...

Logic

1. Save signed content to media storage.

2. Update Medication request in OPS DB:

   1. set status = 'REJECTED'

   2. set reject_reason_code = $.reject_reason_code

   3. set reject_reason = $.reject_reason

   4. set updated_by = user_id

   5. set updated_at = now()

3. Send SMS for person

   1. If Medication request has program with medical program setting medication_request_notification_disabled = true, then don't send SMS.

      Else:

      1. Get authentication_method of person from MPI

      2. If authentication_method == OTP, then send SMS to a person from Medication request:

         1. Generate SMS text (

            1. get template from reject_template_sms parameter

            2. enrich template with data from Medication request

         2. Send SMS to a person

4. Add new status to event manager

...

• is an author of the Medication request Request (medication_request.employee_id);

• has an approval on write Care plan if Medication Request based on the Care plan (medication_request.based_on);

• isMed_Admin from legal entity where Medication Request is created

  • in case of error - return 409 ("Employee is not author of medication request, doesn't have approval or required employee type").

Validate content

• Validate request using JSON schema

  • in case of error - return 422 ('schema does not allow additional properties' OR 'required property type was not present').

• Check that signed content contains all required fields and is equal to stored object

  • Decode signed content.

  • Render requested medication request.

  • Check that rendered and decoded data matches (except for reject_reason_code and reject_reason fields)

    • in case of error - return 422 ("Signed content does not match the previously created content").

...