Purpose

This WS merges a person with a preperson after the merge request has been signed by employeemethod is used to sign merge request. Method receives signed message (pkcs7) including signed content, digital signature and signer public key in signed_content property. All signature fields will be validated (including signer certificate authority).

Specification

Logic

1. Only authenticated and authorized SPECIALIST employees can use this WS.

2. Usage of this WS allowed in EMERGENCY or OUTPATIENT legal entities.

3. Employee should sign merge request to link person with preperson.

4. Only request APPROVED by person can be signed.

5. The request can be signed only by employee who made the request.

6. Create objects in DB should be done in one transaction.

7. Status change of the merge request and preperson should be logged in the Event manager.

8. Succesfull merge does not create record in MPI.persons table for preperson, but deactivates record in MPI.prepersons and linked document in patient collection (mongo)

9. Data from the field data_to_be_signed used as request data for sign method.

...

1. Verify the validity of access token

   1. Return 401 in case validation fails

2. Check user scopes in order to perform this action (scope = 'merge_request:sign')

   1. Return 403 in case invalid scope(s)

3. Check the employee has created this merge request. Thus select inserted_by from il.merge_requests of this merge request and compare it with user_id from the token.

4. Check that client_id from the token maches with il.merge_requests.legal_entity_id

   1. If not match - return 422 error (User doesn’t belong to legal entity where the merge request was created)

Headers

Наприклад:

Content-Type:application/json

Authorization:Bearer c2778f3064753ea70de870a53795f5c9{{access_token}}

api-key:uXhEczJ56adsfh3Ri9SUkc4en{{secret}}

Request data validation

Validate digital signature

...