Example 71 with Server
use of org.hl7.gravity.refimpl.sdohexchange.model.Server in project Gravity-SDOH-Exchange-RI by FHIR.
the class AuthorizationClient method getTokenResponse.
/**
* Extract token endpoint url from the Authorization Server metadata endpoint and return token response after
* successful authentication.
*
* @param authServerUrl Authorization Server Base URL
* @param clientId OAuth2 Client ID
* @param secret OAuth2 Client Secret
* @param scope OAuth2 Client Scope
* @return {@link TokenResponse} entity
* @throws AuthClientException will be thrown if token retrieval fails
*/
public TokenResponse getTokenResponse(URI authServerUrl, String clientId, String secret, String scope) throws AuthClientException {
HttpEntity<MultiValueMap<String, String>> entity = createRequestEntity(clientId, secret, scope);
String tokenEndpoint = getTokenEndpoint(authServerUrl);
try {
return restTemplate.exchange(tokenEndpoint, HttpMethod.POST, entity, TokenResponse.class).getBody();
} catch (RestClientException e) {
throw new AuthClientException(e.getMessage(), e);
}
}
Also used :
AuthClientException(org.hl7.gravity.refimpl.sdohexchange.exception.AuthClientException)
RestClientException(org.springframework.web.client.RestClientException)
MultiValueMap(org.springframework.util.MultiValueMap)
LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap)
Example 72 with Server
use of org.hl7.gravity.refimpl.sdohexchange.model.Server in project drug-formulary-ri by HL7-DaVinci.
the class JpaRestfulServer method initialize.
@SuppressWarnings("unchecked")
@Override
protected void initialize() throws ServletException {
super.initialize();
/*
* Create a FhirContext object that uses the version of FHIR
* specified in the properties file.
*/
ApplicationContext appCtx = (ApplicationContext) getServletContext().getAttribute("org.springframework.web.context.WebApplicationContext.ROOT");
// Customize supported resource types
Set<String> supportedResourceTypes = HapiProperties.getSupportedResourceTypes();
if (!supportedResourceTypes.isEmpty() && !supportedResourceTypes.contains("SearchParameter")) {
supportedResourceTypes.add("SearchParameter");
}
if (!supportedResourceTypes.isEmpty()) {
DaoRegistry daoRegistry = appCtx.getBean(DaoRegistry.class);
daoRegistry.setSupportedResourceTypes(supportedResourceTypes);
}
/*
* ResourceProviders are fetched from the Spring context
*/
FhirVersionEnum fhirVersion = HapiProperties.getFhirVersion();
ResourceProviderFactory resourceProviders;
Object systemProvider;
if (fhirVersion == FhirVersionEnum.DSTU2) {
resourceProviders = appCtx.getBean("myResourceProvidersDstu2", ResourceProviderFactory.class);
systemProvider = appCtx.getBean("mySystemProviderDstu2", JpaSystemProviderDstu2.class);
} else if (fhirVersion == FhirVersionEnum.DSTU3) {
resourceProviders = appCtx.getBean("myResourceProvidersDstu3", ResourceProviderFactory.class);
systemProvider = appCtx.getBean("mySystemProviderDstu3", JpaSystemProviderDstu3.class);
} else if (fhirVersion == FhirVersionEnum.R4) {
resourceProviders = appCtx.getBean("myResourceProvidersR4", ResourceProviderFactory.class);
systemProvider = appCtx.getBean("mySystemProviderR4", JpaSystemProviderR4.class);
} else if (fhirVersion == FhirVersionEnum.R5) {
resourceProviders = appCtx.getBean("myResourceProvidersR5", ResourceProviderFactory.class);
systemProvider = appCtx.getBean("mySystemProviderR5", JpaSystemProviderR5.class);
} else {
throw new IllegalStateException();
}
setFhirContext(appCtx.getBean(FhirContext.class));
registerProviders(resourceProviders.createProviders());
registerProvider(systemProvider);
/*
* The conformance provider exports the supported resources, search parameters,
* etc for
* this server. The JPA version adds resourceProviders counts to the exported
* statement, so it
* is a nice addition.
