Merge branch 'master' into dependabot/npm_and_yarn/npm-minor-patch-0d7b05022b

Author: dlzhry2nhs

.github/dependabot.yml

@@ -7,12 +7,13 @@ version: 2
 updates:
   - package-ecosystem: "docker"
     directories:
+      - "/batch_processor_filter"
+      - "/infrastructure/grafana/non-prod/docker"
+      - "/lambdas/filenameprocessor"
       - "/lambdas/ack_backend"
       - "/lambdas/delta_backend"
-      - "/filenameprocessor"
-      - "/infrastructure/grafana/non-prod/docker"
+      - "/lambdas/recordprocessor"
       - "/mesh_processor"
-      - "/recordprocessor"
       - "/sandbox"
     schedule:
       interval: "daily"
@@ -50,17 +51,17 @@ updates:
       - "/"
       - "/backend"
       - "/batch_processor_filter"
-      - "/tests/e2e"
-      - "/tests/e2e_batch"
-      - "/filenameprocessor"
       - "/mesh_processor"
-      - "/recordprocessor"
+      - "/lambdas/recordprocessor"
       - "/lambdas/ack_backend"
       - "/lambdas/delta_backend"
-      - "/lambdas/redis_sync"
+      - "/lambdas/filenameprocessor"
       - "/lambdas/id_sync"
       - "/lambdas/mns_subscription"
+      - "/lambdas/redis_sync"
       - "/lambdas/shared"
+      - "/tests/e2e"
+      - "/tests/e2e_batch"
     schedule:
       interval: "daily"
     open-pull-requests-limit: 1

.github/workflows/deploy-backend.yml

@@ -137,6 +137,7 @@ jobs:
         if: ${{ inputs.environment == 'dev' && inputs.create_mns_subscription }}
         working-directory: "./lambdas/mns_subscription"
         env:
+          APIGEE_ENVIRONMENT: int
           SQS_ARN: ${{ env.ID_SYNC_QUEUE_ARN }}
         run: |
           poetry install --no-root

.github/workflows/pr-teardown.yml

@@ -63,6 +63,7 @@ jobs:
       - name: Unsubscribe MNS
         working-directory: "./lambdas/mns_subscription"
         env:
+          APIGEE_ENVIRONMENT: int
           SQS_ARN: ${{ env.ID_SYNC_QUEUE_ARN }}
         run: |
           poetry install --no-root

.github/workflows/quality-checks.yml

@@ -97,15 +97,6 @@ jobs:
           aws configure set aws_access_key_id $AWS_ACCESS_KEY_ID
           aws configure set aws_secret_access_key $AWS_SECRET_ACCESS_KEY
 
-      - name: Run unittest with filenameprocessor-coverage
-        working-directory: filenameprocessor
-        id: filenameprocessor
-        continue-on-error: true
-        run: |
-          poetry install
-          poetry run coverage run -m unittest discover || echo "filenameprocessor tests failed" >> ../failed_tests.txt
-          poetry run coverage xml -o ../filenameprocessor-coverage.xml
-
       - name: Run unittest with batchprocessorfilter-coverage
         working-directory: batch_processor_filter
         id: batchprocessorfilter
@@ -118,15 +109,15 @@ jobs:
           poetry run coverage xml -o ../batchprocessorfilter-coverage.xml
 
       - name: Run unittest with recordprocessor-coverage
-        working-directory: recordprocessor
+        working-directory: lambdas/recordprocessor
         id: recordprocessor
         env:
-          PYTHONPATH: ${{ github.workspace }}/recordprocessor/src:${{ github.workspace }}/recordprocessor/tests
+          PYTHONPATH: ${{ env.LAMBDA_PATH }}/recordprocessor/src:${{ env.LAMBDA_PATH }}/recordprocessor/tests:${{ env.SHARED_PATH }}/src
         continue-on-error: true
         run: |
           poetry install
-          poetry run coverage run -m unittest discover || echo "recordprocessor tests failed" >> ../failed_tests.txt
-          poetry run coverage xml -o ../recordprocessor-coverage.xml
+          poetry run coverage run --source=src -m unittest discover || echo "recordprocessor tests failed" >> ../../failed_tests.txt
+          poetry run coverage xml -o ../../recordprocessor-coverage.xml
 
