Prescrypto
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 4 additions & 4 deletions b/‎CONTRIBUTING.md‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎README.md‎
Lines changed: 6 additions & 6 deletions b/‎README.md‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎app.json‎
Lines changed: 9 additions & 0 deletions b/‎app.json‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎requirements.txt‎
Lines changed: 5 additions & 4 deletions b/‎requirements.txt‎
Lines changed: 5 additions & 4 deletions
diff --git a/‎rexchain/blockchain/managers.py‎
Lines changed: 18 additions & 2 deletions b/‎rexchain/blockchain/managers.py‎
Lines changed: 18 additions & 2 deletions
diff --git a/‎rexchain/blockchain/views.py‎
Lines changed: 6 additions & 41 deletions b/‎rexchain/blockchain/views.py‎
Lines changed: 6 additions & 41 deletions
diff --git a/‎rexchain/core/connectors.py‎
Lines changed: 149 additions & 0 deletions b/‎rexchain/core/connectors.py‎
Lines changed: 149 additions & 0 deletions
diff --git a/‎rexchain/nom151/__init__.py‎ b/‎rexchain/nom151/__init__.py‎
diff --git a/‎rexchain/nom151/admin.py‎
Lines changed: 10 additions & 0 deletions b/‎rexchain/nom151/admin.py‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎rexchain/nom151/apps.py‎
Lines changed: 5 additions & 0 deletions b/‎rexchain/nom151/apps.py‎
Lines changed: 5 additions & 0 deletions
@@ -51,18 +51,18 @@ git remote add Prescrypto https://github.com/Prescrypto/RexChain
 git fetch prescrypto
 
 __Create a vagrant machine:__  
-__#inside the directory run the vagrantfile__  
+__# inside the directory run the vagrantfile__  
 $ vagrant up  
-__#get server running and start creating stuff__  
+__# get server running and start creating stuff__  
 $ vagrant ssh  
 
 $ cd /vagrant/rexchain  
 $ python3.6 manage.py migrate  
 $ python3.6 manage.py loaddata ./fixtures/initial_data.json  
 $ python3.6 manage.py runserver [::]:8000  
 
-__#Wake Up Redis Worker__  
-__#Open a new window console enter to ssh of vagrant and run these commands__  
+__# Wake Up Redis Worker__  
+__# Open a new window console enter to ssh of vagrant and run these commands__  
 $ cd /vagrant/rexchain  
 $ python3.6 manage.py rqworker high default low  
 
@@ -1,5 +1,5 @@
 
-# RexChain - a Python - SQL based lightweight, cryptographically enabled, centralised blockchain implementation – Originally forked from NaiveChain and ported into Python, but no original code remains.
+# RexChain - a Python - SQL based lightweight, cryptographically enabled, centralised blockchain implementation.
 
 [![Build Status](https://travis-ci.org/Prescrypto/RexChain.svg?branch=master)](https://travis-ci.org/Prescrypto/RexChain)
 
@@ -8,7 +8,7 @@
 
 
 ### Motivation
-All the current implementations of blockchains are tightly coupled with the larger context and problems they (e.g. Bitcoin or Ethereum) are trying to solve. This leaves little room to implement different solutions. Especially source-code-wisely. This project is an attempt to provide a lightweight concise and simple implementation of a blockchain as possible, completely designed around electronic medical prescriptions.
+All the current implementations of blockchains are tightly coupled with the larger context and problems they (e.g. Bitcoin or Ethereum) are trying to solve. This leaves room to implement domain specific solutions. Especially source-code-wisely. This project is an attempt to provide a lightweight concise and simple implementation of a blockchain as possible, completely designed around electronic medical prescriptions and structured medical data.
 
 
 ### What is blockchain
@@ -21,9 +21,9 @@ All the current implementations of blockchains are tightly coupled with the larg
 * At the moment it is a centralised chain of blocks, the block's merkle root can be anchored with Proof of Existence to any particular distributed Blockchain (in a similar way to Factom's white paper) (https://github.com/FactomProject/FactomDocs/blob/master/whitepaper.md)
 * At the moment data is persisted in an SQL implementation
 * Access to the database is enabled by Asymetric Cryptography
-* Proof-of-work thourght Hashcash (http://www.hashcash.org/hashcash.pdf) for to stop fake data from being created.
+* Proof-of-work thourght Hashcash (http://www.hashcash.org/hashcash.pdf)
 * Transactions: You can transfer data through [Prescrypto Wallet](https://prescrypto.github.io/wallet/deploy/feature_rexchain_wallet/) [See more over __Transactions__ concept in our [wiki](https://github.com/Prescrypto/RexChain/wiki/Transacciones)].
-* Distributed version: This is step follow.
+* Distributed version: This step will follow.
 
