ЕСОЗ - публічна документація

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

Ruels 

#DescriptionRouteInputExpected resultActual ResultStatus
1Scope validation
token without scope "episode:read"403403passed
2

Data consistency validation: get entity by id using wrong episode id

{{host}}/api/patients/{{patient_id}}/episodes/{{WRONG_episode_id}}/encounters/encounter_id
404200FAILED
3Data consistency validation: get entities by search params using wrong episode id{{host}}/api/patients/{{patient_id}}/episodes/{{WRONG_episode_id}}/encounters?
404200FAILED
4User with active declaration receives access: HPepisode by iddoctor
with an active declaration
from third-party LE, no approval
200



5episode by search params
200



6encounter by id
200

7encounter by search params
200

8encounter by id via episode context
200

9encounter by search params via episode context
200
list filtered


10condition by id
200

11condition by search params
200

12condition by id via episode context
200

13condition by search params via episode context
200
list filtered


14observation by id
200

15observation by search params
200

16observation by id via episode context
200

17observation by search params via episode context
200
list filtered


18immunization by id
200

19immunization by search params
200

20immunization by id via episode context
200

21immunization by search params via episode context
200
list filtered


22allergy_intolerance by id
200

23allergy_intolerance by search params
200

24allergy_intolerance by id via episode context
200

25allergy_intolerance by search params via episode context

200

list filtered



26User with episode approval receives access: HP


doctor
without an active declaration
from third-party LE
having approval



27User with episode approval try to receive access: approval expired

403 
access denied


28User with episode approval try to receive access: no episode matches

403 
access denied


29User from the same LE receives access: HP1-22doctor without an active declaration  from managing_organization, no approval200403 
access denied
FAILED
30Combination of rules




31User with no permissions 1-22
403 
access denied
403 
access denied
passed
  • No labels