fixing some import statements

clewellyn-nava · clewellyn-nava · commit 380d51c68d81 · 2025-11-25T09:56:47.000-05:00
diff --git a/apps/fhir/bluebutton/permissions.py b/apps/fhir/bluebutton/permissions.py
@@ -4,7 +4,7 @@
 from django.contrib.auth import get_user_model
 from rest_framework import permissions, exceptions
 from rest_framework.exceptions import AuthenticationFailed
-from .constants import ALLOWED_RESOURCE_TYPES
+from apps.fhir.bluebutton.constants import ALLOWED_RESOURCE_TYPES
 from apps.versions import Versions, VersionNotMatched
 
 import apps.logging.request_logger as bb2logging
diff --git a/apps/fhir/bluebutton/views/insurancecard.py b/apps/fhir/bluebutton/views/insurancecard.py
@@ -0,0 +1,63 @@
+from apps.fhir.bluebutton.views.generic import FhirDataView
+from apps.fhir.bluebutton.permissions import (SearchCrosswalkPermission,
+                                              ResourcePermission,
+                                              ApplicationActivePermission)
+from apps.authorization.permissions import DataAccessGrantPermission
+from apps.capabilities.permissions import TokenHasProtectedCapability
+
+from rest_framework import permissions
+
+
+class HasDigitalInsuranceCardScope(permissions.BasePermission):
+    def has_permission(self, request, view):
+        required_scopes = getattr(view, 'required_scopes', None)
+        if required_scopes is None:
+            return True
+
+        if hasattr(request, 'auth') and request.auth is not None:
+            token_scopes = request.auth.scope
+            return any(scope in token_scopes for scope in required_scopes)
+        return False
+
+
+class DigitalInsuranceCardReadView(FhirDataView):
+    '''Digital Insurance Card view for handling BFD Endpoint'''
+
+    permission_classes = [
+        permissions.IsAuthenticated,
+        ApplicationActivePermission,
+        ResourcePermission,
+        SearchCrosswalkPermission,
+        DataAccessGrantPermission,
+        TokenHasProtectedCapability,
+        HasDigitalInsuranceCardScope,
+    ]
+
+    def __init__(self, version=1):
+        super().__init__(version)
+        self.resource_type = 'Bundle'
+
+    def has_permission(self, request, view):
+        required_scopes = getattr(view, 'required_scopes', None)
+        if required_scopes is None:
+            return False
+        return request.user.is_authenticated and hasattr(request.user, 'crosswalk')
+
+    def build_parameters(self, request):
+        patient_id = request.query_params.get('patient', None)
+        if not patient_id:
+            patient_id = request.user.crosswalk.fhir_id
+        return {
+            "_format": "json"
+        }
+
+    def build_url(self, resource_router, resource_type, resource_id, **kwargs):
+        if resource_router.fhir_url.endswith('v1/fhir/'):
+            # only if called by tests
+            return "{}{}/{}/".format(resource_router.fhir_url, resource_type, resource_id)
+        else:
+            if self.version == 3 and resource_router.fhir_url_v3:
+                fhir_url = resource_router.fhir_url_v3
+            else:
+                fhir_url = resource_router.fhir_url
+            return f"{fhir_url}/v{self.version}/fhir/{resource_type}/{resource_id}/"
diff --git a/apps/fhir/bluebutton/views/read.py b/apps/fhir/bluebutton/views/read.py
@@ -2,7 +2,7 @@
 
 from apps.authorization.permissions import DataAccessGrantPermission
 from apps.capabilities.permissions import TokenHasProtectedCapability
-from ..permissions import (ReadCrosswalkPermission, ResourcePermission, ApplicationActivePermission)
+from apps.fhir.bluebutton.permissions import (ReadCrosswalkPermission, ResourcePermission, ApplicationActivePermission)
 from apps.fhir.bluebutton.views.generic import FhirDataView
 
 