 ### Quick start
 (set up node and mine 1 block)
@@ -99,7 +99,7 @@ The test ends successfully when the console shows:
 
 `OK`
 
-__Remark__
+__Note__
 
 The console can ask the following:
 
@@ -126,4 +126,4 @@ You must run the following commands in order to add the coverage badge:
 $ coverage-badge -o coverage.svg
 ```
 
-Note: Run coverage command and coverage report is required!
+Note: Run coverage command and coverage report!
@@ -71,6 +71,15 @@
     },
     "JIRA_PASSWORD": {
       "required": true
+    },
+    "REACHCORE_ENTITY": {
+      "required": true
+    },
+    "REACHCORE_USER": {
+      "required": true
+    },
+    "REACHCORE_PASS": {
+      "required": true
     }
   },
   "formation": {
 
@@ -1,5 +1,5 @@
 # django
-Django==1.11.11
+Django==1.11.29
 
 # Heroku
 gunicorn==19.7.1
@@ -10,20 +10,21 @@ psycopg2-binary==2.7.5
 # DRF
 django-filter==1.1.0
 Markdown==2.6.11
-djangorestframework==3.7.7
+djangorestframework==3.11.2
 django-cors-headers==2.0.2
 
 # crypto
 pycryptodome==3.6.5
-rsa==3.4.2
+rsa==4.1
 merkletools>=1.0.2
 pysha3>=1.0.2  #1.0b1
 
 # Others
 django-jet==1.0.7
+xmltodict==0.12.0
 
 #QRCode
-Pillow==4.2.1
+Pillow==8.1.2
 qrcode==5.3
 
 # Proof of Existence (ETH)
 
@@ -16,15 +16,18 @@
 from django.core.cache import cache
 from core.utils import Hashcash
 from core.helpers import safe_set_cache, get_timestamp, logger_debug
+from core.connectors import ReachCore as PoE
+from nom151.models import ConservationCertificate
 from .helpers import genesis_hash_generator, GENESIS_INIT_DATA, get_genesis_merkle_root, CryptoTools
-from .utils import calculate_hash, PoE, pubkey_base64_to_rsa, ordered_data, iterate_and_order_json
+from .utils import calculate_hash, pubkey_base64_to_rsa, ordered_data, iterate_and_order_json
 from .querysets import (
     PayloadQueryset,
     TransactionQueryset,
     AddressQueryset,
 )
 from .RSAaddresses import AddressBitcoin
 
+
 logger = logging.getLogger('django_info')
 
 
@@ -67,9 +70,22 @@ def generate_next_block(self, hash_before, tx_queryset):
                                               str(new_block.timestamp), data_block["sum_hashes"])
         # Add Merkle Root
         new_block.merkleroot = data_block["merkleroot"]
-        new_block.poetxid = "False"
+        # Proof of Existennce layer
+        connector = PoE()
+        xml_response = connector.generate_proof(new_block.merkleroot)
+        new_block.data["xml_response"] = xml_response
         # Save
         new_block.save()
+        # Save response on a  new table too
+
+        certificate = ConservationCertificate(
+            folio=xml_response["Folio"],
+            raw_document=xml_response["Constancia"],
+            reference=new_block.merkleroot
+        )
+        certificate.block = new_block
+        certificate.data["xml_response"] = xml_response
+        certificate.save()
         return new_block
 
 
 
@@ -31,56 +31,21 @@ class ValidateRxView(View):
 
     def get(self, request, *args, **kwargs):
         hash_id = kwargs.get("hash_id")
-        payload = transaction = None
+        payload = tx = None
+        template = "blockchain/validate.html"
         try:
             payload = Payload.objects.get(hash_id=hash_id)
+            tx = payload.transaction
         except Exception as e:
             logger.info("[Validate ERROR]:{} type:{}".format(e, type(e)))
             # Try to get from transaction ID
             try:
-                transaction = Transaction.objects.get(txid=hash_id)
+                tx = Transaction.objects.get(txid=hash_id)
             except Exception as e:
                 _message_error = "[Validate ERROR] Neither hash is from Payload nor Transaction:{} type:{}"
                 logger.error(_message_error.format(e, type(e)))
-            else:
-                return render(request, self.template, {"poe": self.get_poe_data_context(transaction)})
-        else:
-            poe = self.get_poe_data_context(payload.transaction)