*
* You can also create your own subclass of the conformance provider if you need
* to
* provide further customization of your server's CapabilityStatement
*/
IFhirSystemDao<org.hl7.fhir.r4.model.Bundle, org.hl7.fhir.r4.model.Meta> systemDao = appCtx.getBean("mySystemDaoR4", IFhirSystemDao.class);
MetadataProvider metadata = new MetadataProvider(this, systemDao, appCtx.getBean(DaoConfig.class));
// JpaConformanceProviderR4 confProvider = new JpaConformanceProviderR4(this,
// systemDao,
// appCtx.getBean(DaoConfig.class));
metadata.setImplementationDescription("Da Vinci Drug Formulary Reference Server");
setServerConformanceProvider(metadata);
/*
* ETag Support
*/
setETagSupport(HapiProperties.getEtagSupport());
/*
* This server tries to dynamically generate narratives
*/
FhirContext ctx = getFhirContext();
ctx.setNarrativeGenerator(new DefaultThymeleafNarrativeGenerator());
/*
* Default to JSON and pretty printing
*/
setDefaultPrettyPrint(HapiProperties.getDefaultPrettyPrint());
/*
* Default encoding
*/
setDefaultResponseEncoding(HapiProperties.getDefaultEncoding());
/*
* This configures the server to page search results to and from
* the database, instead of only paging them to memory. This may mean
* a performance hit when performing searches that return lots of results,
* but makes the server much more scalable.
*/
setPagingProvider(appCtx.getBean(DatabaseBackedPagingProvider.class));
/*
* This interceptor formats the output using nice colourful
* HTML output when the request is detected to come from a
* browser.
*/
ResponseHighlighterInterceptor responseHighlighterInterceptor = new ResponseHighlighterInterceptor();
this.registerInterceptor(responseHighlighterInterceptor);
/*
* Add Read Only Interceptor
*/
ReadOnlyInterceptor readOnlyInterceptor = new ReadOnlyInterceptor();
this.registerInterceptor(readOnlyInterceptor);
/*
* This interceptor handles the $export operation
*/
ExportInterceptor exportInterceptor = new ExportInterceptor();
this.registerInterceptor(exportInterceptor);
/*
* Add some logging for each request
*/
LoggingInterceptor loggingInterceptor = new LoggingInterceptor();
loggingInterceptor.setLoggerName(HapiProperties.getLoggerName());
loggingInterceptor.setMessageFormat(HapiProperties.getLoggerFormat());
loggingInterceptor.setErrorMessageFormat(HapiProperties.getLoggerErrorFormat());
loggingInterceptor.setLogExceptions(HapiProperties.getLoggerLogExceptions());
this.registerInterceptor(loggingInterceptor);
/*
* Add Authorization interceptor
*/
PatientAuthorizationInterceptor authorizationInterceptor = new PatientAuthorizationInterceptor();
this.registerInterceptor(authorizationInterceptor);
/*
* If you are hosting this server at a specific DNS name, the server will try to
* figure out the FHIR base URL based on what the web container tells it, but
* this doesn't always work. If you are setting links in your search bundles
* that
* just refer to "localhost", you might want to use a server address strategy:
*/
String serverAddress = HapiProperties.getServerAddress();
if (serverAddress != null && serverAddress.length() > 0) {
setServerAddressStrategy(new HardcodedServerAddressStrategy(serverAddress));
}
/*
* If you are using DSTU3+, you may want to add a terminology uploader, which
* allows
* uploading of external terminologies such as Snomed CT. Note that this
* uploader
* does not have any security attached (any anonymous user may use it by
* default)
* so it is a potential security vulnerability. Consider using an
* AuthorizationInterceptor
* with this feature.