         # This step is redundant - all of these tests will be run in the backend step below
       - name: Run unittest with recordforwarder-coverage
@@ -182,6 +173,28 @@ jobs:
           poetry run coverage run -m unittest discover || echo "delta tests failed" >> ../../failed_tests.txt
           poetry run coverage xml -o ../../delta-coverage.xml
 
+      - name: Run unittest with filenameprocessor-coverage
+        working-directory: lambdas/filenameprocessor
+        id: filenameprocessor
+        env:
+          PYTHONPATH: ${{ env.LAMBDA_PATH }}/filenameprocessor/src:${{ env.LAMBDA_PATH }}/filenameprocessor/tests:${{ env.SHARED_PATH }}/src
+        continue-on-error: true
+        run: |
+          poetry install
+          poetry run coverage run -m unittest discover || echo "filenameprocessor tests failed" >> ../../failed_tests.txt
+          poetry run coverage xml -o ../../filenameprocessor-coverage.xml
+
+      - name: Run unittest with id_sync
+        working-directory: lambdas/id_sync
+        id: id_sync
+        env:
+          PYTHONPATH: ${{ env.LAMBDA_PATH }}/id_sync/src:${{ env.LAMBDA_PATH }}/id_sync/tests:${{ env.SHARED_PATH }}/src
+        continue-on-error: true
+        run: |
+          poetry install
+          poetry run coverage run --rcfile=.coveragerc --source=src -m unittest discover || echo "id_sync tests failed" >> ../../failed_tests.txt
+          poetry run coverage xml -o ../../id_sync-coverage.xml
+
       - name: Run unittest with coverage-mns-subscription
         working-directory: lambdas/mns_subscription
         id: mns_subscription
@@ -216,17 +229,6 @@ jobs:
           poetry run coverage run --rcfile=.coveragerc --source=src -m unittest discover -s tests -p "test_*.py" -v || echo "shared tests failed" >> ../../failed_tests.txt
           poetry run coverage xml -o ../../shared-coverage.xml
 
-      - name: Run unittest with id_sync
-        working-directory: lambdas/id_sync
-        id: id_sync
-        env:
-          PYTHONPATH: ${{ env.LAMBDA_PATH }}/id_sync/src:${{ env.LAMBDA_PATH }}/id_sync/tests:${{ env.SHARED_PATH }}/src
-        continue-on-error: true
-        run: |
-          poetry install
-          poetry run coverage run --rcfile=.coveragerc --source=src -m unittest discover || echo "id_sync tests failed" >> ../../failed_tests.txt
-          poetry run coverage xml -o ../../id_sync-coverage.xml
-
       - name: Run Test Failure Summary
         id: check_failure
         run: |

Makefile

@@ -1,6 +1,6 @@
 SHELL=/usr/bin/env bash -euo pipefail
 
-PYTHON_PROJECT_DIRS_WITH_UNIT_TESTS = backend batch_processor_filter filenameprocessor mesh_processor recordprocessor lambdas/ack_backend lambdas/delta_backend lambdas/redis_sync lambdas/id_sync lambdas/mns_subscription lambdas/shared
+PYTHON_PROJECT_DIRS_WITH_UNIT_TESTS = backend batch_processor_filter mesh_processor lambdas/ack_backend lambdas/delta_backend lambdas/filenameprocessor lambdas/id_sync lambdas/mns_subscription lambdas/recordprocessor lambdas/redis_sync lambdas/shared
 PYTHON_PROJECT_DIRS = tests/e2e tests/e2e_batch quality_checks $(PYTHON_PROJECT_DIRS_WITH_UNIT_TESTS)
 