-            return render(request, self.template, {"poe": poe})
-
-        return redirect("/")
-
-    def get_poe_data_context(self, transaction):
-        ''' Build poe data '''
-        # Transaction TEST for validate TESTING only
-        data_poe = {
-            "received": "Aug. 25, 2018, 12:57 p.m.",
-            "poe_url": ("https://live.blockcypher.com/bcy/tx/"
-                        "51998b337855f999718f3be0658af19f1615dd71dd8885a24e6c08bf201c257a/"),
-            "hash": "51998b337855f999718f3be0658af19f1615dd71dd8885a24e6c08bf201c257a",
-            "data_hex": "46e6ac758721c8f45d2a00de78d81df7861f655e41777f8e56b0556ea4bec0a9",
-            "merkle_root": "46e6ac758721c8f45d2a00de78d81df7861f655e41777f8e56b0556ea4bec0a9",
-        }
-
-        if transaction.block_id:
-            block = transaction.block
-
-            if block.poetxid.strip() in ["True", "False", "", "Genesis"]:
-                pass
-            else:
-                try:
-                    data_poe = {
-                        "received": block.timestamp.strftime('%Y-%m-%d'),
-                        "poe_url": "{}/dash/tx/{}/".format(settings.BASE_POE_URL, block.poetxid),
-                        "hash": block.poetxid,
-                        "data_hex": block.merkleroot,
-                        "merkle_root": block.merkleroot,
-                    }
-
-                except Exception as e:
-                    logger.info("[Get Poe Data ERROR]:{} type:{}".format(e, type(e)))
-
-        return data_poe
+                return redirect("/")
+        return render(request, template, {"tx": tx})
 
 
 def poe(request):
 
@@ -0,0 +1,149 @@
+import base64
+import requests
+import subprocess  # nosec B404
+import shlex
+import xmltodict
+
+from tempfile import TemporaryDirectory as TempD
+
+from django.conf import settings
+
+from .helpers import logger
+
+# GeneraConstancia Payload
+REQUEST_CERTIFICATE = """<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope" \
+xmlns:xw="www.XMLWebServiceSoapHeaderAuth.net">
+    <soap:Header>
+        <xw:AuthSoapHd>
+            <xw:Usuario>{user}</xw:Usuario>
+            <xw:Clave>{passwd}</xw:Clave>
+            <xw:Entidad>{entity}</xw:Entidad>
+        </xw:AuthSoapHd>
+    </soap:Header>
+    <soap:Body>
+        <xw:GeneraConstancia>
+            <xw:referencia>{reference}</xw:referencia>
+            <xw:solicitud>{doc_base64}</xw:solicitud>
+        </xw:GeneraConstancia>
+    </soap:Body>
+</soap:Envelope>"""
+
+# ValidaConstancia Payload
+REQUEST_VALIDATE = """<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope" \
+xmlns:xw="www.XMLWebServiceSoapHeaderAuth.net">
+   <soap:Header>
+        <xw:AuthSoapHd>
+            <xw:Usuario>{user}</xw:Usuario>
+            <xw:Clave>{passwd}</xw:Clave>
+            <xw:Entidad>{entity}</xw:Entidad>
+        </xw:AuthSoapHd>
+   </soap:Header>
+   <soap:Body>
+      <xw:ValidaConstancia>
+         <xw:referencia>{reference}</xw:referencia>
+         <xw:constancia>{certificate}</xw:constancia>
+      </xw:ValidaConstancia>
+   </soap:Body>
+</soap:Envelope>"""
+
+
+class ReachCore:
+    """
+        Class to handle rich core methods and connections
+        referencia = "merkleroot" as a valid str sha256 hash
+        solicitud = doc_file as a valid base64 str
+    """
+
+    ENTITY = settings.REACHCORE_ENTITY
+    USER = settings.REACHCORE_USER
+    PASS = settings.REACHCORE_PASS
+
+    TIMEOUT = 10
+    HEADERS = {'content-type': 'text/xml'}
+
+    def __init__(self, **kwargs):
+        """  Initialize vars and settings """
+
+        if settings.PRODUCTION:
+            self.BASE = "https://nom151.advantage-security.com/wsnom151/webservice.asmx?WSDL"
+            self.POLICY = "2.16.484.101.10.316.2.1.1.2.1"
+        else:
+            self.BASE = "https://pilot-psc.reachcore.com/wsnom151/webservice.asmx?WSDL"
+            self.POLICY = "1.16.484.101.10.316.1.2"
+
+    def generate_proof(self, merkleroot):
+        """