*/
if (false) {
// <-- DISABLED RIGHT NOW
registerProvider(appCtx.getBean(TerminologyUploaderProvider.class));
}
// manual triggering of a subscription delivery, enable this provider
if (false) {
// <-- DISABLED RIGHT NOW
SubscriptionTriggeringProvider retriggeringProvider = appCtx.getBean(SubscriptionTriggeringProvider.class);
registerProvider(retriggeringProvider);
}
// to your specific needs
if (HapiProperties.getCorsEnabled()) {
CorsConfiguration config = new CorsConfiguration();
config.addAllowedHeader(HttpHeaders.ORIGIN);
config.addAllowedHeader(HttpHeaders.ACCEPT);
config.addAllowedHeader(HttpHeaders.CONTENT_TYPE);
config.addAllowedHeader(HttpHeaders.AUTHORIZATION);
config.addAllowedHeader(HttpHeaders.CACHE_CONTROL);
config.addAllowedHeader("x-fhir-starter");
config.addAllowedHeader("X-Requested-With");
config.addAllowedHeader("Prefer");
String allAllowedCORSOrigins = HapiProperties.getCorsAllowedOrigin();
Arrays.stream(allAllowedCORSOrigins.split(",")).forEach(o -> {
config.addAllowedOrigin(o);
});
config.addAllowedOrigin(HapiProperties.getCorsAllowedOrigin());
config.addExposedHeader("Location");
config.addExposedHeader("Content-Location");
config.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "DELETE", "OPTIONS", "PATCH", "HEAD"));
config.setAllowCredentials(HapiProperties.getCorsAllowedCredentials());
// Create the interceptor and register it
CorsInterceptor interceptor = new CorsInterceptor(config);
registerInterceptor(interceptor);
}
// will activate them and match results against them
if (HapiProperties.getSubscriptionWebsocketEnabled() || HapiProperties.getSubscriptionEmailEnabled() || HapiProperties.getSubscriptionRestHookEnabled()) {
// Loads subscription interceptors (SubscriptionActivatingInterceptor,
// SubscriptionMatcherInterceptor)
// with activation of scheduled subscription
SubscriptionInterceptorLoader subscriptionInterceptorLoader = appCtx.getBean(SubscriptionInterceptorLoader.class);
subscriptionInterceptorLoader.registerInterceptors();
// Subscription debug logging
IInterceptorService interceptorService = appCtx.getBean(IInterceptorService.class);
interceptorService.registerInterceptor(new SubscriptionDebugLogInterceptor());
}
// Cascading deletes
DaoRegistry daoRegistry = appCtx.getBean(DaoRegistry.class);
IInterceptorBroadcaster interceptorBroadcaster = appCtx.getBean(IInterceptorBroadcaster.class);
if (HapiProperties.getAllowCascadingDeletes()) {
CascadingDeleteInterceptor cascadingDeleteInterceptor = new CascadingDeleteInterceptor(daoRegistry, interceptorBroadcaster);
getInterceptorService().registerInterceptor(cascadingDeleteInterceptor);
}
// Binary Storage
if (HapiProperties.isBinaryStorageEnabled()) {
BinaryStorageInterceptor binaryStorageInterceptor = appCtx.getBean(BinaryStorageInterceptor.class);
getInterceptorService().registerInterceptor(binaryStorageInterceptor);
}
// Validation
IValidatorModule validatorModule;
switch(fhirVersion) {
case DSTU2:
validatorModule = appCtx.getBean("myInstanceValidatorDstu2", IValidatorModule.class);
break;
case DSTU3:
validatorModule = appCtx.getBean("myInstanceValidatorDstu3", IValidatorModule.class);
