Merge pull request #365 from NHSDigital/AMB-2144-mesh-integration

Amb 2144 mesh integration

Author: amitkr-22

.github/workflows/sonarcloud.yml

@@ -78,6 +78,14 @@ jobs:
           pip install poetry==1.8.4 moto==4.2.11 coverage redis botocore==1.35.49 simplejson responses structlog fhir.resources jsonpath_ng pydantic==1.10.13 requests aws-lambda-typing cffi pyjwt boto3-stubs-lite[dynamodb]~=1.26.90 python-stdnum==1.20
           poetry run coverage run --source=backend -m unittest discover -s backend || echo "fhir-api tests failed" >> failed_tests.txt
           poetry run coverage xml -o sonarcloud-coverage.xml
+      
+      - name: Run unittest with coverage-mesh-processor
+        id: meshprocessor
+        continue-on-error: true
+        run: |
+          pip install poetry==1.8.4 moto==4.2.11 coverage redis botocore==1.35.49 simplejson responses structlog fhir.resources jsonpath_ng pydantic==1.10.13 requests aws-lambda-typing cffi pyjwt boto3-stubs-lite[dynamodb]~=1.26.90 python-stdnum==1.20
+          poetry run coverage run --source=meshfileprocessor -m unittest discover -s meshfileprocessor || echo "meshfileprocessor tests failed" >> failed_tests.txt
+          poetry run coverage xml -o sonarcloud-meshfileprocessor-coverage.xml
 
       - name: Run Test Failure Summary
         id: check_failure

filenameprocessor/src/file_key_validation.py

@@ -54,7 +54,7 @@ def validate_file_key(file_key: str) -> tuple[str, str]:
         and version in Constants.VALID_VERSIONS
         and supplier  # Note that if supplier could be identified, this also implies that ODS code is valid
         and is_valid_datetime(timestamp)
-        and extension == "CSV"
+        and ((extension == "CSV") or (extension == "DAT"))  # The DAT extension has been added for MESH file processing
     ):
         raise InvalidFileKeyError("Initial file validation failed: invalid file key")
 

filenameprocessor/tests/test_file_key_validation.py

@@ -93,7 +93,7 @@ def test_validate_file_key(self):
             # File key with missing timestamp
             (VALID_FLU_EMIS_FILE_KEY.replace("20000101T00000001", ""), invalid_file_key_error_message),
             # File key with incorrect extension
-            (VALID_FLU_EMIS_FILE_KEY.replace(".csv", ".dat"), invalid_file_key_error_message),
+            (VALID_FLU_EMIS_FILE_KEY.replace(".csv", ".xlsx"), invalid_file_key_error_message),
         ]
 
         for file_key, expected_result in test_cases_for_failure_scenarios:

mesh-infra/main.tf

@@ -0,0 +1,41 @@
+terraform {
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "~> 5"
+    }    
+  }
+  backend "s3" {
+    region = "eu-west-2"
+    key    = "state"
+  }
+    required_version = ">= 1.5.0"
+}
+
+
+
+data "aws_vpc" "default" {
+    default = true
+}
+data "aws_subnets" "default" {
+    filter {
+        name   = "vpc-id"
+        values = [data.aws_vpc.default.id]
+    }
+}
+
+module "mesh" {
+  source = "git::https://github.com/nhsdigital/terraform-aws-mesh-client.git//module?ref=v2.1.5"
+
+  name_prefix                    = "local-immunisation"
+  mesh_env                       = "integration"
+  subnet_ids                     = data.aws_subnets.default.ids
+
+  mailbox_ids                    = ["X26OT303"]
+  verify_ssl                     = "true"
+  get_message_max_concurrency    = 10
+  compress_threshold             = 1 * 1024 * 1024
+  handshake_schedule             = "rate(24 hours)"
+
+  account_id                     = 345594581768
+}

