties

@@ -0,0 +1 @@
+monai_breast_density_classification-0.1.tar.gz

config/requirements.txt

@@ -1,57 +1,78 @@
-# Caddyfile for MONAI Breast Density Classification
-# Simple reverse proxy to auth-gateway service
-
-# Main site configuration
-:23434 {
-    # TLS configuration using provided certificates
-    tls /etc/ssl/certs/fullchain.pem /etc/ssl/private/privkey.pem
-
-    # Reverse proxy all requests to auth-gateway
-    reverse_proxy auth-gateway:8090 {
-        # Health check for upstream
-        health_uri /health
-        health_interval 30s
-        health_timeout 10s
-        
-        # Forward original client information
-        header_up Host {host}
-        header_up X-Real-IP {remote_host}
-        header_up X-Forwarded-For {remote_host}
-        header_up X-Forwarded-Proto {scheme}
-        header_up X-Forwarded-Port {server_port}
-    }
-
-    # Request/response logging for debugging (optional)
-    log {
-        output stdout
-        format console
-        level INFO
-    }
-
-    # Security headers
-    header {
-        # Remove server identification
-        -Server
-        # Basic security headers
-        X-Content-Type-Options nosniff
-        X-Frame-Options DENY
-        X-XSS-Protection "1; mode=block"
-        Referrer-Policy strict-origin-when-cross-origin
-    }
-
-    # Handle specific endpoints with better error pages
-    handle_errors {
-        @502 expression {http.error.status_code} == 502
-        @503 expression {http.error.status_code} == 503
-        @504 expression {http.error.status_code} == 504
-        
-        respond @502 "Service temporarily unavailable - auth-gateway not ready" 502
-        respond @503 "Service temporarily unavailable - please try again" 503
-        respond @504 "Service timeout - request took too long" 504
-    }
+{
+	debug
+	order claive_reverse_proxy first
+	log {
+		output stdout
+		format console
+		level DEBUG
+	}
 }
 
-# Optional: Redirect HTTP to HTTPS if needed
-# :80 {
-#     redir https://{host}:23434{uri} permanent
-# }
+# HTTP to HTTPS redirect (eliminates TLS handshake errors)
+fetchai.scrtlabs.com:80 {
+	redir https://fetchai.scrtlabs.com:23434{uri} permanent
+}
+
+# Main HTTPS site configuration for fetchai.scrtlabs.com
+fetchai.scrtlabs.com:23434 {
+	# TLS configuration using provided certificates
+	tls /etc/ssl/certs/fullchain.pem /etc/ssl/private/privkey.pem
+
+	@cors_preflight method OPTIONS
+	handle @cors_preflight {
+		header {
+			Access-Control-Allow-Origin "{header.origin}"
+			Access-Control-Allow-Methods "GET, POST, PUT, PATCH, DELETE, OPTIONS"
+			Access-Control-Allow-Headers "Content-Type, Authorization, Referrer-Policy, priority, sec-ch-ua, sec-ch-ua-mobile, sec-ch-ua-platform"
+			Access-Control-Allow-Credentials "true"
+			Vary Origin
+			Access-Control-Max-Age "3600"
+		}
+		respond "" 204
+	}
+
+	handle {
+		header {
+			Access-Control-Allow-Origin "{header.origin}"
+			Access-Control-Allow-Headers "Content-Type, Authorization, Referrer-Policy, priority, sec-ch-ua, sec-ch-ua-mobile, sec-ch-ua-platform"
+			Access-Control-Allow-Credentials "true"
+			Vary Origin
+		}
+		claive_reverse_proxy {
+			API_MASTER_KEY bWFzdGVyQHNjcnRsYWJzLmNvbTpTZWNyZXROZXR3b3JrTWFzdGVyS2V5X18yMDI1
+		}
+		reverse_proxy auth-gateway:8090 {
+			# Health check for upstream
+			health_uri /health
+			health_interval 30s
+			health_timeout 10s
+
+			# Forward original client information
+			header_up Host {host}
+			header_up X-Real-IP {remote_host}
+			header_up X-Forwarded-Port {server_port}
+		}
+	}
+
+	# Security headers
+	header {
+		# Remove server identification
+		-Server
+		# Basic security headers
+		X-Content-Type-Options nosniff
+		X-Frame-Options DENY
+		X-XSS-Protection "1; mode=block"
+		Referrer-Policy strict-origin-when-cross-origin
+	}
+
+	# Handle specific endpoints with better error pages
+	handle_errors {
+		@502 expression {http.error.status_code} == 502
+		@503 expression {http.error.status_code} == 503
+		@504 expression {http.error.status_code} == 504
+
+		respond @502 "Service temporarily unavailable - auth-gateway not ready" 502
+		respond @503 "Service temporarily unavailable - please try again" 503
+		respond @504 "Service timeout - request took too long" 504
+	}
+}

