CMSgov · bwang-icf · Dec 3, 2024 · Nov 27, 2024 · Nov 29, 2024 · Nov 29, 2024
diff --git a/apps/wellknown/urls.py b/apps/wellknown/urls.py
@@ -2,6 +2,7 @@
 from waffle.decorators import waffle_switch
 from .views import (
     openid_configuration,
+    smart_configuration,
     ApplicationListView,
     ApplicationLabelView,
     PublicApplicationListView,
@@ -10,6 +11,7 @@
 
 urlpatterns = [
     path("openid-configuration", openid_configuration, name="openid-configuration"),
+    path("smart-configuration", smart_configuration, name="smart-configuration"),
     path(
         "applications",
         waffle_switch("wellknown_applications")(ApplicationListView.as_view()),
@@ -28,6 +30,9 @@
     path(
         "openid-configuration-v2", openid_configuration, name="openid-configuration-v2"
     ),
+    path(
+        "smart-configuration-v2", smart_configuration, name="smart-on-fhir-configuration-v2"
+    ),
     path(
         "applications-v2",
         waffle_switch("wellknown_applications")(ApplicationListView.as_view()),

diff --git a/apps/wellknown/views/__init__.py b/apps/wellknown/views/__init__.py
@@ -1,3 +1,3 @@
-from .openid import openid_configuration, base_issuer, build_endpoint_info  # NOQA
+from .openid import openid_configuration, smart_configuration, base_issuer, build_endpoint_info  # NOQA
 from .application import ApplicationListView, ApplicationLabelView  # NOQA
 from .public_applications import ApplicationListView as PublicApplicationListView  # NOQA
diff --git a/apps/wellknown/views/openid.py b/apps/wellknown/views/openid.py
@@ -9,6 +9,16 @@
 import apps.logging.request_logger as bb2logging
 
 logger = logging.getLogger(bb2logging.HHS_SERVER_LOGNAME_FMT.format(__name__))
+SCOPES_SUPPORTED = ["profile", "patient/Patient.read", "patient/ExplanationOfBenefit.read", "patient/Coverage.read"]
+CODE_CHALLENGE_METHODS_SUPPORTED = ["S256"]
+CAPABILITIES = [
+    "client-confidential-symmetric",
+    "sso-openid-connect",
+    "launch-standalone",
+    "permission-offline",
+    "permission-patient",
+    "permission-v1"
+]
 
 
 @require_GET
@@ -23,6 +33,18 @@ def openid_configuration(request):
     return JsonResponse(data)
 
 
+@require_GET
+def smart_configuration(request):
+    """
+    Views that returns smart_configuration.
+    """
+    data = OrderedDict()
+    issuer = base_issuer(request)
+    v2 = request.path.endswith('smart-configuration-v2') or request.path.endswith('smartConfigV2')
+    data = build_smart_config_endpoint(data, issuer=issuer, v2=v2)
+    return JsonResponse(data)
+
+
 def base_issuer(request):
     """
     define the base url for issuer
@@ -84,3 +106,26 @@ def build_endpoint_info(data=OrderedDict(), v2=False, issuer=""):
     data["fhir_metadata_uri"] = issuer + \
         reverse('fhir_conformance_metadata' if not v2 else 'fhir_conformance_metadata_v2')
     return data
+
+
+def build_smart_config_endpoint(data=OrderedDict(), v2=False, issuer=""):
+    """
+    construct the smart config endpoint response. Takes in output of build_endpoint_info since they share many fields
+    issuer should be http: or https:// prefixed url.
+
+    :param data:
+    :return:
+    """
+
+    data = build_endpoint_info(data, issuer=issuer, v2=v2)
+    del(data["userinfo_endpoint"])
+    del(data["ui_locales_supported"])
+    del(data["service_documentation"])
+    del(data["op_tos_uri"])
+    del(data["fhir_metadata_uri"])
-    del(data["fhir_metadata_uri"])
+    del(data["fhir_metadata_uri"])
+    data["grant_types_supported"].remove("refresh_token")
-    del(data["fhir_metadata_uri"])
+    del(data["fhir_metadata_uri"])
+    data["grant_types_supported"].remove("refresh_token")
+
+    data["scopes_supported"] = SCOPES_SUPPORTED
+    data["code_challenge_methods_supported"] = CODE_CHALLENGE_METHODS_SUPPORTED
+    data["capabilities"] = CAPABILITIES
+
+    return data