break;
case R4:
validatorModule = appCtx.getBean("myInstanceValidatorR4", IValidatorModule.class);
break;
case R5:
validatorModule = appCtx.getBean("myInstanceValidatorR5", IValidatorModule.class);
break;
// These versions are not supported by HAPI FHIR JPA
case DSTU2_HL7ORG:
case DSTU2_1:
default:
validatorModule = null;
break;
}
if (validatorModule != null) {
if (HapiProperties.getValidateRequestsEnabled()) {
RequestValidatingInterceptor interceptor = new RequestValidatingInterceptor();
interceptor.setFailOnSeverity(ResultSeverityEnum.ERROR);
interceptor.setValidatorModules(Collections.singletonList(validatorModule));
registerInterceptor(interceptor);
}
if (HapiProperties.getValidateResponsesEnabled()) {
ResponseValidatingInterceptor interceptor = new ResponseValidatingInterceptor();
interceptor.setFailOnSeverity(ResultSeverityEnum.ERROR);
interceptor.setValidatorModules(Collections.singletonList(validatorModule));
registerInterceptor(interceptor);
}
}
// GraphQL
if (HapiProperties.getGraphqlEnabled()) {
if (fhirVersion.isEqualOrNewerThan(FhirVersionEnum.DSTU3)) {
registerProvider(appCtx.getBean(GraphQLProvider.class));
}
}
if (!HapiProperties.getAllowedBundleTypes().isEmpty()) {
String allowedBundleTypesString = HapiProperties.getAllowedBundleTypes();
Set<String> allowedBundleTypes = new HashSet<>();
Arrays.stream(allowedBundleTypesString.split(",")).forEach(o -> {
BundleType type = BundleType.valueOf(o);
allowedBundleTypes.add(type.toCode());
});
DaoConfig config = appCtx.getBean(DaoConfig.class);
config.setBundleTypesAllowedForStorage(Collections.unmodifiableSet(new TreeSet<>(allowedBundleTypes)));
}
// Bulk Export
if (HapiProperties.getBulkExportEnabled()) {
registerProvider(appCtx.getBean(BulkDataExportProvider.class));
}
}
Also used :
Meta(org.hl7.fhir.dstu3.model.Meta)
FhirContext(ca.uhn.fhir.context.FhirContext)
ResourceProviderFactory(ca.uhn.fhir.jpa.util.ResourceProviderFactory)
SubscriptionDebugLogInterceptor(ca.uhn.fhir.jpa.subscription.module.interceptor.SubscriptionDebugLogInterceptor)
BinaryStorageInterceptor(ca.uhn.fhir.jpa.binstore.BinaryStorageInterceptor)
FhirVersionEnum(ca.uhn.fhir.context.FhirVersionEnum)
SubscriptionTriggeringProvider(ca.uhn.fhir.jpa.provider.SubscriptionTriggeringProvider)
IInterceptorBroadcaster(ca.uhn.fhir.interceptor.api.IInterceptorBroadcaster)
JpaSystemProviderR4(ca.uhn.fhir.jpa.provider.r4.JpaSystemProviderR4)
CorsInterceptor(ca.uhn.fhir.rest.server.interceptor.CorsInterceptor)
ReadOnlyInterceptor(ca.uhn.fhir.jpa.starter.ReadOnlyInterceptor)
ApplicationContext(org.springframework.context.ApplicationContext)
BundleType(org.hl7.fhir.r4.model.Bundle.BundleType)
ResponseHighlighterInterceptor(ca.uhn.fhir.rest.server.interceptor.ResponseHighlighterInterceptor)
IValidatorModule(ca.uhn.fhir.validation.IValidatorModule)
TreeSet(java.util.TreeSet)
DefaultThymeleafNarrativeGenerator(ca.uhn.fhir.narrative.DefaultThymeleafNarrativeGenerator)
TerminologyUploaderProvider(ca.uhn.fhir.jpa.provider.TerminologyUploaderProvider)
RequestValidatingInterceptor(ca.uhn.fhir.rest.server.interceptor.RequestValidatingInterceptor)
