This page offers technical information about the Think Wrong Lab (the Lab) for IT staff.
The Lab is a cloud based multi tier deployment, each tier is decoupled from the other.
The mid-tier is hosted on a high availability, scalable servers. It is written in Java. The tier is fronted by a secure webservice that only accepts requests from known sources. The single point of entry acts as a security choke point, assuring that only authorized users can access the services - passwords and session keys are SALTed, and are validated on each service request.
The webservice returns JSON or formatted HTML over HTTPS directly to the client browser to be rendered.
The back-end—data is persisted in a high availability non-SQL database, the database is backed-up daily. Back-ups are stored for 5 days. The database is only accessible from known IP addresses. Data is transmitted over HTTPS.
Images are stored in Cloudinary, and those images are only accessible from named domains. Data is retrieved over HTTPS.
The Lab uses user, role, and instance based security to access data. That is to say depending on who you are and what your role is in relationship to a particular instance of the data determines what you can see, and what you can do to that data.
The Lab has been built on scalable infrastructure whose resources expand and contract with demand. The 'chatty layers' are co-located in the same data-center. The front end is distributed via a CDN, as are images.
With any multi-tiered approach any one of the layers can be a single point of failure if that service goes down, that said we use services with a good track record of availability, but there are times when the availability of the Lab is beyond our control. As with other cloud based services occasionally the Lab may experience interruption as new software is deployed - we attempt to keep this disruption to a minimum for our users.
By being browser based, the Lab is designed to reduce the burden on client organizations, however we do require minimum browser levels to assure full functionality—and encourage and advice our clients to use up-to-date modern browsers on up-to-date modern operating systems.
The Lab has been tested on Internet Explorer 11.5, Edge, Chrome, Firefox, Safari, iOS and the Android browser on an Amazon Fire device.
Users must be connected to an internet with acceptable upload and download speeds to assure functionality.
Client firewalls must allow access to thinkwrong.com, www.solvenext.cloud and api.cloudinary.com.