 .PHONY: install lint format format-check clean publish build-proxy release initialise-all-python-venvs update-all-python-dependencies run-all-python-unit-tests build-all-docker-images

backend/src/controller/fhir_api_exception_handler.py

@@ -9,19 +9,27 @@
 from controller.aws_apig_response_utils import create_response
 from models.errors import (
     Code,
+    CustomValidationError,
+    IdentifierDuplicationError,
     InvalidImmunizationId,
+    InvalidJsonError,
     ResourceNotFoundError,
     Severity,
     UnauthorizedError,
     UnauthorizedVaxError,
+    UnhandledResponseError,
     create_operation_outcome,
 )
 
 _CUSTOM_EXCEPTION_TO_STATUS_MAP: dict[Type[Exception], int] = {
     InvalidImmunizationId: 400,
+    InvalidJsonError: 400,
+    CustomValidationError: 400,
     UnauthorizedError: 403,
     UnauthorizedVaxError: 403,
     ResourceNotFoundError: 404,
+    IdentifierDuplicationError: 422,
+    UnhandledResponseError: 500,
 }
 
 

backend/src/controller/fhir_controller.py

@@ -5,6 +5,7 @@
 import urllib.parse
 import uuid
 from decimal import Decimal
+from json import JSONDecodeError
 from typing import Optional
 
 from aws_lambda_typing.events import APIGatewayProxyEventV1
@@ -20,11 +21,11 @@
     Code,
     IdentifierDuplicationError,
     InvalidImmunizationId,
+    InvalidJsonError,
     ParameterException,
     Severity,
     UnauthorizedError,
     UnauthorizedVaxError,
-    UnhandledResponseError,
     ValidationError,
     create_operation_outcome,
 )
@@ -48,7 +49,8 @@ def make_controller(
 
 
 class FhirController:
-    immunization_id_pattern = r"^[A-Za-z0-9\-.]{1,64}$"
+    _IMMUNIZATION_ID_PATTERN = r"^[A-Za-z0-9\-.]{1,64}$"
+    _API_SERVICE_URL = get_service_url()
 
     def __init__(
         self,
@@ -105,46 +107,22 @@ def get_immunization_by_id(self, aws_event: APIGatewayProxyEventV1) -> dict:
 
         return create_response(200, resource.json(), {E_TAG_HEADER_NAME: version})
 
-    def create_immunization(self, aws_event):
-        if not aws_event.get("headers"):
-            return create_response(
-                403,
-                create_operation_outcome(
-                    resource_id=str(uuid.uuid4()),
-                    severity=Severity.error,
-                    code=Code.forbidden,
-                    diagnostics="Unauthorized request",
-                ),
-            )
-
-        supplier_system = self._identify_supplier_system(aws_event)
+    @fhir_api_exception_handler
+    def create_immunization(self, aws_event: APIGatewayProxyEventV1) -> dict:
+        supplier_system = get_supplier_system_header(aws_event)
 
         try:
-            immunisation = json.loads(aws_event["body"], parse_float=Decimal)
-        except json.decoder.JSONDecodeError as e:
-            return self._create_bad_request(f"Request's body contains malformed JSON: {e}")
-        try:
-            resource = self.fhir_service.create_immunization(immunisation, supplier_system)
-            if "diagnostics" in resource:
-                exp_error = create_operation_outcome(
-                    resource_id=str(uuid.uuid4()),
-                    severity=Severity.error,
-                    code=Code.invariant,
-                    diagnostics=resource["diagnostics"],
-                )
-                return create_response(400, json.dumps(exp_error))
-            else:
-                location = f"{get_service_url()}/Immunization/{resource.id}"
-                version = "1"
-                return create_response(201, None, {"Location": location, "E-Tag": version})
-        except ValidationError as error:
-            return create_response(400, error.to_operation_outcome())
-        except IdentifierDuplicationError as duplicate:
-            return create_response(422, duplicate.to_operation_outcome())
-        except UnhandledResponseError as unhandled_error:
-            return create_response(500, unhandled_error.to_operation_outcome())
-        except UnauthorizedVaxError as unauthorized:
-            return create_response(403, unauthorized.to_operation_outcome())
+            immunisation: dict = json.loads(aws_event["body"], parse_float=Decimal)
+        except JSONDecodeError as e:
+            raise InvalidJsonError(message=str(f"Request's body contains malformed JSON: {e}"))
+
+        created_resource_id = self.fhir_service.create_immunization(immunisation, supplier_system)
+
+        return create_response(
+            status_code=201,
+            body=None,
+            headers={"Location": f"{self._API_SERVICE_URL}/Immunization/{created_resource_id}", "E-Tag": "1"},
+        )
 