dockerize/Caddyfile

@@ -0,0 +1,73 @@
+```mermaid
+graph TB
+    %% External Services
+    OpenAI[OpenAI API]
+    Perplexity[Perplexity API]
+    GCS[Google Cloud Storage]
+    Client[External Client]
+    
+    %% Docker Environment
+    subgraph "Docker Network (monai-network)"
+        %% Caddy Reverse Proxy
+        Caddy[Caddy Reverse Proxy<br/>Port 23434<br/>HTTPS Entry Point]
+        
+        %% Auth Gateway
+        AuthGW[Auth Gateway<br/>FastAPI Service<br/>Port 8090]
+        
+        %% TorchServe
+        TorchServe[TorchServe<br/>ML Model Serving<br/>Port 8085<br/>GPU Enabled]
+        
+        %% Ollama Services
+        Ollama[Ollama Service<br/>LLM Runtime<br/>Port 11434<br/>GPU Enabled]
+        OllamaInit[Ollama Init<br/>Model Loader<br/>One-time execution]
+    end
+    
+    %% Shared Storage
+    subgraph "Shared Volumes"
+        Tokens[torchserve-tokens]
+        Workspace[shared-workspace]
+        Models[Host Model Storage<br/>/mnt/secure/.ollama]
+    end
+    
+    %% External Client Communication
+    Client -->|HTTPS:23434| Caddy
+    
+    %% Internal Container Communication
+    Caddy -->|HTTP| AuthGW
+    AuthGW -->|HTTP:8085| TorchServe
+    TorchServe -->|HTTP:11434<br/>Ollama Python Client| Ollama
+    
+    %% Dependencies
+    OllamaInit -.->|depends_on<br/>pulls model| Ollama
+    AuthGW -.->|depends_on| TorchServe
+    TorchServe -.->|depends_on| Ollama
+    Caddy -.->|depends_on| AuthGW
+    
+    %% External Service Communications (from TorchServe)
+    TorchServe -->|API Calls| OpenAI
+    TorchServe -->|API Calls| Perplexity
+    TorchServe -->|Upload Medical Reports| GCS
+    
+    %% Volume Mounts
+    TorchServe -.->|shares tokens| Tokens
+    TorchServe -.->|shares workspace| Workspace
+    AuthGW -.->|reads tokens| Tokens
+    AuthGW -.->|shares workspace| Workspace
+    Ollama -.->|model storage| Models
+    OllamaInit -.->|model storage| Models
+    
+    %% Styling
+    classDef container fill:#e1f5fe,stroke:#01579b,stroke-width:2px
+    classDef proxy fill:#f1f8e9,stroke:#33691e,stroke-width:2px
+    classDef external fill:#fff3e0,stroke:#e65100,stroke-width:2px
+    classDef storage fill:#f3e5f5,stroke:#4a148c,stroke-width:2px
+    classDef init fill:#fce4ec,stroke:#880e4f,stroke-width:2px
+    classDef client fill:#e8f5e8,stroke:#2e7d32,stroke-width:2px
+    
+    class TorchServe,Ollama,AuthGW container
+    class Caddy proxy
+    class OpenAI,Perplexity,GCS external
+    class Tokens,Workspace,Models storage
+    class OllamaInit init
+    class Client client
+```