ЕСОЗ - публічна документація
RC_Unblock Medication request by Pharmacy user (CR-522)
Purpose
This WS is designed to unblock previously blocked Medication request with indicating block_reason and block_reason_code by Pharmacy user.
Key points
Only authenticated and authorized user with appropriate scope and ‘PHARMACIST’ employee type can unblock Medication request.
In the response of this endpoint legal entity, division and employee details are trimmed.
Medication request can be unblocked only if it was previously blocked.
Medication request can be unblocked only from ‘ACTIVE' status.
Specification
Authorization
Verify the validity of access token
in case of error - return 401 (“Invalid access token”) in case of validation fails
Verify that token is not expired
in case of error - return 401 (“Invalid access token”)
Check user scopes in order to perform this action (scope = 'medication_request:unblock_pharm')
return 403 (“Your scope does not allow to access this resource. Missing allowances: medication_request:unblock_pharm”) in case of invalid scope(s)
Validations
Validate request
Validate request using JSON schema
in case of error - return 422
Validate Medication request
Get Medication request identifier from the URL. Check Medication request exists in OPS DB
in case of error - return 404 ("Medication request does not exist")
Validate user
Medication Request unblocking is allowed for user if he has active and approved employee with employee_type = ‘PHARMACIST’
in case of error - return 409 ("Only pharmacist can unblock medication request")
Check if user is from the same legal entity as legal_entity in $.medication_requests.blocked_by_legal_entity_id :
client_id from token = $.medication_requests.blocked_by_legal_entity_id.
in case of error - return 422 “Only an employee of the legal_entity where the medication request was blocked can unblock it“
Validation transition
Get Medication request by $.id in OPS DB. Check that Medication request status = ‘ACTIVE’
in case of error - return 409 ("Medication request must be in active status")
Get Medication request by $.id in OPS DB. Check that Medication request is blocked: blocked_to > now()
in case of error - return 409 ("Medication request is already unblocked")
Validate block reason code
Validate $.block_reason_code is a value from MEDICATION_REQUEST_UNBLOCK_REASON dictionary
in case of error - return 422 ("value is not allowed in enum")
Service logic
Update Medication request in OPS DB:
set blocked_to = null
set blocked_by_legal_entity_id = null
set block_reason_code = $.block_reason_code
set block_reason = null
set updated_by = user_id
set updated_at = now()
Send SMS for person if $.block_reason_code=
MEDICATION_CANCEL
If Medication request has program with medical program setting request_notification_disabled = true, then don't send SMS.
Else:
If
authorize_with
exists in medication request and is not empty, check:Authentication method exists in person_authentication_methods table in MPI DB (with is_active=true), is active (ended_at > now() or null)
Get value of
THIRD_PERSON_CONFIDANT_PERSON_RELATIONSHIP_CHECK
config parameter, if it is set totrue
- for authentication method with type = THIRD_PERSON check that person from value is an approved confidant for a person from medication request – exists active and approved confidant person relationship between person from request and confidant_person_id from authentication method value (using following logic: https://edenlab.atlassian.net/wiki/spaces/EH/pages/3736338433 withperson_id
= person from request andconfidant_person_id
= value from auth method) - expected:ok, :approved
response)in case any validation failed - do not send SMS to person
else - get authentication_method from
authorize_with
If
authorize_with
does not exist in medication request or is empty - get authentication_method of person from MPIIf authentication_method == OTP, then send SMS to a person from Medication request:
Generate SMS text
get template from unblock_template_sms parameter
enrich template with data from Medication request
Send SMS to a person
Add new record in Event manager
field | value |
---|---|
|
|
|
|
| $.id |
| $.blocked_to |
| $.update_at |
| $.changed_by |
ЕСОЗ - публічна документація