     def update_immunization(self, aws_event):
         try:
@@ -188,7 +166,7 @@ def update_immunization(self, aws_event):
                 )
                 return create_response(400, json.dumps(exp_error))
             # Validate the imms id in the path params and body of request - end
-        except json.decoder.JSONDecodeError as e:
+        except JSONDecodeError as e:
             return self._create_bad_request(f"Request's body contains malformed JSON: {e}")
         except Exception as e:
             return self._create_bad_request(f"Request's body contains string: {e}")
@@ -405,7 +383,7 @@ def search_immunizations(self, aws_event: APIGatewayProxyEventV1) -> dict:
 
     def _is_valid_immunization_id(self, immunization_id: str) -> bool:
         """Validates if the given unique Immunization ID is valid."""
-        return False if not re.match(self.immunization_id_pattern, immunization_id) else True
+        return False if not re.match(self._IMMUNIZATION_ID_PATTERN, immunization_id) else True
 
     def _validate_identifier_system(self, _id: str, _elements: str) -> Optional[dict]:
         if not _id:

backend/src/create_imms_handler.py

@@ -1,14 +1,10 @@
 import argparse
 import logging
 import pprint
-import uuid
 
-from constants import GENERIC_SERVER_ERROR_DIAGNOSTICS_MESSAGE
-from controller.aws_apig_response_utils import create_response
 from controller.fhir_controller import FhirController, make_controller
 from local_lambda import load_string
 from log_structure import function_info
-from models.errors import Code, Severity, create_operation_outcome
 
 logging.basicConfig(level="INFO")
 logger = logging.getLogger()
@@ -20,17 +16,7 @@ def create_imms_handler(event, _context):
 
 
 def create_immunization(event, controller: FhirController):
-    try:
-        return controller.create_immunization(event)
-    except Exception:  # pylint: disable = broad-exception-caught
-        logger.exception("Unhandled exception")
-        exp_error = create_operation_outcome(
-            resource_id=str(uuid.uuid4()),
-            severity=Severity.error,
-            code=Code.server_error,
-            diagnostics=GENERIC_SERVER_ERROR_DIAGNOSTICS_MESSAGE,
-        )
-        return create_response(500, exp_error)
+    return controller.create_immunization(event)
 
 
 if __name__ == "__main__":

backend/src/models/errors.py

@@ -214,6 +214,21 @@ def to_operation_outcome(self) -> dict:
         )
 
 
+@dataclass
+class InvalidJsonError(RuntimeError):
+    """Raised when client provides an invalid JSON payload"""
+
+    message: str
+
+    def to_operation_outcome(self) -> dict:
+        return create_operation_outcome(
+            resource_id=str(uuid.uuid4()),
+            severity=Severity.error,
+            code=Code.invalid,
+            diagnostics=self.message,
+        )
+
+
 def create_operation_outcome(resource_id: str, severity: Severity, code: Code, diagnostics: str) -> dict:
     """Create an OperationOutcome object. Do not use `fhir.resource` library since it adds unnecessary validations"""
     return {