Merge pull request #59 from NHSDigital/NPA-2777_400_mime_type

NPA-2777 All Errors Have Correct Mime Type

Author: chris-young-12-nhs

proxies/live/apiproxy/policies/RaiseFault.400BadRequest.xml

@@ -12,7 +12,9 @@
     <Properties/>
     <FaultResponse>
         <Set>
-            <Headers/>
+            <Headers>
+              <Header name="Content-Type">application/fhir+json</Header>
+            </Headers>
             <StatusCode>401</StatusCode>
             <ReasonPhrase>Unauthorized</ReasonPhrase>
             <Payload>
@@ -35,9 +37,9 @@
                     }
                   ],
                   "resourceType": "OperationOutcome"
-                }          
+                }
             </Payload>
         </Set>
     </FaultResponse>
     <IgnoreUnresolvedVariables>true</IgnoreUnresolvedVariables>
-</RaiseFault>
+</RaiseFault>

proxies/live/apiproxy/policies/RaiseFault.401Unauthorized.xml

@@ -12,7 +12,9 @@
     <Properties/>
     <FaultResponse>
         <Set>
-            <Headers/>
+            <Headers>
+              <Header name="Content-Type">application/fhir+json</Header>
+            </Headers>
             <StatusCode>404</StatusCode>
             <ReasonPhrase>NotFound</ReasonPhrase>
             <Payload>

proxies/live/apiproxy/policies/RaiseFault.404NotFound.xml

@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<!--
+ This policy raises when an error occurs in the AWS Application.
+
+ Raisefault policies stop the execution of the current flow and move to the error flow, which returns the error response defined here to the requesting application.
+
+ For more information on RaiseFault policies within Apigee see the following resource:
+    * https://docs.apigee.com/api-platform/reference/policies/raise-fault-policy
+-->
+<RaiseFault async="false" continueOnError="false" enabled="true" name="RaiseFault.DefaultError">
+    <DisplayName>RaiseFault.DefaultError</DisplayName>
+    <Properties/>
+    <FaultResponse>
+        <Set>
+            <Headers>
+              <Header name="Content-Type">application/fhir+json</Header>
+            </Headers>
+        </Set>
+    </FaultResponse>
+    <IgnoreUnresolvedVariables>true</IgnoreUnresolvedVariables>
+</RaiseFault>

proxies/live/apiproxy/policies/RaiseFault.DefaultError.xml

@@ -1,53 +1,58 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
 <TargetEndpoint name="validated-relationships-service-api-target">
-  <PreFlow>
-    <Request>
+    <PreFlow>
+        <Request>
+            <Step>
+                <Name>VerifyAccessTokenUserNhsLoginP9</Name>
+            </Step>
+            <Step>
+                <Name>FlowCallout.ApplyRateLimiting</Name>
+            </Step>
+            <Step>
+                <Name>AddProxyURL</Name>
+            </Step>
+            <Step>
+                <Name>AddUserAuthLevel</Name>
+            </Step>
+            <Step>
+                <Name>AddUserNHSNumber</Name>
+            </Step>
+        </Request>
+    </PreFlow>
+    <PostFlow>
+        <Response>
+            <Step>
+                <Name>SetMimeType</Name>
+            </Step>
+        </Response>
+    </PostFlow>
+    <FaultRules>
+        <FaultRule name="401_Unauthorized">
+            <Step>
+                <Name>RaiseFault.401Unauthorized</Name>
+            </Step>
+            <Condition>oauthV2.OauthV2.VerifyAccessToken.failed = true or fault.name = "invalid_access_token" or fault.name = "InvalidAccessToken" or fault.name = "access_token_not_approved" or fault.name = "apiresource_doesnot_exist" or fault.name = "InvalidAPICallAsNo" or fault.name = "ApiProductMatchFound" or fault.name = "access_token_expired"</Condition>
+        </FaultRule>
+        <FaultRule name="404_Not_Found">
+            <Step>
+                <Name>RaiseFault.404NotFound</Name>
+            </Step>
+            <Condition>response.header.x-amzn-ErrorType = "IncompleteSignatureException"</Condition>
+        </FaultRule>
+    </FaultRules>
+    <DefaultFaultRule name="DefaultFaultRule">
       <Step>
-        <Name>VerifyAccessTokenUserNhsLoginP9</Name>
+        <Name>RaiseFault.DefaultError</Name>
       </Step>
-      <Step>
-        <Name>FlowCallout.ApplyRateLimiting</Name>
-      </Step>
-      <Step>
-        <Name>AddProxyURL</Name>
-      </Step>
-      <Step>
-        <Name>AddUserAuthLevel</Name>
-      </Step>
-      <Step>
-        <Name>AddUserNHSNumber</Name>
-      </Step>
-    </Request>
-  </PreFlow>
-  <PostFlow>
-      <Response>
-          <Step>
-              <Name>SetMimeType</Name>
-          </Step>
-      </Response>
-  </PostFlow>
-  <FaultRules>
-    <FaultRule name="404_Not_Found">
-        <Step>
-            <Name>RaiseFault.404NotFound</Name>
-        </Step>
-        <Condition>response.header.x-amzn-ErrorType = "IncompleteSignatureException"</Condition>
-    </FaultRule>
-    <FaultRule name="unauthorized">
-        <Step>
-            <Name>RaiseFault.401Unauthorized</Name>
-              <Condition>
-              oauthV2.OauthV2.VerifyAccessToken.failed = true or fault.name = "invalid_access_token" or fault.name = "InvalidAccessToken" or fault.name = "access_token_not_approved" or fault.name = "apiresource_doesnot_exist" or fault.name = "InvalidAPICallAsNo" or fault.name = "ApiProductMatchFound" or fault.name = "access_token_expired"
-              </Condition>
-        </Step>
-    </FaultRule>
-  </FaultRules>
-  <HTTPTargetConnection>
-      <LoadBalancer>
-          <Server name="validated-relationships-service-api"/>
-      </LoadBalancer>
-      <Properties>
-          <Property name="supports.http10">true</Property>
-          <Property name="request.retain.headers">User-Agent,Referer,Accept-Language</Property>
-      </Properties>
-  </HTTPTargetConnection>
+      <AlwaysEnforce>true</AlwaysEnforce>
+    </DefaultFaultRule>
+    <HTTPTargetConnection>
+        <LoadBalancer>
+            <Server name="validated-relationships-service-api"/>
+        </LoadBalancer>
+        <Properties>
+            <Property name="supports.http10">true</Property>
+            <Property name="request.retain.headers">User-Agent,Referer,Accept-Language</Property>
+        </Properties>
+    </HTTPTargetConnection>
 </TargetEndpoint>