(GraphQL) Get declaration by ID

• Purpose

• Key points

• Specification

• Authorization

• Validate legal entity

• Validate request

• Service logic

Purpose

This WS allows to get declaration by its globally unique ID in Admin panel.

Key points

1. This is a graphQl method used in Administration panel only.

2. Only authenticated and authorized NHS employee with appropriate scope can get declaration by its globally unique ID.

Specification

Authorization

• Verify the validity of access token

  • in case of error - return 401 (“Invalid access token”) in case of validation fails

• Verify that token is not expired

  • in case of error - return 401 (“Invalid access token”)

• Check user scopes in order to perform this action (scope = 'declaration:read')

  • return 403 (“Your scope does not allow to access this resource. Missing allowances: declaration:read”) in case of invalid scope(s)

Validate legal entity

• Extract client_id from token.

• Check client scopes in order to perform this action (scope = 'declaration:read')

  • in case of error - return 403 (“Your scope does not allow to access this resource. Missing allowances: declaration:read”)

• Check client type (type = NHS)

  • In case of error - return 403 ('You don't have permission to access this resource')

Validate request

• Check declaration_id submitted

  • in case not submitted - return 422 ('required property declaration_id was not present')

  • in case does not exist in OPS db - return 404 ('Declaration not found')

Service logic

1. Get data from ops DB:

   1. declarations by id

2. Render a response according to specification.