REST API method / Метод REST API (настанова) (remove the link block before publishing the document)
Properties of a REST API method document
Purpose
This method must be used to create new division in the system.
Note that different legal entity types can register specific division types and address types accordingly More details can be found here
Logic
General
Each legal entity can manage its own divisions:
add new division
view existing divisions and its details
edit some information on existing division
deactivate division
Only users of this legal entity with specific scopes can manage divisions
Editable information on division:
name
addresses
phones
email
add the gps-coordinates attributed to the division
working hours
Note: Exclude legal_entity_id from Divisions Request Payload in Public API's. Legal_entity_id must be set by GW using user access token.
Note: Calculate mountain group for each new Divisions based on division address
Acceptance criteria:
Configured Public GET, POST, PATCH methods on GW
Successful response with correct authorization and appropriate scopes
401 error on invalid authorization
403 error on invalid scopes
Legal entity id is missing in request
Legal entity id is set as header by GW
Created divisions saved to DB
Mountain group calculated
Configuration parameters
Description of the configuration parameters that are used when processing a request in the system
Dictionaries
Dictionary ADDRESS_TYPE
Dictionary PHONE_TYPE
Dictionary SETTLEMENT_TYPE
Dictionary STREET_TYPE
Dictionary DIVISION_TYPE
Dictionary COUNTRY
Input parameters
Input parameter | Mandatory | Type | Description | Example | |
---|---|---|---|---|---|
1 | |||||
2 |
Request structure
See on API-specification
Key | Value | Mandatory | Description | Example | |
---|---|---|---|---|---|
1 | Content-Type | application/json | M | Тип контенту | Content-Type:application/json |
2 | Authorization | Bearer {{access_token}} | M | Перевірка користувача | Authorization:Bearer {{access_token}} |
3 | API-key | {{secret}} | API-key:{{secret}} |
Request data validation
Authorize
Verify the validity of access token
Check user scope (scope = 'division:write') in order to perform this action
in case error - generate 401 response
If BLOCK_UNVERIFIED_PARTY_USERS is true, then check party's data match following condition: verification_status != NOT_VERIFIED or (verification_status = NOT_VERIFIED and updated_at <= current_date - UNVERIFIED_PARTY_PERIOD_DAYS_ALLOWED):
in case not match - return 403 ("Access denied. Party is not verified")
Validate location
Location is required for divisions related to legal entity with type PHARMACY
Check that location exists in request for legal entity with type PHARMACY
In case of error - generate 422 response
Validate addresses
Check that addresses.type exists in dictionaries.
In case error generate 422 "value is not allowed in enum"
Check that addresses.area exists in Uaddresses.areas
in case error generate 422 "invalid area value"
Check that addresses.settlement exists in Uaddresses.settlements
in case error generate 422 "invalid settlement value"
Check that addresses.settlement_type exists in dictionaries.
in case error generate 422 "value is not allowed in enum"
Check that addresses.settlement_id exists in Uaddresses.settlements
in case error generate 422 "settlement with id = <id> does not exist"
Check that addresses.street_type exists in dictionaries.
In case error generate 422 "value is not allowed in enum"
Check that addresses.zip in
"^[0-9]{5}$"
format.In case error generate 422 "string does not match pattern \"^[0-9]{5}$\""
Check mapping legal_entity_type, division_type and address_type and its obligation. See validation rules here: Validation rules on Divisions
in case error generate 422 response
Validate phone
Check that phone type exists in dictionaries. PHONE_TYPE required (MOBILE,LAND_LINE)
in case error generate 422 response
Check phone number is valid according to "^\\+38[0-9]{10}$"
in case error generate 422 response
Validate email
Check that email is valid according to "~r/^[\\w!#$%&'*+\\/=?`{|}~^-]+(?:\\.[\\w!#$%&'*+\\/=?`{|}~^-]+)*@(?:[A-Z0-9-]+\\.)+[A-Z]{2,6}$/i"
in case error generate 422 response
Validate type
Check that type exists in dictionaries.
in case error generate 422 response
Check mapping of legal_entity_type and division type. See validation rules here: Validation rules on Divisions
in case error generate 422 response
Processing
Create new division
Parameter | Source |
---|---|
action | `PUT` |
id |
|
external_id | $.external_id |
name | $.name |
type | $.type |
mountain_group |
|
addresses | $.addresses |
phones | $.type, $.number |
inserted_at | :timestamp |
Updated_at | :timestamp |
legal_entity_id | take from token |
Location | $.latitude, $.longitude |
status | ACTIVE |
is_active | true |
working_hours | $.working_hours |
Additional
Add new mapping for "division_type" & Legal_entity_type
Check that prm.legal_entities.status = active or suspended and prm.legal_entities.is_active = true for legal entity to which division is added
Add new validation for verification of usage division_type in Legal_entity_type at Create_division process.
There is no other specific logic for new division types.
Response structure examples
See on API-specification
HTTP status codes
Response code | HTTP Status code | Message | Internal name | Description | |
---|---|---|---|---|---|
1 | Базові | ||||
2 | 200 | Response |
| ||
3 | 401 | Authorization failed | |||
4 | 403 | Invalid scopes | |||
5 | 403 | Access denied. Party is not verified | |||
6 | 422 | invalid area value | |||
7 | 422 | invalid settlement value | |||
8 | 422 | settlement with id = <id> does not exist | |||
9 | 422 | string does not match pattern \"^[0-9]{5}$\" | |||
10 | 422 | Validation failed | |||
11 | 422 | value is not allowed in enum | |||
12 | Специфічні | ||||
13 |
Post-processing processes
Description of actions performed on data after processing
Technical modules where the method is used
List of pages describing technical modules where the method is used