...

...

• Content-Type: application/json

• Authorization: Bearer {token}

• api-key: {secret}

Validation data request

...

1. Checking the existence of other Composition tasks for signing

   1. Search in task_queue other tasks with SIGN_COMPOSITION type and status isn’t FAILED

      1. In case of error (such task is found) - return 1142 (ANOTHER_SIGN_TASK_ALREADY_EXIST)

2. Checking the signing delay

   1. If signing time does not match with value in EMAL_FILTER_SIGN_CREATE_DELAY_DISABILITY, EMAL_FILTER_SIGN_CREATE_DELAY_NEWBORN - return 1124 (CREATE_SIGN_DELAY_EXCEEDED)

3. Verification of signature overlay

   1. The body of the signature in the request transfers to the DS service by RPC method “decode_signed_content”

      1. If service:

         1. Returned a null field “content” - return error 1019 (SIGVER_FAILED_NO_PAYLOAD) with explanation "content is null or blank"

         2. Did not return a response (or returned a response of an inappropriate structure) - return error 1099 (SIGVER_FAILED_BAD_CONTENT)

         3. Returned any value in the "validation_error_message" field - return error 1020 (SIGVER_FAILED_BAD_CERT)

         4. Did not return any signature - return error 1021 (SIGVER_FAILED_NO_SIGNATURES)

         5. Returned several signatures - return error 1022 (SIGVER_FAILED_MULTIPLE_SIGNATURES)

   2. For every signatures that were overlayed

      1. Check the value of the "is_valid field" in the RPC service response

         1. If there is at least one invalid signature - return 1023 (SIGVER_FAILED_INVALID_SIGNATURE)

4. Validation of signed content

   1. Checks the status of the signing object

      1. If the status is not equal to PRELIMINARY - return error 1041 (CANT_SIGN_NON_PRELIMINARY_COMPOSITION)

   2. Checks the content in the signed object and compares it to the Composition object

      1. If the content does not match - return 1042 (SIGNING_CONTENT_MISMATCH)

5. Signer Check. The application receives information about the signer from the certificate of qualified electronic signature from the service (the value of the field corresponding to the RNOCPP from the certificate)

Processing

1. Checking the existence of other Composition tasks for signing. Logic - to check if there are other tasks in the system for the same Composition waiting for signature verification. Such a procedure is necessary to prevent several parallel requests for signing the same Composition.

2. Checking the signing delay: Check that allowed delay time between the creation of the draft and the direct signing of the Composition match with current configuration.

3. Overlay CheckVerification of signature overlay: Checks that the signature is overlaid correctly and the signature is valid

4. Validation of signed content: checks that the signature was applied to the corresponding Composition’s object record without any modifications after creating the draft

5. Signer Check: Checks the data in the signature certificate against the author data according to Composition.author and Employee data

6. Checking the related Composition: Check that specified in relatesTo Composition exists and has an appropriate status

7. Status update: Changes the Composition status in the database and related Composition’s status (in case of refinement Temporary Disability Composition)

8. Saving Composition: Saves the data of the signed Composition in the object drive (ceph)

9. For Temporary Disability Composition (for tasks that were successfully completed at this stage): Planning CREATE ERLN RECORD task (in PENDING status)

...