Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
stylenone

Purpose

This method intended to get Device Association by id in patient context.

Specification

Apiary

Authorization

  • Verify the validity of access token

    • Return (401, 'Invalid access token') in case of validation fails

  • Verify that token is not expired

    • in case of error - return (401, 'Invalid access token')

  • Check user scopes in order to perform this action (scope = 'device_association:read')

    • Return (403, 'Your scope does not allow to access this resource. Missing allowances: device_associations:read') in case of invalid scope(s)

Access to the resource is also managed by ABAC rules.

Validations

Validate Patient

  • Get Person identifier from the URL

    • Check it exists in DB

      • Return 404 ('not_found') in case of error

Service logic

Service returns specified Device Association in patient context:

...