meshfileprocessor/Dockerfile

@@ -0,0 +1,27 @@
+FROM public.ecr.aws/lambda/python:3.10 AS base
+
+# Create a non-root user with a specific UID and GID
+RUN mkdir -p /home/appuser && \
+    echo 'appuser:x:1001:1001::/home/appuser:/sbin/nologin' >> /etc/passwd && \
+    echo 'appuser:x:1001:' >> /etc/group && \
+    chown -R 1001:1001 /home/appuser && pip install "poetry~=1.5.0"
+
+# Install Poetry as root
+COPY poetry.lock pyproject.toml README.md ./
+RUN poetry config virtualenvs.create false && poetry install --no-interaction --no-ansi --no-root --only main
+
+# -----------------------------
+# FROM base AS test
+# COPY src src
+# COPY tests tests
+# RUN poetry install --no-interaction --no-ansi --no-root && \
+#     pytest --disable-warnings tests
+
+# -----------------------------
+FROM base AS build
+
+COPY src .
+RUN chmod 644 $(find . -type f) && chmod 755 $(find . -type d)
+# Switch to the non-root user for running the container
+USER 1001:1001
+CMD ["converter.lambda_handler"]

meshfileprocessor/Makefile

@@ -0,0 +1,19 @@
+build:
+	docker build -t mesh-lambda-build .
+
+package:build
+	mkdir -p build
+	docker run --rm -v $(shell pwd)/build:/build mesh-lambda-build
+# test:
+# 	python -m unittest	
+
+# coverage run:
+# 	coverage run -m unittest discover
+
+# coverage report:
+# 	coverage report -m
+
+# coverage html:
+# 	coverage html  
+
+.PHONY: build package

meshfileprocessor/README.md

@@ -0,0 +1,31 @@
+[tool.poetry]
+name        = "meshconverter"
+version     = "0.1.0"
+description = ""
+authors     = ["Your Name <[email protected]>"]
+readme      = "README.md"
+packages    = [{include = "src"}]
+
+[tool.poetry.dependencies]
+python                  = "~3.10"
+"fhir.resources"        = "~7.0.2"
+boto3                   = "~1.26.90"
+boto3-stubs-lite        = {extras = ["dynamodb"], version = "~1.26.90"}
+aws-lambda-typing       = "~2.18.0"
+moto                    = "~4.2.11"
+requests                = "~2.31.0"
+responses               = "~0.24.1"
+pydantic                = "~1.10.13"
+pyjwt                   = "~2.8.0"
+cryptography            = "~42.0.4"
+cffi                    = "~1.16.0"
+jsonpath-ng             = "^1.6.0"
+simplejson              = "^3.19.2"
+structlog               = "^24.1.0"
+pandas                  = "^2.2.3"
+freezegun               = "^1.5.1"
+
+[build-system]
+requires      = ["poetry-core ~= 1.5.0"]
+
+build-backend = "poetry.core.masonry.api"

meshfileprocessor/pyproject.toml

@@ -0,0 +1,44 @@
+import boto3
+import os
+
+
+def lambda_handler(event, context):
+    s3 = boto3.client('s3')
+
+    #  Destination bucket name
+    destination_bucket = os.getenv("Destination_BUCKET_NAME")
+
+    for record in event["Records"]:
+        bucket_name = record["s3"]["bucket"]["name"]
+        file_key = record["s3"]["object"]["key"]
+        copy_source = {
+            'Bucket': record["s3"]["bucket"]["name"],
+            'Key': record["s3"]["object"]["key"]
+        }
+
+    # Read the .dat file from S3
+    dat_obj = s3.get_object(Bucket=bucket_name, Key=file_key)
+
+    # Update the filename from Metadata
+    file_name = ensure_dat_extension(dat_obj['Metadata'].get('mex-filename', None))
+
+    s3.copy_object(CopySource=copy_source, Bucket=destination_bucket, Key=file_name)
+
+    return {
+        'statusCode': 200,
+        'body': 'Files converted and uploaded successfully!'
+    }
+
+
+def ensure_dat_extension(file_name):
+    if '.' in file_name:
+        # Split the filename and extension
+        base_name, extension = file_name.rsplit('.', 1)
+
+        # Check if the extension is not 'dat'
+        if extension != 'dat':
+            file_name = f"{base_name}.dat"
+    else:
+        file_name += '.dat'
+
+    return file_name