Versions Compared

Version Old Version 12 New Version 13
Changes made by

Aleksandra Novokhatnia (Deactivated)

Aleksandra Novokhatnia (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

approve_request.graphml

Table of Contents
Specification

Apiary

Service logic

  1. Only authenticated and authorized user can use this service
  2. Only NEW patient person request can be activated
  3. The request can be activated only by the employee who works in the same legal entity in which the request was made.

Validate request

  1. Validate request using JSON schema
    1. In case validation failed - generate 422 error
Code Block
languagexml
titleJSON Schema
collapsetrue
{
  "$schema": "http://json-schema.org/draft-04/schema#",
  "type": "object",
  "properties": {
    "verification_code": {
      "type": "string"
    }
  },
  "required": [
    "verification_code"
  ],
  "additionalProperties": false
}


Authorize user

  1. Verify the validity of access token
    1. Return 401 in case validation fails
  2. Check scopes in order to perform this action (scope = 'patientperson_request:write')
    1. Return 403 in case invalid scope(s)

Get

...

person request details

Get patient person request from IL_DB.patientperson_request

Determine authorization method

Get authorization_method from IL_DB.patientperson_request

Code Block
languagesql
SELECT IL_DB.patientperson_request.authentication_method
FROM   IL_DB.patientperson_request
WHERE IL_DB.patientperson_request.id = :id


If authentication_method is NULL - return Error

If patient person have block confidant_person - check uploaded the confidant person's document and the document which confirms the guardianship.

If person's authentication_method == OFFLINE - check uploaded documents

If authentication_method = OTP (or THIRD_PERSON.auth_method = OTP)  - verify SMS code and add phone to db.verification.verified_phones

If authentication_method =  THIRD_PERSON and third_person.auth_method = OFFLINE - check uploaded documents from third person


Invoke verification module to verify OTP

OTP Verification

Check uploaded documents

Invoke Media Content Storage to check documents exist

Media Content Storage

Generate printout form

Invoke MAN to render print form.

Request mapping:

ParameterSource
idPATIENT PERSON REQUEST


Code Block
languagejs
themeMidnight
titlecURL example
curl --request POST \
     --header 'Accept: text/html' \
     --header 'Content-Type: application/json' \
     {:host}/templates/{:patientperson_request_printout_id}/actions/render


Set IL.patientperson_request.printout_content:

Code Block
languagesql
MANResponse.$.data

Change

...

person request

  1. Change entity status in IL_DB.patientperson_request to APPROVED

  2. Set updated_at - now() (Get current date-time)

  3. Set updated_by - user_id (Extract user from token)