+            ReachCore endpoint [GeneraConstancia]
+            merkleroot : Must be a valid sha256 str, as the merkle root is
+        """
+        # Generates a temp directory where manipulate docs
+
+        with TempD() as temp_dir:
+            doc_path = temp_dir + "/doc_body.tsq"
+            request_file = None
+            # Prepare the command for the request file
+            command = (F"openssl ts -query -digest {merkleroot} -sha256 -no_nonce "
+                       F"-tspolicy {self.POLICY} -out {doc_path}")
+            args = shlex.split(command)
+            try:
+                # Pass security params as check=True and shell = False - More details in Bandit B603
+                process = subprocess.run(args, check=True, shell=False)  # nosec B603
+            except Exception as e:
+                logger.info(F"[Error:{e} Generating File Request], stdout={process.stdout}")
+                return None
+            else:
+                logger.info("Success Generated Request File")
+
+            # Read the file
+            with open(doc_path, 'rb') as f:
+                request_file = base64.b64encode(f.read())
+                request_file = request_file.decode()
+
+            # Create body content
+            body = REQUEST_CERTIFICATE.format(user=self.USER, passwd=self.PASS, entity=self.ENTITY,
+                                              reference=merkleroot, doc_base64=request_file)
+            # For debug only
+            # logger.info(body)
+
+            try:
+                # Send requests and get the content
+                r = requests.post(self.BASE, data=body, headers=self.HEADERS, timeout=self.TIMEOUT)
+                logger.info(F"Response: {r.status_code}")
+                logger.info(F"{r.content}")
+
+                if r.status_code == 200:
+                    # Parse the file and generate readable json metadata
+                    parsed_result = xmltodict.parse(r.text)
+                    body = parsed_result["soap:Envelope"]["soap:Body"]
+                    metadata = body["GeneraConstanciaResponse"]["GeneraConstanciaResult"]
+                    metadata["xml_raw"] = r.text
+                    return metadata
+                else:
+                    # TODO Try to generate next block
+                    # Execute a default behauvior or try to do it in other time
+                    return None
+
+            except Exception as e:
+                logger.error(F"[Generate Proof Error]: {e}, type: {type(e)}, merkleroot: {merkleroot}")
+
+    def validate(self, certificate, merkleroot):
+        """ Validate certificate using Reachcore validate endpoints """
+        try:
+            body = REQUEST_VALIDATE.format(user=self.USER, passwd=self.PASS, entity=self.ENTITY,
+                                           reference=merkleroot, certificate=certificate)
+            r = requests.post(self.BASE, data=body, headers=self.HEADERS, timeout=self.TIMEOUT)
+            logger.info(F"Response: {r.status_code}")
+            logger.info(F"{r.content}")
+            if r.status_code == 200:
+                parsed_result = xmltodict.parse(r.text)
+                body = parsed_result["soap:Envelope"]["soap:Body"]
+                metadata = body["ValidaConstanciaResponse"]["ValidaConstanciaResult"]
+                metadata["xml_raw"] = r.text
+                return metadata
+
+            else:
+                # We might ask to user to try again
+                return None
+
+        except Exception as e:
+            logger.error(F"[Validate Certificate Fails]: {e}, type: {type(e)}, merkleroot: {merkleroot}")
@@ -0,0 +1,10 @@
+from django.contrib import admin
+
+from .models import ConservationCertificate
+
+
+class ConservationCertificateAdmin(admin.ModelAdmin):
+    pass
+
+
+admin.site.register(ConservationCertificate, ConservationCertificateAdmin)
@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class Nom151Config(AppConfig):
+    name = 'nom151'