ЕСОЗ - публічна документація

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Purpose

This API allows to cancel Care plan in cases it has been rejected or entered in error.

Key points

  1. It can be cancelled by author of the Care plan who has an Approval granted by the patient on write Care plan resource

  2. Cancel should be signed with DS. So, all the Care plan data (without activities data) should be submitted.

  3. Status of the Care plan changed in async way. The result of the job should be a link on the Care plan details.

Specification

Apiary

Authorization

  • Verify the validity of access token

    • Return (401, 'Invalid access token') in case of validation fails

  • Verify that token is not expired

    • in case of error - return (401, 'Invalid access token')

  • Check user scopes in order to perform this action (scope = 'care_plan:write')

    • Return (403, 'Your scope does not allow to access this resource. Missing allowances: care_plan:write') in case of invalid scope(s)

Validate legal entity

  • Extract client_id from token

  • Check legal entity status is ACTIVE

    • In case of error - return 409 ('Legal entity must be ACTIVE')

  • Check legal entity type in me_allowed_transactions_le_types config parameter

    • in case of error - return 409 ('Action is not allowed for the legal entity type')

Validate User

  • Extract user_id from token.

  • Check user has an active and approved employee that:

    • is specified as Author of the Care plan and has an active Approval granted by the Patient on write the Care plan resource (care plan id from URL)

      • Return 403 ('Access denied') in case employee has not specified as author of the care plan, or has no Approval on write

Validate data consistency

  • Ensure that submitted Care plan relates to the Patient (from URL)

    • Return 404 (not found) in case of error

Validate Digital Sign

  • Check DS is valid and not expired

  • Validate that DS belongs to the user

    • Check that DRFO from DS and user's party.tax_id matches

Validate status transition

  • Get Care plan by id

  • Check status:

    • Care plan status should be changed according to Care plan status model.

      • Return 409 ('Care plan in status <cancelled/completed> cannot be cancelled') in case of error

Validate status reason

Validate value in the field $.status_reason, required

  • Validate field type is codeable concept

  • Check that codeable concept refers to eHealth/care_plan_cancel_reasons dictionary

  • Validate value within dictionary specified above

Validate activities

  • Get Care plan activities

  • Check Care plan has no activities or all activities has final status

    • Return 409 ('Care plan has unfinished activities') in case if found at least one activity not in final status

Validate content

Signed content must match with Care plan in DB in order to be changed

  1. Render Care plan from DB

  2. Exclude $.status_reason from signed content

  3. Compare rendered Care plan and signed content

    1. In case both object doesn't match - return 422 ('Signed content doesn't match with previously created care plan')

Service logic

  1. Save signed content to media storage

  2. Update Care plan status (update also updated_at, updated_by)

  3. Set $.status_reason and $.status_history

  • No labels