HashSet(java.util.HashSet)
BulkDataExportProvider(ca.uhn.fhir.jpa.bulk.BulkDataExportProvider)
DaoConfig(ca.uhn.fhir.jpa.dao.DaoConfig)
LoggingInterceptor(ca.uhn.fhir.rest.server.interceptor.LoggingInterceptor)
Bundle(org.hl7.fhir.dstu3.model.Bundle)
IInterceptorService(ca.uhn.fhir.interceptor.api.IInterceptorService)
DatabaseBackedPagingProvider(ca.uhn.fhir.jpa.search.DatabaseBackedPagingProvider)
CascadingDeleteInterceptor(ca.uhn.fhir.jpa.interceptor.CascadingDeleteInterceptor)
GraphQLProvider(ca.uhn.fhir.jpa.provider.GraphQLProvider)
JpaSystemProviderDstu2(ca.uhn.fhir.jpa.provider.JpaSystemProviderDstu2)
ResponseValidatingInterceptor(ca.uhn.fhir.rest.server.interceptor.ResponseValidatingInterceptor)
SubscriptionInterceptorLoader(ca.uhn.fhir.jpa.subscription.SubscriptionInterceptorLoader)
CorsConfiguration(org.springframework.web.cors.CorsConfiguration)
MetadataProvider(ca.uhn.fhir.jpa.starter.MetadataProvider)
DaoRegistry(ca.uhn.fhir.jpa.dao.DaoRegistry)
HardcodedServerAddressStrategy(ca.uhn.fhir.rest.server.HardcodedServerAddressStrategy)
Example 73 with Server
use of org.hl7.gravity.refimpl.sdohexchange.model.Server in project drug-formulary-ri by HL7-DaVinci.
the class MetadataProvider method getServerConformance.
@Override
public CapabilityStatement getServerConformance(HttpServletRequest theRequest, RequestDetails theRequestDetails) {
CapabilityStatement metadata = super.getServerConformance(theRequest, theRequestDetails);
// Remove HAPI defined default OperationDefinitions (Their definitions are not a
// Canonical URL)
removeOperations(metadata.getRest());
metadata.addInstantiates("http://hl7.org/fhir/us/davinci-drug-formulary/CapabilityStatement/usdf-server");
metadata.setTitle("Da Vinci US Drug Formulary Reference Implementation");
metadata.setStatus(PublicationStatus.DRAFT);
metadata.setExperimental(true);
metadata.setPublisher("Da Vinci");
Calendar calendar = Calendar.getInstance();
calendar.set(2022, 3, 5, 0, 0, 0);
metadata.setDate(calendar.getTime());
CapabilityStatementSoftwareComponent software = new CapabilityStatementSoftwareComponent();
software.setName("https://github.com/HL7-DaVinci/drug-formulary-ri");
metadata.setSoftware(software);
metadata.addImplementationGuide("http://hl7.org/fhir/us/davinci-drug-formulary/ImplementationGuide/hl7.fhir.us.davinci-drug-formulary");
metadata.addImplementationGuide("https://wiki.hl7.org/Da_Vinci_PDex-formulary_FHIR_IG_Proposal");
metadata.setVersion("1.2.0");
updateRestComponents(metadata.getRest());
return metadata;
}
Also used :
Calendar(java.util.Calendar)
CapabilityStatement(org.hl7.fhir.r4.model.CapabilityStatement)
Example 74 with Server
use of org.hl7.gravity.refimpl.sdohexchange.model.Server in project drug-formulary-ri by HL7-DaVinci.
the class PatientAuthorizationInterceptor method verify.
/**
* Helper method to verify and decode the access token
*
* @param token - the access token
* @param fhirBaseUrl - the base url of this FHIR server
* @return the base interface Patient ID datatype if the jwt token is verified
* and contains a patient ID in it claim, otherwise null.
* @throws SignatureVerificationException
* @throws TokenExpiredException
* @throws JWTVerificationException
*/
private IIdType verify(String token, String fhirBaseUrl) throws SignatureVerificationException, TokenExpiredException, JWTVerificationException {
Algorithm algorithm = Algorithm.RSA256(OauthEndpointController.getPublicKey(), null);
logger.fine("Verifying JWT token iss and aud is " + fhirBaseUrl);
JWTVerifier verifier = JWT.require(algorithm).withIssuer(fhirBaseUrl).withAudience(fhirBaseUrl).build();
DecodedJWT jwt = verifier.verify(token);
String patientId = jwt.getClaim("patient_id").asString();
if (patientId != null)
return new IdType("Patient", patientId);
return null;
}
Also used :
Algorithm(com.auth0.jwt.algorithms.Algorithm)
JWTVerifier(com.auth0.jwt.JWTVerifier)
DecodedJWT(com.auth0.jwt.interfaces.DecodedJWT)
IIdType(org.hl7.fhir.instance.model.api.IIdType)
IdType(org.hl7.fhir.r4.model.IdType)
Example 75 with Server
use of org.hl7.gravity.refimpl.sdohexchange.model.Server in project ab2d by CMSgov.
the class CapabilityAPIV2 method capabilityStatement.
@Operation(summary = CAP_REQ)
@ApiResponses(value = { @ApiResponse(responseCode = "200", description = CAP_DESC + " http://hl7.org/fhir/capabilitystatement.html") })
@ResponseStatus(value = HttpStatus.OK)
@GetMapping(value = "/metadata")
public ResponseEntity<String> capabilityStatement(HttpServletRequest request) {
IParser parser = R4.getJsonParser();
eventLogger.log(new ApiResponseEvent(MDC.get(ORGANIZATION), null, HttpStatus.OK, CAP_STMT, CAP_RET, (String) request.getAttribute(REQUEST_ID)));
String server = common.getCurrentUrl(request).replace("/metadata", "");
CapabilityStatement capabilityStatement = CapabilityStatementR4.populateCS(server);
return new ResponseEntity<>(parser.encodeResourceToString(capabilityStatement), null, HttpStatus.OK);
}
Also used :
ResponseEntity(org.springframework.http.ResponseEntity)
CapabilityStatement(org.hl7.fhir.r4.model.CapabilityStatement)
ApiResponseEvent(gov.cms.ab2d.eventlogger.events.ApiResponseEvent)
IParser(ca.uhn.fhir.parser.IParser)
GetMapping(org.springframework.web.bind.annotation.GetMapping)
ResponseStatus(org.springframework.web.bind.annotation.ResponseStatus)
Operation(io.swagger.v3.oas.annotations.Operation)
ApiResponses(io.swagger.v3.oas.annotations.responses.ApiResponses)
Aggregations
Test (org.junit.Test)107
MockHttpServletResponse (org.springframework.mock.web.MockHttpServletResponse)100
IOException (java.io.IOException)47
OperationOutcome (org.hl7.fhir.r4.model.OperationOutcome)42
FHIRException (org.hl7.fhir.exceptions.FHIRException)39
OperationOutcome (org.hl7.fhir.dstu3.model.OperationOutcome)38
ArrayList (java.util.ArrayList)25
BaseFhirIntegrationTest (org.openmrs.module.fhir2.BaseFhirIntegrationTest)24
FileNotFoundException (java.io.FileNotFoundException)21
TerminologyServiceException (org.hl7.fhir.exceptions.TerminologyServiceException)19
Date (java.util.Date)18
Bundle (org.hl7.fhir.r4.model.Bundle)17
URISyntaxException (java.net.URISyntaxException)16
HashMap (java.util.HashMap)16
DefinitionException (org.hl7.fhir.exceptions.DefinitionException)16
FhirContext (ca.uhn.fhir.context.FhirContext)14
LocalDate (java.time.LocalDate)14
NoTerminologyServiceException (org.hl7.fhir.exceptions.NoTerminologyServiceException)13
File (java.io.File)12
Header (org.apache.http.Header)11
